The attacks used spearphishing campaigns to target financial, manufacturing, defense, and logistics companies in Europe and Canada, ESET research finds This article has been indexed from WeLiveSecurity Read the original article: WinRAR zero-day exploited in espionage attacks against high-value targets
IT Security News Hourly Summary 2025-08-12 09h : 7 posts
7 posts were published in the last hour 7:3 : Poisoned telemetry can turn AIOps into AI Oops, researchers show 6:33 : DarkBit Hackers Target VMware ESXi Servers to Deploy Ransomware and Encrypt VMDK Files 6:33 : Critical Vulnerability in…
NCSC: Citrix NetScaler Flaw (CVE-2025-6543) is Being Actively Exploited to Breach Organizations
The National Cyber Security Centre (NCSC) in the Netherlands has issued an urgent update on a series of sophisticated cyberattacks exploiting a zero-day vulnerability in Citrix NetScaler systems, identified as CVE-2025-6543. This flaw, affecting Citrix NetScaler Application Delivery Controller (ADC)…
North Korean Kimsuky Hackers Suffer Data Breach as Insiders Leak Information Online
A member of North Korea’s notorious Kimsuky espionage group has experienced a significant data breach after insiders leaked hundreds of gigabytes of internal files and tools to the public. The breach, which emerged in early June 2025, exposed the group’s…
The Matter 1.4.2 update has the smart home upgrades you didn’t know you needed
As the CSA prepares to launch Matter 1.5 this fall, a 1.4.2 update is setting the stage to improve your user experience. This article has been indexed from Latest news Read the original article: The Matter 1.4.2 update has the…
From Risk to ROI: How Security Maturity Drives Business Value
From Risk to ROI: How Security Maturity Drives Business Value madhav Tue, 08/12/2025 – 04:30 Cyber threats are like moving targets—constantly evolving and increasingly pervasive. In a hyper-connected world, no individual, industry, or organization is immune. The threat landscape presents…
AI-Driven Vulnerability Management as a Solution for New Era
Vulnerability management (VM) is the continuous process of finding, evaluating, listing, reporting, and providing AI-driven patch recommendations for security vulnerabilities across an organization’s inventory. In practice, this means regularly scanning IT assets for known vulnerabilities, prioritizing which ones to fix…
North Korean crypto theft, Microsoft rolls out back up, four charged in global scheme
North Korean crypto theft Microsoft rolls out PC back up during attack U.S. charges four in $100M global fraud scheme Huge thanks to our sponsor, Vanta Do you know the status of your compliance controls right now? Like…right now? We…
Poisoned telemetry can turn AIOps into AI Oops, researchers show
Sysadmins, your job is safe Automating IT operations using AI may not be the best idea at the moment.… This article has been indexed from The Register – Security Read the original article: Poisoned telemetry can turn AIOps into AI…
DarkBit Hackers Target VMware ESXi Servers to Deploy Ransomware and Encrypt VMDK Files
A sophisticated ransomware attack by a previously unknown cybercriminal group called “DarkBit” has targeted a major organization’s VMware ESXi infrastructure, encrypting critical virtual machine files and raising concerns about potential state-sponsored cyber warfare. The incident, which occurred following geopolitical tensions…
Critical Vulnerability in Carmaker Portal Allows Hackers to Unlock Cars Remotely
Security researcher Eaton Zveare unveiled a critical flaw in a major automaker’s dealer portal that could allow attackers to unlock and start consumer vehicles from anywhere. The vulnerability, discovered in an obscure centralized dealer software platform used by over 1,000…
NCSC Warns of Citrix Netscaler Vulnerability CVE-2025-6543 Exploited to Breach Orgs
The Dutch National Cyber Security Centre (NCSC-NL) has issued an urgent warning about sophisticated cyberattacks targeting critical infrastructure through a zero-day vulnerability in Citrix NetScaler devices. The vulnerability, designated CVE-2025-6543, has been actively exploited since early May 2025, successfully compromising…
