Category: Bleeping Computer

RubyGems
09
Aug
2025

60 malicious Ruby gems downloaded 275,000 times steal credentials

Sixty malicious Ruby gems containing credential-stealing code have been downloaded over 275,000 times since March 2023, targeting developer accounts. The…

Share: X : 60 malicious Ruby gems downloaded 275,000 times steal credentialsFacebook : 60 malicious Ruby gems downloaded 275,000 times steal credentialsLinkedin : 60 malicious Ruby gems downloaded 275,000 times steal credentialsReddit : 60 malicious Ruby gems downloaded 275,000 times steal credentialsTelegram : 60 malicious Ruby gems downloaded 275,000 times steal credentialsWhatsApp : 60 malicious Ruby gems downloaded 275,000 times steal credentialsEmail : 60 malicious Ruby gems downloaded 275,000 times steal credentials
Google Ads
09
Aug
2025

Google confirms data breach exposed potential Google Ads customers’ info

Google has confirmed that a recently disclosed data breach of one of its Salesforce CRM instances involved the information of potential…

Share: X : Google confirms data breach exposed potential Google Ads customers’ infoFacebook : Google confirms data breach exposed potential Google Ads customers’ infoLinkedin : Google confirms data breach exposed potential Google Ads customers’ infoReddit : Google confirms data breach exposed potential Google Ads customers’ infoTelegram : Google confirms data breach exposed potential Google Ads customers’ infoWhatsApp : Google confirms data breach exposed potential Google Ads customers’ infoEmail : Google confirms data breach exposed potential Google Ads customers’ info
GPT-5
09
Aug
2025

OpenAI to fix GPT-5 issues, double rate limits for paid users after outrage

OpenAI’s CEO, Sam Altman, overpromised on GPT-5, and real-life results are underwhelming, but it looks like a new update is…

Share: X : OpenAI to fix GPT-5 issues, double rate limits for paid users after outrageFacebook : OpenAI to fix GPT-5 issues, double rate limits for paid users after outrageLinkedin : OpenAI to fix GPT-5 issues, double rate limits for paid users after outrageReddit : OpenAI to fix GPT-5 issues, double rate limits for paid users after outrageTelegram : OpenAI to fix GPT-5 issues, double rate limits for paid users after outrageWhatsApp : OpenAI to fix GPT-5 issues, double rate limits for paid users after outrageEmail : OpenAI to fix GPT-5 issues, double rate limits for paid users after outrage
WinRAR bug lets attackers bypass Windows MotW
08
Aug
2025

WinRAR zero-day flaw exploited by RomCom hackers in phishing attacks

A recently fixed WinRAR vulnerability tracked as CVE-2025-8088 was exploited as a zero-day in phishing attacks to install the RomCom malware. The…

Share: X : WinRAR zero-day flaw exploited by RomCom hackers in phishing attacksFacebook : WinRAR zero-day flaw exploited by RomCom hackers in phishing attacksLinkedin : WinRAR zero-day flaw exploited by RomCom hackers in phishing attacksReddit : WinRAR zero-day flaw exploited by RomCom hackers in phishing attacksTelegram : WinRAR zero-day flaw exploited by RomCom hackers in phishing attacksWhatsApp : WinRAR zero-day flaw exploited by RomCom hackers in phishing attacksEmail : WinRAR zero-day flaw exploited by RomCom hackers in phishing attacks
FTC
08
Aug
2025

older adults lost record $700 million to scammers in 2024

Americans aged 60 and older lost a staggering $700 million to online scams in 2024, marking a sharp rise in…

Share: X : older adults lost record $700 million to scammers in 2024Facebook : older adults lost record $700 million to scammers in 2024Linkedin : older adults lost record $700 million to scammers in 2024Reddit : older adults lost record $700 million to scammers in 2024Telegram : older adults lost record $700 million to scammers in 2024WhatsApp : older adults lost record $700 million to scammers in 2024Email : older adults lost record $700 million to scammers in 2024
Gavel
08
Aug
2025

U.S. Judiciary confirms breach of court electronic records service

The U.S. Federal Judiciary confirms that it suffered a cyberattack on its electronic case management systems hosting confidential court documents…

Share: X : U.S. Judiciary confirms breach of court electronic records serviceFacebook : U.S. Judiciary confirms breach of court electronic records serviceLinkedin : U.S. Judiciary confirms breach of court electronic records serviceReddit : U.S. Judiciary confirms breach of court electronic records serviceTelegram : U.S. Judiciary confirms breach of court electronic records serviceWhatsApp : U.S. Judiciary confirms breach of court electronic records serviceEmail : U.S. Judiciary confirms breach of court electronic records service
Microsoft 365
08
Aug
2025

