Author: [email protected] (The Hacker News)

When an organization’s credentials are leaked, the immediate consequences are rarely visible—but the long-term impact is far-reaching. Far from the cloak-and-dagger tactics seen in fiction, many real-world cyber breaches begin with something deceptively simple: a username and password. According to Verizon’s 2025 Data Breach Investigations Report, leaked credentials accounted for 22% of breaches  – Read … Read More “Leaked Credentials Up 160%: What Attackers Are Doing With Them  – The Hacker News” »

TeaOnHer hasn’t stopped at copying the functionality of the original Tea app (albeit skewed towards men rating women). It also appears to have carelessly mimicked the Tea dating advice app’s recklessness when it comes to data security. Read more in my article on the Hot for Security blog.  – Read More  – Graham Cluley 

A newly discovered campaign dubbed GreedyBear has leveraged over 150 malicious extensions to the Firefox marketplace that are designed to impersonate popular cryptocurrency wallets and steal more than $1 million in digital assets. The published browser add-ons masquerade as MetaMask, TronLink, Exodus, and Rabby Wallet, among others, Koi Security researcher Tuval Admoni said. What makes … Read More “GreedyBear Steals $1M in Crypto Using 150+ Malicious Firefox Wallet Extensions  – The Hacker News” »

The post Federal courts to ramp up filing system security after ‘recent escalated cyberattacks’ appeared first on CyberScoop.   – Read More  – CyberScoop 

LAS VEGAS — The Russian cybercrime group behind BlackSuit and Royal ransomware was more prolific and successful at extorting payments from its victims than previously known, according to an update Thursday from an investigative unit inside the Department of Homeland Security. “Since 2022, the Royal and BlackSuit ransomware groups have compromised over 450 known victims … Read More “BlackSuit, Royal ransomware group hit over 450 US victims before last month’s takedown  – CyberScoop” »

The threat actors behind the SocGholish malware have been observed leveraging Traffic Distribution Systems (TDSs) like Parrot TDS and Keitaro TDS to filter and redirect unsuspecting users to sketchy content. “The core of their operation is a sophisticated Malware-as-a-Service (MaaS) model, where infected systems are sold as initial access points to other cybercriminal organizations,” Silent … Read More “SocGholish Malware Spread via Ad Tools; Delivers Access to LockBit, Evil Corp, and Others  – The Hacker News” »

Cybersecurity researchers have disclosed multiple security flaws in video surveillance products from Axis Communications that, if successfully exploited, could expose them to takeover attacks. “The attack results in pre-authentication remote code execution on Axis Device Manager, a server used to configure and manage fleets of cameras, and the Axis Camera Station, client software used to … Read More “6,500 Axis Servers Expose Remoting Protocol; 4,000 in U.S. Vulnerable to Exploits  – The Hacker News” »

LAS VEGAS — Federal cyber authorities issued an alert Wednesday evening about a high-severity vulnerability affecting on-premises Microsoft Exchange servers shortly after a researcher presented findings of the defect at Black Hat.  Microsoft also issued an advisory about the vulnerability — CVE-2025-53786 — and said it’s not aware of exploitation in the wild.  While the … Read More “CISA, Microsoft warn organizations of high-severity Microsoft Exchange vulnerability  – CyberScoop” »

Google confirms a data breach by ShinyHunters hackers, who used a vishing scam to access a Salesforce database with small business customer info.  – Read More  – Hackread – Latest Cybersecurity, Hacking News, Tech, AI & Crypto 

Cybersecurity researchers have discovered a set of 11 malicious Go packages that are designed to download additional payloads from remote servers and execute them on both Windows and Linux systems. “At runtime the code silently spawns a shell, pulls a second-stage payload from an interchangeable set of .icu and .tech command-and-control (C2) endpoints, and executes … Read More “Malicious Go, npm Packages Deliver Cross-Platform Malware, Trigger Remote Data Wipes  – The Hacker News” »

Menlo Park, California, USA, 7th August 2025, CyberNewsWire  – Read More  – Hackread – Latest Cybersecurity, Hacking News, Tech, AI & Crypto 

ShinyHunters breached Chanel’s US client database via Salesforce-linked access, exposing limited customer details through social engineering tactics.  – Read More  – Hackread – Latest Cybersecurity, Hacking News, Tech, AI & Crypto 

SonicWall has revealed that the recent spike in activity targeting its Gen 7 and newer firewalls with SSL VPN enabled is related to an older, now-patched bug and password reuse. “We now have high confidence that the recent SSL VPN activity is not connected to a zero-day vulnerability,” the company said. “Instead, there is a … Read More “SonicWall Confirms Patched Vulnerability Behind Recent VPN Attacks, Not a Zero-Day  – The Hacker News” »

