Burp Suite Upgrades Scanner With Detection for Critical React2Shell Flaws
09
Dec
2025

Burp Suite Upgrades Scanner With Detection for Critical React2Shell Flaws

ActiveScan++, a widely used extension for the popular penetration testing tool Burp Suite, has released a significant upgrade. The scanner…

Four Threat Clusters Using CastleLoader as GrayBravo Expands Its Malware Service Infrastructure
09
Dec
2025

Four Threat Clusters Using CastleLoader as GrayBravo Expands Its Malware Service Infrastructure

Dec 09, 2025Ravie LakshmananCybersecurity / Malware Four distinct threat activity clusters have been observed leveraging a malware loader known as…

North Korea
09
Dec
2025

North Korean hackers exploit React2Shell flaw in EtherRAT malware attacks

A new malware implant called EtherRAT, deployed in a recent React2Shell attack, runs five separate Linux persistence mechanisms and leverages…

Ransomware Targeting Hyper-V and VMware ESXi Surges as Akira Group Exploits System Vulnerabilities
09
Dec
2025

Ransomware Targeting Hyper-V and VMware ESXi Surges as Akira Group Exploits System Vulnerabilities

A new wave of ransomware attacks targeting virtual machine platforms has emerged, with the Akira ransomware group leading a campaign…

AI-Driven Tools Uncover GhostPenguin Backdoor Attacking Linux Servers
09
Dec
2025

AI-Driven Tools Uncover GhostPenguin Backdoor Attacking Linux Servers

A sophisticated Linux backdoor named GhostPenguin has been discovered by Trend Micro Research, evading detection for over four months after…

Are we mistaking regulation for resilience?
09
Dec
2025

Are we mistaking regulation for resilience?

As security leaders in the UK, we often feel squeezed between an increasingly aggressive threat landscape and a sprawling legislative…

Broadside botnet hits TBK DVRs, raising alarms for maritime logistics
09
Dec
2025

Broadside botnet hits TBK DVRs, raising alarms for maritime logistics

Broadside botnet hits TBK DVRs, raising alarms for maritime logistics Pierluigi Paganini December 09, 2025 Mirai-based Broadside botnet targets vulnerable…

Ransomware IAB abuses EDR for stealthy malware execution
09
Dec
2025

Ransomware IAB abuses EDR for stealthy malware execution

An initial access broker tracked as Storm-0249 is abusing endpoint detection and response solutions and trusted Microsoft Windows utilities to load malware,…

Microsoft Teams New feature Allows Users to Flag Malicious Calls
09
Dec
2025

Microsoft Teams New feature Allows Users to Flag Malicious Calls

Microsoft is set to introduce a significant security enhancement to its Teams platform that will empower users to flag potentially…

SAP Security Patch Day Fixes Critical Flaws in Solution Manager, NetWeaver & More
09
Dec
2025

SAP Security Patch Day Fixes Critical Flaws in Solution Manager, NetWeaver & More

SAP has released its December 2025 Security Patch Day updates, addressing 14 new security notes that fix multiple critical and…

New GeminiJack 0-Click Flaw in Google AI Exposed Users to Data Leaks
09
Dec
2025

New GeminiJack 0-Click Flaw in Gemini AI Exposed Users to Data Leaks – Hackread – Cybersecurity News, Data Breaches, Tech, AI, Crypto and More

A major security flaw, dubbed GeminiJack, was recently discovered by cybersecurity firm Noma Security in Google’s Gemini Enterprise and the…

Storm-0249 Escalates Ransomware Attacks with ClickFix, Fileless PowerShell, and DLL Sideloading
09
Dec
2025

Storm-0249 Escalates Ransomware Attacks with ClickFix, Fileless PowerShell, and DLL Sideloading

Dec 09, 2025Ravie LakshmananRansomware / Endpoint Security The threat actor known as Storm-0249 is likely shifting from its role as…