Iran-Linked MuddyWater Targets 100+ Organisations in Global Espionage Campaign
Oct 22, 2025Ravie LakshmananMalware / Cyber Espionage The Iranian nation-state group known as MuddyWater has been attributed to a new campaign that has leveraged a…
Latest Cybersecurity News — Page 1216
View all →
Vidar Stealer 2.0 Boosts Infostealer’s Theft And Evasion
Vidar Stealer 2.0 has been released, and the updated infostealer claims to offer improved performance with advanced credential stealing and evasion abilities, features that will…
TARmageddon flaw in abandoned Rust library enables RCE attacks
A high-severity vulnerability in the now-abandoned async-tar Rust library and its forks can be exploited to gain remote code execution on systems running unpatched software.…
Critical Vulnerability in MCP Server Platform Exposes 3,000 Servers and Thousands of API Keys
A critical vulnerability in Smithery.ai, a popular registry for Model Context Protocol (MCP) servers. This issue could have allowed attackers to steal from over 3,000…
Canada Fines Cybercrime Friendly Cryptomus $176M – Krebs on Security
Financial regulators in Canada this week levied $176 million in fines against Cryptomus, a digital payments platform that supports dozens of Russian cryptocurrency exchanges and…
Open letter calls for prohibition on superintelligent AI, highlighting growing mainstream concern
An open letter released Wednesday has called for a ban on the development of artificial intelligence systems considered to be “superintelligent” until there is broad…
Critical Argument Injection Vulnerability in Popular AI Agents Let Attackers Execute Remote Code
A critical argument injection flaw in three unnamed popular AI agent platforms enables attackers to bypass human approval safeguards and achieve remote code execution (RCE)…
The Long Tail of the AWS Outage
A sprawling Amazon Web Services cloud outage that began early Monday morning illustrated the fragile interdependencies of the internet as major communication, financial, health care,…
Over 100 Chrome extensions break WhatsApp’s anti-spam rules
Recent research by Socket’s Threat Research Team uncovered a massive, coordinated campaign flooding the Chrome Web Store with 131 spamware extensions. These add-ons hijack WhatsApp…
Jaguar Land Rover attack to cost UK £1.9bn, say cyber monitors
Britain’s Cyber Monitoring Centre (CMC) – a non-profit dedicated to analysing and categorising cyber incidents in the UK – has declared the Jaguar Land Rover…
AI security flaws afflict half of organizations
Listen to the article 3 min This audio is auto-generated. Please let us know if you have feedback. Dive Brief: Half of all organizations have…
FinWise data breach shows why encryption is your last defense
The 2024 FinWise data breach serves as a stark example of the growing insider threats faced by modern financial institutions. Unlike typical cyberattacks originating from…