Fake WhatsApp API Package on npm Steals Messages, Contacts, and Login Tokens
Cybersecurity researchers have disclosed details of a new malicious package on the npm repository that works as a fully functional WhatsApp API, but also contains…
Latest Cybersecurity News — Page 713
View all →
AI-enabled Self-software | Daniel Miessler
One of the biggest changes that AI brought in 2025 is something that not enough people are talking about. Lots of people who used to…
CISA warns of continued threat activity linked to Brickstorm malware
The Cybersecurity and Infrastructure Security Agency released new analysis of threat activity linked to Brickstorm malware, which has been used by a China-nexus threat group…
Microsoft Brokering File System Vulnerability Let Attackers Escalate Privileges
Microsoft has patched a significant use-after-free vulnerability in its Brokering File System (BFS) driver, tracked as CVE-2025-29970. The flaw enables local attackers to escalate privileges…
Sleeping Bouncer Vulnerability Impacts Gigabyte, MSI, ASRock, and ASUS Motherboards
A critical firmware vulnerability affecting motherboards from major manufacturers including Gigabyte, MSI, ASRock, and ASUS has been discovered by Riot Games’ Vanguard anti-cheat team. The…
AI security is fundamentally a cloud infrastructure problem, Palo Alto Networks says
Listen to the article 2 min This audio is auto-generated. Please let us know if you have feedback. Dive Brief: Virtually all organizations (99%) have…
Malicious npm package steals WhatsApp accounts and messages
A malicious package in the Node Package Manager (NPM) registry poses as a legitimate WhatsApp Web API library to steal WhatsApp messages, collect contacts, and gain…
BlindEagle Hackers Attacking Government Agencies with Powershell Scripts
BlindEagle, a South American threat group, has launched a sophisticated campaign against Colombian government agencies, demonstrating an alarming evolution in attack techniques. In early September…
PoC Exploit Released for Use-After-Free Vulnerability in Linux Kernel POSIX CPU Timers
A critical race condition vulnerability in the Linux kernel’s POSIX CPU timers has been exposed through a detailed proof-of-concept, one of the most sophisticated kernel…
Frogblight Malware Targets Android Users With Fake Court and Aid Apps – Hackread – Cybersecurity News, Data Breaches, AI, and More
A dangerous digital threat has emerged, specifically targeting mobile users in Turkiye to drain their bank accounts. Researchers from the cybersecurity firm Kaspersky’s threat intelligence…
Ukrainian hacker pleads guilty to Nefilim Ransomware attacks in U.S.
Ukrainian hacker pleads guilty to Nefilim Ransomware attacks in U.S. Pierluigi Paganini December 22, 2025 Ukrainian Artem Stryzhak (35) pleaded guilty in the U.S. for…
Romanian water authority hit by ransomware attack over weekend
Romanian Waters (Administrația Națională Apele Române), the country’s water management authority, was hit by a ransomware attack over the weekend. Officials with the National Cyber Security Directorate…