SharePoint users hit by Warlock ransomware, says Microsoft
24
Jul
2025

SharePoint users hit by Warlock ransomware, says Microsoft

Multiple organisations have now been hit by Warlock ransomware deployed on their systems via the dangerous ToolShell vulnerability chain in…

Senators push CISA director nominee on election security, agency focus
24
Jul
2025

Senators push CISA director nominee on election security, agency focus

Listen to the article 5 min This audio is auto-generated. Please let us know if you have feedback. Sean Plankey,…

Twilio denies breach following leak of alleged Steam 2FA codes
24
Jul
2025

Hacker sneaks infostealer malware into early access Steam game

A threat actor called EncryptHub has compromised a game on Steam to distribute info-stealing malware to unsuspecting users downloading the…

Chinese Hackers Attacking Windows Systems in Targeted Campaign to Deploy Ghost RAT and PhantomNet Malwares
24
Jul
2025

Chinese Hackers Attacking Windows Systems in Targeted Campaign to Deploy Ghost RAT and PhantomNet Malwares

Threat researchers are warning of twin Chinese-nexus espionage operations—“Operation Chat” and “Operation PhantomPrayers”—that erupted in the weeks preceding the Dalai…

A Premium Luggage Service’s Web Bugs Exposed the Travel Plans of Every User—Including Diplomats
24
Jul
2025

A Premium Luggage Service’s Web Bugs Exposed the Travel Plans of Every User—Including Diplomats

An airline leaving all of its passengers’ travel records vulnerable to hackers would make an attractive target for espionage. Less…

Replit AI Agent Deletes SaaStr Network Data Without Permission
24
Jul
2025

Replit AI Agent Deletes SaaStr Network Data Without Permission

An AI agent operating within the Replit platform reportedly deleted an entire company database without permission. The incident occurred during…

CastleLoader Malware Infects 469 Devices Using Fake GitHub Repos and ClickFix Phishing
24
Jul
2025

CastleLoader Malware Infects 469 Devices Using Fake GitHub Repos and ClickFix Phishing

Jul 24, 2025Ravie LakshmananMalware / Cybercrime Cybersecurity researchers have shed light on a new versatile malware loader called CastleLoader that…

Scattered Spider victim Clorox sues helpdesk provider
24
Jul
2025

Scattered Spider victim Clorox sues helpdesk provider

IT services provider Cognizant is facing a multimillion-dollar lawsuit from one of its customers, which claims lax security procedures enabled…

Metasploit Module Released For Actively Exploited SharePoint 0-Day Vulnerabilities
24
Jul
2025

Metasploit Module Released For Actively Exploited SharePoint 0-Day Vulnerabilities

Researchers have developed a new Metasploit exploit module targeting critical zero-day vulnerabilities in Microsoft SharePoint Server that are being actively…

UNC3944 Exploits VMware vSphere to Deploy Ransomware and Steal Data from Organizations
24
Jul
2025

UNC3944 Exploits VMware vSphere to Deploy Ransomware and Steal Data from Organizations

The Google Threat Intelligence Group has uncovered a highly advanced cyber operation orchestrated by the threat actor UNC3944, also linked…

Storm-2603 spotted deploying ransomware on exploited SharePoint servers
24
Jul
2025

Storm-2603 spotted deploying ransomware on exploited SharePoint servers

One of the groups that, in the past few weeks, has been exploiting vulnerabilities in on-prem SharePoint installation has been…

24
Jul
2025

IBM chief confident AI isn’t eroding other parts of the business

IBM expects to make $4.5bn in savings internally by scaling artificial intelligence (AI) initiatives. This is being achieved through a…