Pakistan-based threat actor APT36, also known as Transparent Tribe, has launched a sophisticated cyber-espionage campaign against Indian government institutions using a newly developed Python-based ELF malware. The attack marks a significant escalation in the group’s capabilities, demonstrating their growing technical…
Webinar: The “Agentic” Trojan Horse: Why the New AI Browsers War is a Nightmare for Security Teams
The AI browser wars are coming to a desktop near you, and you need to start worrying about their security challenges. For the last two decades, whether you used Chrome, Edge, or Firefox, the fundamental paradigm remained the same: a…
Emerging Android threat ‘Albiriox’ enables full On‑Device Fraud
Albiriox is new Android MaaS malware enabling on-device fraud and real-time control. It targets 400+ banking, fintech, crypto, and payment apps. Albiriox is a new Android malware sold under a malware-as-a-service model on Russian‑speaking cybercrime forums. It provides advanced capabilities…
French Football Federation faces own-goal after club software data breach
Zut alors! Cybercrooks scored names, numbers, and license IDs The French Football Federation (FFF) has conceded that attackers broke into its member management software using a compromised account, scoring a match sheet’s worth of player data in the process.… This…
The Connected Enterprise
Discover why 2026 will mark the shift from centralised systems to intelligent digital meshes powering AI, security, supply chains and enterprise resilience. This article has been indexed from Silicon UK Read the original article: The Connected Enterprise
CISA Warns of ScadaBR Vulnerability After Hacktivist ICS Attack
CISA has added CVE-2021-26829 to its Known Exploited Vulnerabilities (KEV) catalog. The post CISA Warns of ScadaBR Vulnerability After Hacktivist ICS Attack appeared first on SecurityWeek. This article has been indexed from SecurityWeek Read the original article: CISA Warns of…
Europol Takes Down Illegal Cryptocurrency Mixing Service
Europol, alongside Swiss and German authorities, dismantled the illegal cryptocurrency mixing service ‘Cryptomixer’ This article has been indexed from www.infosecurity-magazine.com Read the original article: Europol Takes Down Illegal Cryptocurrency Mixing Service
IT Security News Hourly Summary 2025-12-01 12h : 3 posts
3 posts were published in the last hour 10:32 : Royal Borough of Kensington and Chelsea Reveals Data Breach 10:32 : Australian Man Gets Seven Years for Running “Evil Twin” Wi-Fi 10:32 : Emerging cybersecurity needs: What the market is…
Royal Borough of Kensington and Chelsea Reveals Data Breach
At least one London council has had data compromised after a suspected ransomware attack last week This article has been indexed from www.infosecurity-magazine.com Read the original article: Royal Borough of Kensington and Chelsea Reveals Data Breach
Australian Man Gets Seven Years for Running “Evil Twin” Wi-Fi
A Western Australia man will spend seven years behind bars after stealing intimate data via Wi-Fi This article has been indexed from www.infosecurity-magazine.com Read the original article: Australian Man Gets Seven Years for Running “Evil Twin” Wi-Fi
Emerging cybersecurity needs: What the market is telling us
Default-deny, strict controls and real-time monitoring: how to stop threats before they start. This article has been indexed from Cybersecurity Dive – Latest News Read the original article: Emerging cybersecurity needs: What the market is telling us
U.S. CISA adds an OpenPLC ScadaBR flaw to its Known Exploited Vulnerabilities catalog
U.S. Cybersecurity and Infrastructure Security Agency (CISA) adds an OpenPLC ScadaBR flaw to its Known Exploited Vulnerabilities catalog. The U.S. Cybersecurity and Infrastructure Security Agency (CISA) added an OpenPLC ScadaBR flaw, tracked as CVE-2021-26829 (CVSS score of 5.4), to its Known Exploited Vulnerabilities (KEV)…
Advent of Configuration Extraction – Part 1: Pipeline Overview – First Steps with Kaiji Configuration Unboxing
This article is the opening chapter of a four-part Advent of Configuration Extraction series. The series outlines the methodology we employ at Sekoia’s Threat Detection & Research (TDR) team to automate the extraction of malware configuration data, from initial analysis…
Zilvia.net – 287,863 breached accounts
In November 2025, data breached from the Zilvia.net Nissan 240SX Silvia and Z Fairlady car forum was leaked. The breach exposed 288k unique email addresses along with usernames, IP addresses and salted MD5 password hashes sourced from the vBulletin based…
Australian Man Sentenced to Prison for Wi-Fi Attacks at Airports and on Flights
Michael Clapsis has been sentenced to 7 years and 4 months in prison for stealing sensitive information. The post Australian Man Sentenced to Prison for Wi-Fi Attacks at Airports and on Flights appeared first on SecurityWeek. This article has been…
New Albiriox MaaS Malware Targets 400+ Apps for On-Device Fraud and Screen Control
A new Android malware named Albiriox has been advertised under a malware-as-a-service (MaaS) model to offer a “full spectrum” of features to facilitate on-device fraud (ODF), screen manipulation, and real-time interaction with infected devices. The malware embeds a hard-coded list…
Taiwan Prosecutors Raid Residences Of Former TSMC Executive
Taiwanese prosecutors raid residences of Lo Wei-Jen, who left TSMC to return to Intel in October, amid intellectual property lawsuit This article has been indexed from Silicon UK Read the original article: Taiwan Prosecutors Raid Residences Of Former TSMC Executive
Alibaba Builds On Qwen Success With AI Glasses
Alibaba starts China sales of Quark AI Glasses, building on success of Qwen models, as it competes with Meta, Xiaomi in wearables sector This article has been indexed from Silicon UK Read the original article: Alibaba Builds On Qwen Success…
A week in security (November 24 – November 30)
A list of topics we covered in the week of November 24 to November 30 of 2025 This article has been indexed from Malwarebytes Read the original article: A week in security (November 24 – November 30)
Asahi ransomware details, California browser law, Windows Teams accelerated
Japanese brewer Asahi provides details regarding October ransomware attack California law regulating web browsers might impact national data privacy Microsoft to speed up Teams Huge thanks to our episode sponsor, Vanta This message comes from Vanta. What’s your 2 AM…
Asahi Hackers Stole Personal Data Of 2 Million People
Japanese brewery group says personal data on roughly 2 million people, including employees and customers, stolen in September hack This article has been indexed from Silicon UK Read the original article: Asahi Hackers Stole Personal Data Of 2 Million People
Kevin Lancaster Joins the usecure Board to Accelerate North American Channel Growth
Claymont, Delaware, 1st December 2025, CyberNewsWire Kevin Lancaster Joins the usecure Board to Accelerate North American Channel Growth on Latest Hacking News | Cyber Security News, Hacking Tools and Penetration Testing Courses. This article has been indexed from Latest Hacking…
IT Security News Hourly Summary 2025-12-01 09h : 1 posts
1 posts were published in the last hour 7:31 : Treating MCP like an API creates security blind spots
Treating MCP like an API creates security blind spots
In this Help Net Security interview, Michael Yaroshefsky, CEO at MCP Manager, discusses how Model Context Protocol’s (MCP) trust model creates security gaps that many teams overlook and why MCP must not be treated like a standard API. He explains how…