Vegas, Vulnerabilities, and Voices: Black Hat and Squadcon 2025
The week of August 4th, I had the opportunity to attend two exciting conferences in the cybersecurity world: Black Hat USA 2025 and Squadcon which…
Month: August 2025
Warlock Ransomware Exploits SharePoint Flaws for Initial Access and Credential Theft
The Warlock ransomware group has intensified its operations by targeting unpatched on-premises Microsoft SharePoint servers, leveraging critical vulnerabilities to achieve remote code execution and initial…
Europol Denies $50K Reward for Qilin Ransomware, Calls It a Scam
Europol has confirmed that a widely reported $50,000 reward for information on the Qilin ransomware group is a “scam.” The fake announcement is believed to…
Hackers Using New QuirkyLoader Malware to Spread Agent Tesla, AsyncRAT and Snake Keylogger
Aug 21, 2025Ravie LakshmananMalware / Email Security Cybersecurity researchers have disclosed details of a new malware loader called QuirkyLoader that’s being used to deliver via…
ICO investigates lawfulness of algorithms used in immigration enforcement
The Home Office could be banned from unlawfully using computer algorithms to recommend whether migrants should be deported. Privacy International has filed a complaint to…
Hackers deploy DripDropper via Apache ActiveMQ flaw, patch systems to evade detection
Hackers deploy DripDropper via Apache ActiveMQ flaw, patch systems to evade detection Pierluigi Paganini August 21, 2025 Hackers exploit Apache ActiveMQ flaw to install DripDropper…
Europol confirms $50,000 Qilin ransomware reward is fake
Europol has confirmed that a Telegram channel impersonating the agency and offering a $50,000 reward for information on two Qilin ransomware administrators is fake. The…
Warlock Ransomware Exploiting SharePoint Vulnerabilities to Gain Access and Steal Credentials
In recent weeks, the cybersecurity community has witnessed the rapid emergence of Warlock, a novel ransomware strain that weaponizes unpatched Microsoft SharePoint servers to infiltrate…
Insider Threat Protection Market Size Worth USD 38 Billion by 2036
According to recent study by Research Nester, the global insider threat protection market Size was valued at USD 4 billion in 2023 and is predicted to surpass…
Threat Actors Abuse Internet Archive to Host Stealthy JScript Loader
An Malicious actors are using reliable internet resources, such as the Internet Archive, more frequently to disseminate clandestine malware components in a worrying increase in…
AI Browsers Can Be Tricked Into Paying Fake Stores in PromptFix Attack
The PromptFix attack tricks AI browsers with fake CAPTCHAs, leading them to phishing sites and fake stores where they auto-complete purchases. Cybersecurity experts at Guardio…
Cybercriminals Deploy CORNFLAKE.V3 Backdoor via ClickFix Tactic and Fake CAPTCHA Pages
Aug 21, 2025Ravie LakshmananMalware / Cryptocurrency Threat actors have been observed leveraging the deceptive social engineering tactic known as ClickFix to deploy a versatile backdoor…