Vidar Stealer 2.0 Boosts Infostealer’s Theft And Evasion
Vidar Stealer 2.0 has been released, and the updated infostealer claims to offer improved performance with advanced credential stealing and evasion abilities, features that will…
Category: DarkReading
How “Unseeable Prompt Injections” Threaten AI Agents
A new form of attack is targeting browsers with built-in AI assistants. Researchers at Brave have found that seemingly harmless screenshots and web pages can…
Cyberattack Disrupts Heywood Hospital And Athol Hospital
A cyberattack on hospitals in North Central Massachusetts has caused major operational disruptions at Heywood Hospital in Gardner and Athol Hospital, a smaller critical access…
Brazilian “Caminho” Loader Uses Images In Malware Delivery
A newly identified loader dubbed “Caminho” (Portuguese for “path”) has emerged as a sophisticated Loader-as-a-Service platform that uses Least Significant Bit (LSB) steganography to conceal…
Ransomware Targets VPNs, Microsoft 365 In APAC Surge
The Asia-Pacific (APAC) region is seeing a rapid surge in number of cyberattacks aimed at its enterprises’, a new report suggests. According to Barracuda’s SOC…
Lumma Stealer Slowed By Doxxing Campaign
The prolific threat actors behind the Lumma Stealer malware have been slowed by an underground doxxing campaign in recent months. Coordinated law enforcement action earlier…
COLDRIVER Unleashes New Malware After LOSTKEYS Exposure
Following the public disclosure of its LOSTKEYS malware in May 2025, the Russian state-sponsored threat group known as COLDRIVER, also tracked under aliases such as…
120K Bitcoin Keys Exposed Via Libbitcoin Explorer Flaw
A severe vulnerability in the random number generation method of the widely used open-source Bitcoin library Libbitcoin Explorer has led to the exposure of more…
Active Exploitation Of Windows SMB Flaw CVE-2025-33073 Alert
The Cybersecurity and Infrastructure Security Agency (CISA) has issued an urgent alert regarding the active exploitation of a high-severity Windows vulnerability, tracked as CVE-2025-33073. This…
CISA Adds Microsoft, Oracle Vulnerabilities To KEV Catalog
The U.S. Cybersecurity and Infrastructure Security Agency (CISA) added five CVEs to its Known Exploited Vulnerabilities (KEV) catalog today, including Microsoft, Apple and Oracle vulnerabilities.…
China Claims NSA Cyberattack On National Time Service Center
China claims it has “irrefutable evidence” that the U.S. National Security Agency (NSA) launched a two-year cyberattack campaign on China’s National Time Service Center (NTSC).…
Why Airline Data Breaches Are Up
Airlines are a popular target for hackers in part because of the amount of personal data they collect – and no personal data is more…