Researchers Details Masking Malicious Scripts and Bypass Defense Mechanisms
The cybersecurity landscape continues to evolve as threat actors develop increasingly sophisticated methods to evade detection systems. Recent research has unveiled a comprehensive analysis of payload obfuscation techniques that enable malicious scripts to bypass modern defense mechanisms, including web application…
Smart Bus Systems Vulnerability Let Hackers Remotely Track and Control Vehicles
A newly discovered security flaw in leading smart bus systems threatens to expose passenger safety and fleet integrity. Researchers have identified a critical vulnerability CVE-2025-44179 in the remote management interface of several major transit providers’ onboard modems. Exploiting this weakness,…
DarkBit Hackers Attacking VMware ESXi Servers to Deploy Ransomware and Encrypts VMDK Files
A newly discovered ransomware campaign has targeted enterprise VMware ESXi environments with military precision, deploying custom-built encryption tools that specifically hunt for virtual machine disk files across VMFS datastores. Security researchers have successfully reverse-engineered the attack methodology and developed breakthrough…
Reddit Blocks Internet Archive Amid AI Data Scraping Concerns
Reddit has announced it will restrict the Internet Archive’s Wayback Machine from accessing most of its content, citing concerns about AI companies exploiting the digital preservation service to scrape data in violation of platform policies. The move significantly limits what…
Apache bRPC Vulnerability Lets Attackers Crash Services Remotely via Network
A critical security vulnerability has been discovered in Apache bRPC that allows attackers to remotely crash services through network-based denial of service attacks. The vulnerability, designated as CVE-2025-54472, affects all versions of Apache bRPC prior to 1.14.1 and stems from…
EntraGoat: Vulnerable Microsoft Entra ID infrastructure to simulate identity security misconfigurations
EntraGoat is a purpose-built tool that sets up a vulnerable Microsoft Entra ID environment to mimic real-world identity security issues. It’s designed to help security professionals practice spotting and exploiting common misconfigurations. The tool creates a range of privilege escalation…
What makes a security program mature and how to get there faster
Security leaders are flush with tools and data, but it’s not helping their programs mature. In this Help Net Security video, PlexTrac’s Dan DeCloss outlines the 3 key gaps holding security programs back and what sets mature programs apart. From…
IT Security News Hourly Summary 2025-08-12 06h : 3 posts
3 posts were published in the last hour 3:33 : Erlang/OTP SSH RCE Vulnerability Exploited in the Wild to Attack Across OT Networks 3:32 : Hackers Behind $100 Million Romance Scams and Other Frauds Extradited to US 3:32 : Linux…
New WinRAR Zero-Day Flaw Exploited by Russian-Linked Hackers
A previously unknown security flaw in the popular file archiver WinRAR is being actively exploited by the Russia-aligned… The post New WinRAR Zero-Day Flaw Exploited by Russian-Linked Hackers appeared first on Hackers Online Club. This article has been indexed from…
Hackers Using ClickFix Technique to Attack Windows Machine and Execute Powershell Commands
A sophisticated new attack campaign has emerged targeting Israeli businesses and infrastructure sectors through a deceptive social engineering technique known as “ClickFix,” which tricks users into executing malicious PowerShell commands on their Windows systems. The multi-stage attack chain begins with…
Cybersecurity jobs available right now: August 12, 2025
Cloud Platforms Engineering Manager Mozn | UAE | Remote – View job details As a Cloud Platforms Engineering Manager, you will lead the design, implementation, and lifecycle management of scalable, secure, and highly available cloud infrastructure. Embed security best practices…
Why DNS threats should be on every CISO’s radar in 2025
DNS is once again in the crosshairs of threat actors. According to the 2025 DNS Threat Landscape Report by Infoblox, attackers are changing tactics, and enterprises are feeling the pressure. The report shows that DNS is being used to exfiltrate…