In October 2025, threat researchers at Cyble Research and Intelligence Labs uncovered a sophisticated cyber attack leveraging weaponized military documents to distribute an advanced SSH-Tor backdoor targeting defense sector personnel. The campaign centers on a deceptively simple delivery mechanism: a…
Conti Group Member Responsible for Deploying Ransomware Extradited to USA
A Ukrainian national accused of playing a key role in the notorious Conti ransomware operation has been extradited from Ireland to face federal charges in the United States. Oleksii Oleksiyovych Lytvynenko, 43, made his first court appearance in the Middle…
Who is Zico Kolter? A Professor Leads OpenAI Safety Panel With Power to Halt Unsafe AI Releases
Kolter leads a panel at OpenAI that has the authority to halt the ChatGPT maker’s release of new AI systems if it finds them unsafe. The post Who is Zico Kolter? A Professor Leads OpenAI Safety Panel With Power to…
Zenity delivers runtime protection for OpenAI’s AgentKit
Zenity announced runtime protection for OpenAI’s AgentKit, providing enterprise-grade enforcement that detects and blocks data leakage, secret exposure and unsafe agent behavior in real time. This launch follows Zenity Labs’ recent research exposing critical gaps in OpenAI’s AgentKit guardrails that…
EN, SentinelLabs - We are hunters, reversers, exploit developers, and tinkerers shedding light on the world of malware, exploits, APTs, and cybercrime across all platforms.
LABScon25 Replay | LLM-Enabled Malware In the Wild
Learn how to detect malware that generates code at runtime. SentinelLABS reveals hunting techniques and how to uncover novel AI-enabled threats. This article has been indexed from SentinelLabs – We are hunters, reversers, exploit developers, and tinkerers shedding light on…
Hackers Actively Scanning TCP Ports 8530/8531 for WSUS CVE-2025-59287
Security researchers at the SANS Internet Storm Center have detected a significant spike in suspicious network traffic targeting Windows Server Update Services (WSUS) infrastructure worldwide. The reconnaissance activity focuses specifically on TCP ports 8530 and 8531, which correspond to unencrypted…
Malwarebytes aces PCMag Readers’ Choice Awards and AVLab Cybersecurity Foundation tests
Malwarebytes earned three PCMag wins and achieved 100% protection in AVLab Cybersecurity Foundation’s latest malware test. This article has been indexed from Malwarebytes Read the original article: Malwarebytes aces PCMag Readers’ Choice Awards and AVLab Cybersecurity Foundation tests
IT Security News Hourly Summary 2025-11-03 15h : 14 posts
14 posts were published in the last hour 13:34 : Proton Brings Privacy-Focused AI to the Workplace with Lumo for Business 13:34 : Claude AI APIs Can Be Abused for Data Exfiltration 13:34 : Stop Using Public Wi-Fi: Critical Security…
Proton Brings Privacy-Focused AI to the Workplace with Lumo for Business
Proton, the company best known for Proton Mail and Proton VPN, has launched Lumo for Business, a new version of its privacy-first AI assistant designed specifically for teams. The move marks the third major update to Lumo in just three…
Claude AI APIs Can Be Abused for Data Exfiltration
An attacker can inject indirect prompts to trick the model into harvesting user data and sending it to the attacker’s account. The post Claude AI APIs Can Be Abused for Data Exfiltration appeared first on SecurityWeek. This article has been…
Stop Using Public Wi-Fi: Critical Security Risks Explained
Public Wi-Fi networks, commonly found in coffee shops and public spaces, are increasingly used by remote workers and mobile device users seeking internet access outside the home or office. While convenient, these networks pose significant security risks that are…
Ribbon Targeted in Cyber Espionage Campaign by Nation-State Actors
Among the many revelations which illustrate how sophisticated state-backed cyber intrusions are, Ribbon Communications has confirmed that its internal network was compromised by government-backed hackers who kept unauthorised access for almost a year before they were detected, a revelation…
Penn Hacker Claims Major Data Breach
The incident began last Friday when University of Pennsylvania alumni and students started receiving multiple offensive emails sent from Penn.edu addresses The post Penn Hacker Claims Major Data Breach first appeared on CyberMaterial. This article has been indexed from CyberMaterial…
BankBot YNRK And DeliveryRAT Exposed
Cybersecurity firm CYFIRMA has analyzed different samples of an Android trojan dubbed BankBot-YNRK, revealing its significant capability The post BankBot YNRK And DeliveryRAT Exposed first appeared on CyberMaterial. This article has been indexed from CyberMaterial Read the original article: BankBot…
Apple Pay VP Unveils Wallet Updates
Apple is preparing to launch an enhancement to its Wallet app that will allow users in the U.S. to create a digital identity tied to their passport. The post Apple Pay VP Unveils Wallet Updates first appeared on CyberMaterial. This…
China Linked Hackers Exploit Shortcut In
A sophisticated, China-affiliated hacking group tracked as UNC6384 has been observed conducting a fresh series of attacks against European diplomatic The post China Linked Hackers Exploit Shortcut In first appeared on CyberMaterial. This article has been indexed from CyberMaterial Read…
HTTPTroy Backdoor Poses As VPN Invoice
The Kimsuky operation leveraged a phishing email containing a ZIP file masquerading as a VPN invoice, according to analysis The post HTTPTroy Backdoor Poses As VPN Invoice first appeared on CyberMaterial. This article has been indexed from CyberMaterial Read the…
North Korean Hackers Caught on Video Using AI Filters in Fake Job Interviews
North Korean hackers from the Famous Chollima group used AI deepfakes and stolen identities in fake job interviews to infiltrate crypto and Web3 companies. This article has been indexed from Hackread – Cybersecurity News, Data Breaches, Tech, AI, Crypto and…
The Evolution of SOC Operations: How Continuous Exposure Management Transforms Security Operations
Security Operations Centers (SOC) today are overwhelmed. Analysts handle thousands of alerts every day, spending much time chasing false positives and adjusting detection rules reactively. SOCs often lack the environmental context and relevant threat intelligence needed to quickly verify which…
⚡ Weekly Recap: Lazarus Hits Web3, Intel/AMD TEEs Cracked, Dark Web Leak Tool & More
Cyberattacks are getting smarter and harder to stop. This week, hackers used sneaky tools, tricked trusted systems, and quickly took advantage of new security problems—some just hours after being found. No system was fully safe. From spying and fake job…
Metropolitan Police hails facial recognition tech after record year for arrests
But question marks remain over the tech’s biases London’s Metropolitan Police Service (MPS) says the hundreds of live facial recognition (LFR) deployments across the Capital last year led to 962 arrests, according to a new report on the controversial tech’s…
Cybersecurity M&A Roundup: 45 Deals Announced in October 2025
Significant cybersecurity M&A deals announced by Jamf, LevelBlue, Ping Identity, Twilio, and Veeam Software. The post Cybersecurity M&A Roundup: 45 Deals Announced in October 2025 appeared first on SecurityWeek. This article has been indexed from SecurityWeek Read the original article:…
Critical UniFi OS Flaw Enables Remote Code Execution
Security researchers have uncovered a severe unauthenticated Remote Code Execution vulnerability in Ubiquiti’s UniFi OS that earned a substantial $25,000 bug bounty reward. Tracked as CVE-2025-52665, this critical flaw allows attackers to gain complete control of UniFi devices without requiring…
Open VSX Registry Responds to Leaked Tokens and Malicious Extension Incident
The Open VSX team and Eclipse Foundation have addressed a significant security incident involving leaked authentication tokens and malicious extensions on their popular code marketplace. The organization has now contained the situation and outlined concrete steps to prevent future attacks.…