RONINGLOADER Weaponized Weaponizes Signed Drivers to Disable Defender and Evade EDR Tools
15
Nov
2025

RONINGLOADER Weaponized Weaponizes Signed Drivers to Disable Defender and Evade EDR Tools

A new threat targeting Chinese users has appeared with a dangerous ability to shut down security tools. RONINGLOADER, a multi-stage…

Critical pgAdmin4 Vulnerability Lets Attackers Execute Remote Code on Servers
15
Nov
2025

Critical pgAdmin4 Vulnerability Lets Attackers Execute Remote Code on Servers

A severe remote code execution (RCE) flaw has been uncovered in pgAdmin4, the popular open-source interface for PostgreSQL databases. Dubbed…

First Large-scale Cyberattack Using AI With Minimal Human Input
15
Nov
2025

First Large-scale Cyberattack Using AI With Minimal Human Input

Chinese government-backed hackers used Anthropic’s Claude Code tool to carry out advanced spying on about thirty targets worldwide, successfully breaking…

A Major Leak Spills a Chinese Hacking Contractor’s Tools and Targets
15
Nov
2025

A Major Leak Spills a Chinese Hacking Contractor’s Tools and Targets

The United States issued a seizure warrant to Starlink this week related to satellite internet infrastructure used in a scam…

Five U.S. Citizens Plead Guilty to Helping North Korean IT Workers Infiltrate 136 Companies
15
Nov
2025

Five U.S. Citizens Plead Guilty to Helping North Korean IT Workers Infiltrate 136 Companies

The U.S. Department of Justice (DoJ) on Friday announced that five individuals have pleaded guilty to assisting North Korea’s illicit…

A piece of the code inside the vbs file with the last line commented out (Source - Malwarebytes)
15
Nov
2025

Hackers are Weaponizing Invoices to Deliver XWorm That Steals Login Credentials

Attackers are using fake invoice emails to spread XWorm, a remote-access trojan that quietly steals login credentials, passwords, and sensitive…

Highly Sophisticated macOS DigitStealer Employs Multi-Stage Attacks to Evade detection
15
Nov
2025

Highly Sophisticated macOS DigitStealer Employs Multi-Stage Attacks to Evade detection

A new malware family targeting macOS systems has emerged with advanced detection evasion techniques and multi-stage attack chains. Named DigitStealer,…

A Multi-Stage Phishing Kit Using Telegram to Harvest Credentials and Bypass Automated Detection
15
Nov
2025

A Multi-Stage Phishing Kit Using Telegram to Harvest Credentials and Bypass Automated Detection

Phishing attacks continue to be one of the most persistent threats targeting organizations worldwide. Cybercriminals are constantly improving their methods…

U.S. CISA adds Fortinet FortiWeb flaw to its Known Exploited Vulnerabilities catalog
15
Nov
2025

U.S. CISA adds Fortinet FortiWeb flaw to its Known Exploited Vulnerabilities catalog

U.S. CISA adds Fortinet FortiWeb flaw to its Known Exploited Vulnerabilities catalog Pierluigi Paganini November 15, 2025 U.S. Cybersecurity and Infrastructure…

15
Nov
2025

Formbook Malware Delivered Using Weaponized Zip Files and Multiple Scripts

A new wave of Formbook malware attacks has appeared, using weaponized ZIP archives and multiple script layers to bypass security…

Akira Ransomware Targets Over 250 Organizations, Extracts $42 Million in Ransom Payments – New CISA Report
15
Nov
2025

Akira Ransomware Targets Over 250 Organizations, Extracts $42 Million in Ransom Payments – New CISA Report

A new advisory from the Cybersecurity and Infrastructure Security Agency reveals that Akira ransomware has become one of the most…

Lumma Stealer Uses Browser Fingerprinting to Collect Data and for Stealthy C&C Server Communications
15
Nov
2025

Lumma Stealer Uses Browser Fingerprinting to Collect Data and for Stealthy C&C Server Communications

Lumma Stealer has emerged as a serious threat in the cybercrime world, targeting users through fake software updates and cracked…