Cybercriminals expand malvertising campaigns from Facebook to Google Ads and YouTube, hijacking accounts to distribute crypto-stealing malware targeting financial platform users worldwide. A sophisticated malvertising campaign that initially targeted Facebook users with fake TradingView Premium offers has significantly expanded its…
Formbricks Signature Verification Flaw Lets Attackers Reset User Passwords
A critical vulnerability in the open source Formbricks experience management toolbox allows attackers to reset any user’s password without authorization. Published three days ago as advisory GHSA-7229-q9pv-j6p4 by maintainer mattinannt, the flaw stems from missing JWT signature verification in Formbricks versions before…
Hackers Weaponizing SVG Files to Deliver PureMiner Malware and Steal Sensitive Information
In recent weeks, a sophisticated phishing campaign has emerged, targeting organizations in Ukraine with malicious Scalable Vector Graphics (SVG) files designed to propagate the PureMiner cryptominer and a data-stealing payload dubbed Amatera Stealer. Attackers masquerade as the Ukrainian police, sending…
Windows Heap Exploitation Vulnerability With Record’s Size Field Leads to Arbitrary R/W
A critical vulnerability in Windows heap management demonstrates how improper handling of record-size fields enables arbitrary memory read and write operations. Suraj Malhotra shared a detailed exploitation technique leveraging the Low Fragmentation Heap (LFH) mechanism to achieve code execution on…
Formbricks Signature Verification Vulnerability Let Attackers Reset User Passwords Without Authorization
A critical security flaw discovered in Formbricks, an open-source experience management platform, demonstrates how missing JWT signature verification can lead to complete account takeovers. The vulnerability tracked as CVE-2025-59934 affects all versions prior to 4.0.1 and stems from improper token…
Submarine cable security is all at sea, and UK govt ‘too timid’ to act, says report
Guess how much of our direct transatlantic data capacity runs through two cables in Bude? Feature The first transatlantic cable, laid in 1858, delivered a little over 700 messages before promptly dying a few weeks later. 167 years on, the…
IT Security News Hourly Summary 2025-09-29 09h : 6 posts
6 posts were published in the last hour 7:2 : Who are the Scattered Lapsus$ Hunters and are they going away? 7:2 : Two Dutch Teenagers Arrested for Wi-Fi Sniffing Activities 7:2 : Threat Actors Leveraging Dynamic DNS Providers to…
Criminals Publish Child Data After Nursery Hack
Hackers reportedly steal details on thousands of nursery children and staff, release data to pressure Kido nursery chain to pay ransom This article has been indexed from Silicon UK Read the original article: Criminals Publish Child Data After Nursery Hack
Meta To Offer Ad-Free Facebook, Instagram In UK
Meta says it will offer ad-free, subscription-based version of Facebook, Instagram in UK in coming weeks as it faces regulatory pressure This article has been indexed from Silicon UK Read the original article: Meta To Offer Ad-Free Facebook, Instagram In…
Silicon UK In Focus Podcast: The Future of FinTech
Explore the future of FinTech with TransferMate CEO Gary Conroy. From quantum security to biometric banking, discover the innovations set to reshape finance. This article has been indexed from Silicon UK Read the original article: Silicon UK In Focus Podcast:…
Despite Russian influence, Moldova votes Pro-EU, highlighting future election risks
Moldova ’s deputy PM blames Russia for an election cyberattack, calling it part of a planned hybrid campaign to destabilize democracy. Moldova Deputy Prime Minister Doina Nistor blamed Russia for a cyberattack targeting the country’s Central Electoral Commission last week,…
New ModStealer Evades Antivirus, Targets macOS Users to Steal Sensitive Data
A sophisticated new malware strain targeting macOS users has emerged, capable of bypassing traditional antivirus solutions while specifically targeting developers and cryptocurrency holders. The cross-platform threat, dubbed ModStealer, represents the latest evolution in macOS-focused cybercrime, highlighting the growing security challenges facing…
SUSE Rancher Flaws Allow Attackers to Lock Out Admin Accounts
A critical security vulnerability in SUSE Rancher Manager has been discovered that enables attackers with elevated privileges to lock out administrative accounts, potentially disrupting entire Kubernetes cluster management operations. The flaw, tracked as CVE-2024-58260, carries a high severity rating with a CVSS score…
A week in security (September 22 – September 28)
Last week on Malwarebytes Labs: Stay safe! This article has been indexed from Malwarebytes Read the original article: A week in security (September 22 – September 28)
When AI is trained for treachery, it becomes the perfect agent
We’re blind to malicious AI until it hits. We can still open our eyes to stopping it Opinion Last year, The Register reported on AI sleeper agents. A major academic study explored how to train an LLM to hide destructive…
Dutch espionage arrest, DOD risk management framework, Oyster malvertising
Dutch teenagers arrested for attempted espionage for Russia DoD announces replacement for risk management framework Fake Microsoft Teams installers deliver Oyster malware Huge thanks to our sponsor, Nudge Security Here’s the thing: your employees are signing up for new apps,…
Who are the Scattered Lapsus$ Hunters and are they going away?
The cyber-criminal organization Scattered Lapsus$ Hunters is a group of hackers whose members also belong to other popular cyber gangs such as ShinyHunters, Scattered Spider,… The post Who are the Scattered Lapsus$ Hunters and are they going away? appeared first…
Two Dutch Teenagers Arrested for Wi-Fi Sniffing Activities
Dutch authorities have arrested two 17-year-old boys on suspicion of “state interference” in a cybersecurity case with alleged connections to Russian espionage operations. The teenagers appeared in court on Thursday, with one remanded in custody and the other placed under…
Threat Actors Leveraging Dynamic DNS Providers to Use for Malicious Purposes
Cybersecurity researchers are raising alarms about a growing threat vector as malicious actors increasingly exploit Dynamic DNS providers to establish robust command and control infrastructure. These publicly rentable subdomain services, traditionally designed for legitimate hosting purposes, have become the preferred…
SVG Files Abused to Deploy PureMiner Malware and Exfiltrate Data
Cybercriminals are exploiting SVG files as an initial attack vector in a multi-stage campaign designed to impersonate Ukrainian government communications. FortiGuard Labs has uncovered a sophisticated phishing campaign targeting Ukrainian government agencies through malicious Scalable Vector Graphics (SVG) files, ultimately…
SMS Pools and what the US Secret Service Really Found Around New York
Last week the United Nations General Assembly kicked off in New York City. On the first day, a strange US Secret Service press conference revealed that they had seized 300 SIM Servers with 100,000 SIM cards. Various media outlets jumped…
How attackers poison AI tools and defenses
Cyberattackers are using generative AI to draft polished spam, create malicious code and write persuasive phishing lures. They are also learning how to turn AI systems themselves into points of compromise. Recent findings highlight this shift. Researchers from Columbia University…
ThreatBook Launches Best-of-Breed Advanced Threat Intelligence Solution
Singapore, Singapore, 29th September 2025, CyberNewsWire This article has been indexed from Hackread – Latest Cybersecurity, Hacking News, Tech, AI & Crypto Read the original article: ThreatBook Launches Best-of-Breed Advanced Threat Intelligence Solution
Threat Actors Exploiting Dynamic DNS Providers for Malicious Activity
Cybersecurity researchers have identified a growing trend where threat actors are increasingly exploiting Dynamic DNS providers to host malicious infrastructure, posing significant risks to enterprise organizations worldwide. Dynamic DNS providers, also known as publicly rentable subdomain providers, have become attractive…