Now that we are well into 2025, cloud attacks are evolving faster than ever and artificial intelligence (AI) is both a weapon and a shield. As AI rapidly changes how enterprises innovate, security teams are now tasked with a triple burden: Secure AI embedded in every part of the business. Use AI to defend faster … Read More “The AI-Powered Security Shift: What 2025 Is Teaching Us About Cloud Defense  – The Hacker News” »

Microsoft has released an advisory for a high-severity security flaw affecting on-premise versions of Exchange Server that could allow an attacker to gain elevated privileges under certain conditions. The vulnerability, tracked as CVE-2025-53786, carries a CVSS score of 8.0. Dirk-jan Mollema with Outsider Security has been acknowledged for reporting the bug. “In an Exchange hybrid … Read More “Microsoft Discloses Exchange Server Flaw Enabling Silent Cloud Access in Hybrid Setups  – The Hacker News” »

Cybersecurity researchers demonstrate a new attack on Google Gemini AI for Workspace. Discover how a simple calendar invite can be used to perform phishing, steal emails, and even control home appliances.  – Read More  – Hackread – Latest Cybersecurity, Hacking News, Tech, AI & Crypto 

The Hague, Netherlands, 7th August 2025, CyberNewsWire  – Read More  – Hackread – Latest Cybersecurity, Hacking News, Tech, AI & Crypto 

Python is everywhere in modern software. From machine learning models to production microservices, chances are your code—and your business—depends on Python packages you didn’t write. But in 2025, that trust comes with a serious risk. Every few weeks, we’re seeing fresh headlines about malicious packages uploaded to the Python Package Index (PyPI)—many going undetected until … Read More “Webinar: How to Stop Python Supply Chain Attacks—and the Expert Tools You Need  – The Hacker News” »

French authorities extradited a 39-year-old Nigerian national to the United States Monday for allegedly hacking into tax preparation businesses and participating in a years-long conspiracy to defraud the Internal Revenue Service and state tax agencies. Chukwuemeka Victor Amachukwu and his Nigeria-based co-conspirators, including Kinglsey Uchelue Utulu, are accused of obtaining about $2.5 million in fraudulent … Read More “Nigerian accused of hacking tax preparation businesses extradited to US  – CyberScoop” »

A SecAlliance report reveals Chinese smishing syndicates compromised 115M US payment cards by bypassing MFA to exploit Apple Pay and Google Wallet.  – Read More  – Hackread – Latest Cybersecurity, Hacking News, Tech, AI & Crypto 

Cybersecurity researchers have demonstrated an “end-to-end privilege escalation chain” in Amazon Elastic Container Service (ECS) that could be exploited by an attacker to conduct lateral movement, access sensitive data, and seize control of the cloud environment. The attack technique has been codenamed ECScape by Sweet Security researcher Naor Haziz, who presented the findings today at … Read More “Researchers Uncover ECScape Flaw in Amazon ECS Enabling Cross-Task Credential Theft  – The Hacker News” »

The malicious ad tech purveyor known as VexTrio Viper has been observed developing several malicious apps that have been published on Apple and Google’s official app storefronts under the guise of seemingly useful applications. These apps masquerade as VPNs, device “monitoring” apps, RAM cleaners, dating services, and spam blockers, DNS threat intelligence firm Infoblox said … Read More “Fake VPN and Spam Blocker Apps Tied to VexTrio Used in Ad Fraud, Subscription Scams  – The Hacker News” »

Sean Cairncross took his post this week as national cyber director at what many agree is a “pivotal” time for the office, giving him a chance to shape its future role in the bureaucracy, tackle difficult policy issues, shore up industry relations and take on key threats. The former White House official, Republican National Committee … Read More “New National Cyber Director Cairncross faces challenges on policy, bureaucracy, threats  – CyberScoop” »

Florida firm IMDataCenter exposed 38GB of sensitive data including names, emails and ownership info. At least one hacker accessed and downloaded the files.  – Read More  – Hackread – Latest Cybersecurity, Hacking News, Tech, AI & Crypto 

Ukraine’s Defence Intelligence agency (HUR) claims that its hackers have successfully stolen secret files and classified data on a state-of-the-art Russian nuclear submarine, the “Knyaz Pozharsky.” Read more in my article on the Hot for Security blog.  – Read More  – Graham Cluley 

Organisational culture, as we know it, isn’t built overnight. It takes shape over time through decisions, habits and…  – Read More  – Hackread – Latest Cybersecurity, Hacking News, Tech, AI & Crypto