Microsoft expands Bug Bounty scheme to include third-party software
Microsoft is to expand its bug bounty scheme to reward people for finding high-risk security vulnerabilities that could impact the security of Microsoft’s online services.…
Month: December 2025
New cybersecurity guidance paves the way for AI in critical infrastructure
Global cybersecurity agencies have issued the first unified guidance on applying artificial intelligence (AI) within critical infrastructure, signaling a major shift from theoretical debate to…
High-Severity Jenkins Vulnerability Allows Unauthenticated DoS via HTTP CLI
Patches released by Jenkins address a significant denial-of-service (DoS) vulnerability affecting millions of organizations. That rely on the popular automation server for continuous integration and…
WIRTE Leverages AshenLoader Sideloading to Install the AshTag Espionage Backdoor
Dec 11, 2025Ravie LakshmananCyberwarfare / Threat Intelligence An advanced persistent threat (APT) known as WIRTE has been attributed to attacks targeting government and diplomatic entities…
GitLab Patches Multiple Vulnerabilities that Allows Attackers to Trigger XSS and DoS Attack
Critical security patches on December 10, 2025, addressing ten significant vulnerabilities across its Community Edition and Enterprise Edition platforms. GitLab has released updated versions 18.6.2,…
Top 10 Data Anonymization Solutions for 2026 – Hackread – Cybersecurity News, Data Breaches, AI, and More
Every business today has to deal with private information – whether it is about customers, employees, or financial transactions. Keeping that information protected and compliant…
Unpatched Gogs Zero-Day Exploited Across 700+ Instances Amid Active Attacks
Dec 11, 2025Ravie LakshmananVulnerability / Cloud Security A high-severity unpatched security vulnerability in Gogs has come under active exploitation, with more than 700 compromised instances…
Microsoft fixes Windows Explorer white flashes in dark mode
Microsoft has fixed a known issue that caused bright white flashes when launching File Explorer in dark mode on Windows 11 systems after installing the…
ValleyRAT Malware Uses Stealthy Driver Install to Bypass Windows 11 Protections
ValleyRAT, also known as Winos or Winos4.0, has emerged as one of the most sophisticated backdoors targeting organizations worldwide. This modular malware family represents a…
Chrome Targeted by Active In-the-Wild Exploit Tied to Undisclosed High-Severity Flaw
Dec 11, 2025Ravie LakshmananZero-Day / Vulnerability Google on Wednesday shipped security updates for its Chrome browser to address three security flaws, including one it said…
OpenAI Warns High Cybersecurity Risk In AI Models
OpenAI has issued a cautionary statement that its forthcoming AI models could present “high” cybersecurity risks as their capabilities rapidly advance. The warning, published on…
2 Chinese Hackers Trained Cisco Program Now Attacking Cisco Devices
The cybersecurity world faces an ironic threat as two Chinese hackers who once excelled in Cisco’s training program are now leading sophisticated attacks against the…