Qilin ransomware abuses WSL to run Linux encryptors in Windows
The Qilin ransomware operation was spotted executing Linux encryptors in Windows using Windows Subsystem for Linux (WSL) to evade detection by traditional security tools. The…
Latest Cybersecurity News — Page 1172
View all →
New GhostGrab Android Malware Silently Steals Banking Login Details and Intercept SMS for OTPs
A sophisticated Android banking trojan dubbed GhostGrab has emerged in the threat landscape, targeting financial institutions across multiple regions with advanced credential theft capabilities. The…
Copilot now lets you build apps, automate workflows
Microsoft announced today a new Microsoft 365 Copilot agent called App Builder that can help users create and deploy apps “in minutes.” As Microsoft explained,…
XWiki RCE Vulnerability Actively Exploted In Wild To Deliver Coinminer
A critical remote code execution (RCE) flaw in XWiki, a popular open-source wiki platform, was exploited in the wild to deploy cryptocurrency mining malware on…
US Teen Indicted in 764 Network Case Involving Exploitation Crimes – Hackread – Cybersecurity News, Data Breaches, Tech, AI, Crypto and More
A 19-year-old man from Porterville, California, has been indicted for his alleged role in the extremist network known as “764,” accused of a brutal combination…
New Android Trojan ‘Herodotus’ Outsmarts Anti-Fraud Systems by Typing Like a Human
Oct 28, 2025Ravie LakshmananMalware / Mobile Security Cybersecurity researchers have disclosed details of a new Android banking trojan called Herodotus that has been observed in…
TEE.Fail attack breaks confidential computing on Intel, AMD, NVIDIA CPUs
Academic researchers developed a side-channel attack called TEE.Fail, which allows extracting secrets from the trusted execution environment in the CPU, the highly secure area of a…
BlueNoroff Hackers Adopts New Infiltration Strategies To Attack C-Level Executives, and Managers
The BlueNoroff threat group, also tracked as Sapphire Sleet, APT38, and TA444, has significantly evolved its targeting capabilities with sophisticated new infiltration strategies designed specifically…
PoC code drops for remotely exploitable BIND 9 DNS flaw (CVE-2025-40778)
A high-severity vulnerability (CVE-2025-40778) affecting BIND 9 DNS resolvers could be leveraged by remote, unauthenticated attackers to manipulate DNS entries via cache poisoning, allowing them…
UK citizens raise red flags over environmental impacts of datacentres in poll
More than three-quarters (78%) of UK consumers are of the view that new datacentres should only be built if the developers commit to powering them…
Exclusive: OpenAI’s Atlas browser — and others — can be tricked by manipulated web content
As AI browser agents enter the market promising to help people shop, hire employees or assist with other online tasks, security researchers are warning that…
Google Chrome to warn users before opening insecure HTTP sites
Google announced today that the Chrome web browser will start warning users by default before connecting to insecure HTTP public websites beginning with Chrome 154…