Microsoft 365 apps to soon block file access via FPRPC by default

Microsoft has announced that the Microsoft 365 apps for Windows will start blocking access to files via the insecure FPRPC…

Share: X : Microsoft 365 apps to soon block file access via FPRPC by defaultFacebook : Microsoft 365 apps to soon block file access via FPRPC by defaultLinkedin : Microsoft 365 apps to soon block file access via FPRPC by defaultReddit : Microsoft 365 apps to soon block file access via FPRPC by defaultTelegram : Microsoft 365 apps to soon block file access via FPRPC by defaultWhatsApp : Microsoft 365 apps to soon block file access via FPRPC by defaultEmail : Microsoft 365 apps to soon block file access via FPRPC by default
Microsoft Lens
08
Aug
2025

Microsoft will kill the Lens PDF scanner app for iOS, Android

Microsoft announced that it will phase out the Microsoft Lens PDF scanner app for Android and iOS devices starting in September….

Share: X : Microsoft will kill the Lens PDF scanner app for iOS, AndroidFacebook : Microsoft will kill the Lens PDF scanner app for iOS, AndroidLinkedin : Microsoft will kill the Lens PDF scanner app for iOS, AndroidReddit : Microsoft will kill the Lens PDF scanner app for iOS, AndroidTelegram : Microsoft will kill the Lens PDF scanner app for iOS, AndroidWhatsApp : Microsoft will kill the Lens PDF scanner app for iOS, AndroidEmail : Microsoft will kill the Lens PDF scanner app for iOS, Android
Columbia University
08
Aug
2025

Columbia University data breach impacts nearly 870,000 individuals

​An unknown threat actor has stolen the sensitive personal, financial, and health information of nearly 870,000 Columbia University current and…

Share: X : Columbia University data breach impacts nearly 870,000 individualsFacebook : Columbia University data breach impacts nearly 870,000 individualsLinkedin : Columbia University data breach impacts nearly 870,000 individualsReddit : Columbia University data breach impacts nearly 870,000 individualsTelegram : Columbia University data breach impacts nearly 870,000 individualsWhatsApp : Columbia University data breach impacts nearly 870,000 individualsEmail : Columbia University data breach impacts nearly 870,000 individuals
Hacker in a suit
08
Aug
2025

Royal and BlackSuit ransomware gangs hit over 450 US companies

The U.S. Department of Homeland Security (DHS) says the cybercrime gang behind the Royal and BlackSuit ransomware operations had breached hundreds…

Share: X : Royal and BlackSuit ransomware gangs hit over 450 US companiesFacebook : Royal and BlackSuit ransomware gangs hit over 450 US companiesLinkedin : Royal and BlackSuit ransomware gangs hit over 450 US companiesReddit : Royal and BlackSuit ransomware gangs hit over 450 US companiesTelegram : Royal and BlackSuit ransomware gangs hit over 450 US companiesWhatsApp : Royal and BlackSuit ransomware gangs hit over 450 US companiesEmail : Royal and BlackSuit ransomware gangs hit over 450 US companies
WhatsApp logo
08
Aug
2025

Fake WhatsApp developer libraries hide destructive data-wiping code

Two malicious NPM packages posing as WhatsApp development tools have been discovered deploying destructive data-wiping code that recursively deletes files on…

Share: X : Fake WhatsApp developer libraries hide destructive data-wiping codeFacebook : Fake WhatsApp developer libraries hide destructive data-wiping codeLinkedin : Fake WhatsApp developer libraries hide destructive data-wiping codeReddit : Fake WhatsApp developer libraries hide destructive data-wiping codeTelegram : Fake WhatsApp developer libraries hide destructive data-wiping codeWhatsApp : Fake WhatsApp developer libraries hide destructive data-wiping codeEmail : Fake WhatsApp developer libraries hide destructive data-wiping code
CISA
07
Aug
2025

CISA orders fed agencies to patch new Exchange flaw by Monday

CISA has issued an emergency directive ordering all Federal Civilian Executive Branch (FCEB) agencies to mitigate a critical Microsoft Exchange hybrid…

Share: X : CISA orders fed agencies to patch new Exchange flaw by MondayFacebook : CISA orders fed agencies to patch new Exchange flaw by MondayLinkedin : CISA orders fed agencies to patch new Exchange flaw by MondayReddit : CISA orders fed agencies to patch new Exchange flaw by MondayTelegram : CISA orders fed agencies to patch new Exchange flaw by MondayWhatsApp : CISA orders fed agencies to patch new Exchange flaw by MondayEmail : CISA orders fed agencies to patch new Exchange flaw by Monday