Chrome Exploit CVE-2025-10585: Urgent Google Update
Google has issued an urgent security alert for all users of its Chrome browser, confirming that an active exploit targeting a critical vulnerability, CVE-2025-10585, is…
Category: DarkReading
Jaguar Land Rover Cyberattack Sparks Production, Layoff Fears
The Jaguar Land Rover cyberattack that has shuttered production lines since September 1 will extend for at least another week, and some observers warn that…
BreachForums Founder Sentenced To Three Years
BreachForums founder Conor Brian Fitzpatrick has been resentenced to three years in prison on charges related to operation of the notorious cybercrime forum and possession…
Russia-Linked Hybrid Campaign Targeted 2024 Elections: Romanian Prosecutor General
Romanian prosecutor general this week said investigators uncovered a large, coordinated hybrid campaign that sought to skew the 2024 presidential vote in favor of a…
Microsoft, Cloudflare Disrupt RaccoonO365 PaaS Operation
Microsoft and Cloudflare dealt a major blow against RaccoonO365, a subscription-based phishing-as-a-service (PhaaS) platform that has fueled thousands of credential theft campaigns since mid-2024. In…
CrowdStrike Among Those Hit In NPM Attack Campaign
More than 20 CrowdStrike NPM packages were among nearly 200 NPM packages hit by a sophisticated supply chain attack. The compromised packages were quickly removed…
Black Hat USA 2025 CISO Podcast Series: Episode 7 Out Now
At Black Hat USA 2025, The Cyber Express, in collaboration with Suraksha Catalyst, released Episode 7 of its CISO Podcast Series, focusing on a theme…
New Infostealer Campaign Targets Popular Games
Cyble threat intelligence researchers have uncovered an infostealer campaign that spreads the Maranhão Stealer through social engineering websites claiming to offer pirated software, cracked game…
China Enforces 1-Hour Cybersecurity Incident Reporting
China is ramping up its cybersecurity enforcement with new regulations requiring network operators to report severe cybersecurity incidents within one hour. The rules, announced by…
CVE-2025-58434: FlowiseAI Vulnerability Exposes Accounts
A severe security vulnerability has been discovered in FlowiseAI, an open-source AI workflow automation tool, exposing users to the risk of complete account compromise. Tracked…
CISA Adds DELMIA Manufacturing Software Vulnerability To KEV
The U.S. Cybersecurity and Infrastructure Security Agency (CISA) has added a manufacturing operations management software vulnerability to its Known Exploited Vulnerabilities (KEV) catalog, a rare…
ASEAN Cybercrime Threat Sparks 10-Year Regional Action Plan
Cybercrime and online scams have officially overtaken traditional threats as the primary regional security concern for the Association of Southeast Asian Nations (ASEAN). This ASEAN…