Arcane Werewolf Hacker Group Added Loki 2.1 Malware Toolkit to their Arsenal
The threat actor group known as Arcane Werewolf, also tracked as Mythic Likho, has refreshed its attack capabilities by deploying a new version of its…
Month: December 2025
Arcane Werewolf Hacker Group Expands Arsenal with Loki 2.1 Malware Toolkit
The cyber espionage group known as Arcane Werewolf (also tracked as Mythic Likho) has significantly upgraded its offensive capabilities, targeting Russian manufacturing enterprises with a…
Nissan Confirms Data Breach Following Unauthorized Access to Red Hat Servers
Nissan Motor Corporation has publicly confirmed a significant data breach stemming from unauthorized access to Red Hat servers. Managed by a third-party contractor responsible for…
Docker Releases Free, Production-Grade Hardened Container Images
Docker has released its production-grade hardened container images as a free, open-source offering, marking a significant shift in software supply chain security accessibility. The Docker…
Ukrainian National Pleads Guilty in Nefilim Ransomware Conspiracy – Hackread – Cybersecurity News, Data Breaches, AI, and More
A Ukrainian national has pleaded guilty in federal court in Brooklyn to conspiracy to commit computer fraud in connection with the deployment of the Nefilim…
Fake WhatsApp API Package on npm Steals Messages, Contacts, and Login Tokens
Cybersecurity researchers have disclosed details of a new malicious package on the npm repository that works as a fully functional WhatsApp API, but also contains…
AI-enabled Self-software | Daniel Miessler
One of the biggest changes that AI brought in 2025 is something that not enough people are talking about. Lots of people who used to…
CISA warns of continued threat activity linked to Brickstorm malware
The Cybersecurity and Infrastructure Security Agency released new analysis of threat activity linked to Brickstorm malware, which has been used by a China-nexus threat group…
Microsoft Brokering File System Vulnerability Let Attackers Escalate Privileges
Microsoft has patched a significant use-after-free vulnerability in its Brokering File System (BFS) driver, tracked as CVE-2025-29970. The flaw enables local attackers to escalate privileges…
Sleeping Bouncer Vulnerability Impacts Gigabyte, MSI, ASRock, and ASUS Motherboards
A critical firmware vulnerability affecting motherboards from major manufacturers including Gigabyte, MSI, ASRock, and ASUS has been discovered by Riot Games’ Vanguard anti-cheat team. The…
AI security is fundamentally a cloud infrastructure problem, Palo Alto Networks says
Listen to the article 2 min This audio is auto-generated. Please let us know if you have feedback. Dive Brief: Virtually all organizations (99%) have…
Malicious npm package steals WhatsApp accounts and messages
A malicious package in the Node Package Manager (NPM) registry poses as a legitimate WhatsApp Web API library to steal WhatsApp messages, collect contacts, and gain…