The Evasive Panda APT group, also known as Bronze Highland, Daggerfly, and StormBamboo, has been running targeted campaigns since November 2022, using advanced techniques to deliver the MgBot malware. The group employs adversary-in-the-middle attacks combined with DNS poisoning to compromise…
Nomani Investment Scam Surges 62% Using AI Deepfake Ads on Social Media
The fraudulent investment scheme known as Nomani has witnessed an increase by 62%, according to data from ESET, as campaigns distributing the threat have also expanded beyond Facebook to include other social media platforms, such as YouTube. The Slovak cybersecurity…
Threat Actors Using Weaponized AV-themed Word and PDF Documents to Attack Israeli Organizations
Security researchers at Seqrite Labs have identified a campaign called Operation IconCat, targeting Israeli organizations with weaponized documents designed to look like legitimate security tools. The attacks began in November 2025 and have compromised multiple companies across information technology, staffing…
Russian Hackers Obtain Sensitive NHS Documents from UK Royal Properties
In a recent cyberattack, a ransomware group affiliated with Russia infiltrated the NHS computer system and retrieved hundreds of thousands of highly sensitive medical records, including those associated with members of the royal family, triggering alarms in several parts…
Merry Christmas, Readers Of Silicon UK
In a challenging world of turbulence and change. Silicon UK wishes our readers a joyful Christmas and much merriment This article has been indexed from Silicon UK Read the original article: Merry Christmas, Readers Of Silicon UK
Urban VPN Proxy Surreptitiously Intercepts AI Chats
This is pretty scary: Urban VPN Proxy targets conversations across ten AI platforms: ChatGPT, Claude, Gemini, Microsoft Copilot, Perplexity, DeepSeek, Grok (xAI), Meta AI. For each platform, the extension includes a dedicated “executor” script designed to intercept and capture conversations.…
Threat Actors Advertised NtKiller Malware on Dark Web Claiming Terminate Antivirus and EDR Bypass
A malicious actor known as AlphaGhoul has begun promoting a tool called NtKiller, designed to silently shut down antivirus software and endpoint detection tools. The tool was posted on an underground forum where criminals gather to buy and sell hacking…
Why Mobile-First SaaS Needs Passwordless Authentication for Field Teams
Learn why passwordless authentication is essential for mobile-first SaaS used by field teams to improve security, speed, and productivity. The post Why Mobile-First SaaS Needs Passwordless Authentication for Field Teams appeared first on Security Boulevard. This article has been indexed…
How to Detect Insider Threats Before They Damage Your Business
Learn how deception, identity verification, automation, and zero trust help detect insider threats before they cause real business damage. The post How to Detect Insider Threats Before They Damage Your Business appeared first on Security Boulevard. This article has been…
Attacks are Evolving: 3 Ways to Protect Your Business in 2026
Every year, cybercriminals find new ways to steal money and data from businesses. Breaching a business network, extracting sensitive data, and selling it on the dark web has become a reliable payday. But in 2025, the data breaches that affected…
Eurostar Accused Researchers of Blackmail for Reporting AI Chatbot Flaws
Researchers discovered critical flaws in Eurostar’s AI chatbot including prompt injection, HTML injection, guardrail bypass, and unverified chat IDs – Eurostar later accused them of blackmail. This article has been indexed from Hackread – Cybersecurity News, Data Breaches, AI, and…
The Age of the All-Access AI Agent Is Here
Big AI companies courted controversy by scraping wide swaths of the public internet. With the rise of AI agents, the next data grab is far more private. This article has been indexed from Security Latest Read the original article: The…
IT Security News Hourly Summary 2025-12-24 12h : 4 posts
4 posts were published in the last hour 11:2 : La Poste outage after a cyber attack disrupts digital banking and online services 11:2 : Cyber Experts Warn of Increased Consumer Scams This Festive Season 11:2 : NIST, MITRE Partner…
La Poste outage after a cyber attack disrupts digital banking and online services
La Poste said a major network incident took its systems offline, disrupting digital banking and online services for millions of users. The French national postal service La Poste confirmed a major cyber incident had knocked its information systems offline, disrupting…
Cyber Experts Warn of Increased Consumer Scams This Festive Season
As Santa starts his travels, experts are warning that his arrival could bring with it a range of cyber risks, from scams to insecure gadgets. Whilst Santa prefers to deliver via chimney, most cybercriminals are looking for backdoors. In some…
NIST, MITRE Partner on $20m AI Centers For Manufacturing and Cybersecurity
NIST and MITRE are collaboratively launching two centers to advance AI security for US manufacturing and critical infrastructure This article has been indexed from www.infosecurity-magazine.com Read the original article: NIST, MITRE Partner on $20m AI Centers For Manufacturing and Cybersecurity
ServiceNow to Pay $7.8bn For OT Security Specialist Armis
ServiceNow is set to acquire Armis for $7.75bn in a cash-only deal expected to close in the second half of 2026 This article has been indexed from www.infosecurity-magazine.com Read the original article: ServiceNow to Pay $7.8bn For OT Security Specialist…
One Year Of Zero-Click Exploits: What 2025 Taught Us About Modern Malware
The year 2025 represents a pivotal moment in cybersecurity, showcasing a remarkable evolution in zero-click exploitation techniques that significantly challenges our understanding of digital security. Unlike traditional attacks that require user interaction, such on clicking a malicious link or downloading…
Critical MongoDB Vulnerability Exposes Sensitive Data via Zlib Compression
A critical security vulnerability, tracked as CVE-2025-14847, that could allow attackers to extract uninitialized heap memory from database servers without authentication. The flaw resides in MongoDB’s zlib compression implementation and affects multiple versions of the database platform. The vulnerability enables client-side…
SEC Files Charges Over $14 Million Crypto Scam Using Fake AI-Themed Investment Tips
The U.S. Securities and Exchange Commission (SEC) has filed charges against multiple companies for their alleged involvement in an elaborate cryptocurrency scam that swindled more than $14 million from retail investors. The complaint charged crypto asset trading platforms Morocoin Tech…
Consumer Cyber Risks in 2026 Focus on AI-Driven Scams, Not Hacks
The most serious cyber risks consumers face in 2026 are less about technical break-ins and more about manipulation. Criminals increasingly rely on realistic AI-generated media and social engineering to pressure people into […] Thank you for being a Ghacks reader.…
ServiceNow to acquire Armis for $7.75 billion
ServiceNow entered into an agreement to acquire Armis for $7.75 billion in cash. The acquisition will expand ServiceNow’s security workflow offerings and advance AI-native, proactive cybersecurity and vulnerability response across all connected devices. Together, ServiceNow and Armis will create a…
La Poste Still Offline After Major DDoS Attack
French postal service warns of “major network incident” just before Christmas This article has been indexed from www.infosecurity-magazine.com Read the original article: La Poste Still Offline After Major DDoS Attack
WebRAT Malware via GitHub Repositories Claim as Proof-of-concept Exploits to Attack Users
A new malware campaign has surfaced that uses GitHub repositories to spread the WebRAT malware by disguising it as proof-of-concept exploits and gaming utilities. The malware targets users searching for game cheats, pirated software, and application patches, particularly for popular…