Senators push CISA director nominee on election security, agency focus
Listen to the article 5 min This audio is auto-generated. Please let us know if you have feedback. Sean Plankey, President Donald Trump’s nominee to…
Author: Cybernoz
Hacker sneaks infostealer malware into early access Steam game
A threat actor called EncryptHub has compromised a game on Steam to distribute info-stealing malware to unsuspecting users downloading the title. A few days ago,…
Chinese Hackers Attacking Windows Systems in Targeted Campaign to Deploy Ghost RAT and PhantomNet Malwares
Threat researchers are warning of twin Chinese-nexus espionage operations—“Operation Chat” and “Operation PhantomPrayers”—that erupted in the weeks preceding the Dalai Lama’s 90th birthday, exploiting heightened…
A Premium Luggage Service’s Web Bugs Exposed the Travel Plans of Every User—Including Diplomats
An airline leaving all of its passengers’ travel records vulnerable to hackers would make an attractive target for espionage. Less obvious, but perhaps even more…
Replit AI Agent Deletes SaaStr Network Data Without Permission
An AI agent operating within the Replit platform reportedly deleted an entire company database without permission. The incident occurred during a critical “code and action…
CastleLoader Malware Infects 469 Devices Using Fake GitHub Repos and ClickFix Phishing
Jul 24, 2025Ravie LakshmananMalware / Cybercrime Cybersecurity researchers have shed light on a new versatile malware loader called CastleLoader that has been put to use…
Scattered Spider victim Clorox sues helpdesk provider
IT services provider Cognizant is facing a multimillion-dollar lawsuit from one of its customers, which claims lax security procedures enabled the Scattered Spider hacking collective…
Metasploit Module Released For Actively Exploited SharePoint 0-Day Vulnerabilities
Researchers have developed a new Metasploit exploit module targeting critical zero-day vulnerabilities in Microsoft SharePoint Server that are being actively exploited in the wild. The…
UNC3944 Exploits VMware vSphere to Deploy Ransomware and Steal Data from Organizations
The Google Threat Intelligence Group has uncovered a highly advanced cyber operation orchestrated by the threat actor UNC3944, also linked to aliases such as “0ktapus,”…
Storm-2603 spotted deploying ransomware on exploited SharePoint servers
One of the groups that, in the past few weeks, has been exploiting vulnerabilities in on-prem SharePoint installation has been observed deploying Warlock ransomware, Microsoft…
IBM chief confident AI isn’t eroding other parts of the business
IBM expects to make $4.5bn in savings internally by scaling artificial intelligence (AI) initiatives. This is being achieved through a programme that Arvind Krishna, IBM’s…
Mitel warns of critical MiVoice MX-ONE authentication bypass flaw
Mitel Networks has released security updates to patch a critical-severity authentication bypass vulnerability impacting its MiVoice MX-ONE enterprise communications platform. MX-ONE is the company’s SIP-based…