Microsoft Entra ID Lockouts After MACE App Flags Legit Users
Was your Microsoft Entra ID account locked? Find out about the recent widespread lockouts caused by the new MACE Credential Revocation app and a Microsoft…
Category: HackRead
AI Ethics, Cybersecurity and Finance: Navigating the Intersection
Artificial intelligence is transforming industries, but its adoption also raises ethical and cybersecurity concerns, especially in the regulated financial sector. Balancing innovation with responsibility is…
Booking.com Phishing Scam Uses Fake CAPTCHA to Install AsyncRAT
Fake Booking.com emails trick hotel staff into running AsyncRAT malware via fake CAPTCHA, targeting systems with remote access trojan. A new phishing campaign is targeting…
Native Language Phishing Spreads ResolverRAT to Healthcare
Morphisec discovers a new malware threat ResolverRAT, that combines advanced methods for running code directly in computer memory, figuring out necessary system functions and resources…
North Korea, Iran, Russia-Backed Hackers Deploy ClickFix in New Attacks
Government-backed hacking groups from North Korea (TA427), Iran (TA450), and Russia (UNK_RemoteRogue, TA422) are now using the ClickFix technique in their espionage campaigns. Learn about…
StrikeReady AI Platform Moves Security Teams Beyond Basic, One-Dimensional AI-Driven Triage Solutions
Dallas, United States, TX, April 21st, 2025, CyberNewsWire Brings Automated Response to Your Assets, Identity, Vulnerabilities, Alerts, and More to Redefine Risk Prioritization. For years,…
Chinese APT IronHusky Deploys Updated MysterySnail RAT on Russia
Kaspersky researchers report the reappearance of MysterySnail RAT, a malware linked to Chinese IronHusky APT, targeting Mongolia and Russia after years of silence. Learn about…
Cozy Bear’s Wine Lure Drops WineLoader Malware on EU Diplomats
Midnight Blizzard (APT29/Cozy Bear) targets European embassies and Ministries of Foreign Affairs with sophisticated phishing emails disguised as wine tasting invitations. Learn about the new…
A Fresh Take on Open-Source Intel
Check out the top OSINT tools of 2025, an updated list featuring the best free and paid open-source intelligence tools for cybersecurity and investigations. At…
CISA Urges Action on Potential Oracle Cloud Credential Compromise
Following reports of unauthorized access to a legacy Oracle cloud environment, CISA warns of potential credential compromise leading to phishing, network breaches, and data theft.…
Researchers Find CVSS 10.0 Severity RCE Vulnerability in Erlang/OTP SSH
Security researchers report CVE-2025-32433, a CVSS 10.0 RCE vulnerability in Erlang/OTP SSH, allowing unauthenticated code execution on exposed systems. A newly disclosed vulnerability in the…
Qrator Labs Reports Mitigating Year’s Largest DDoS Attack to Date
Qrator Labs reports it mitigated a massive record 965 Gbps DDoS attack in April 2025, the largest incident reported this year so far. A powerful…