AttackFeed by Joe Wagner

Over 200,000 websites running a vulnerable version of a popular WordPress plugin could be at risk of being hijacked by hackers. Read more in my article on the Hot for Security blog.  – Read More  – Graham Cluley 

In episode 61 of The AI Fix, a robot called DeREK goes bananas, OpenAI, Google DeepMind, and Anthropic warn we may lose the ability to see what AI is thinking, a dextrous robot changes its own batteries, the USA unveils its AI action plan, and a human beats AI to win the World Coding Championship. … Read More “The AI Fix #61: Replit panics, deletes $1M project; AI gets gold at Math Olympiad  – Graham Cluley” »

Palo Alto, California, 29th July 2025, CyberNewsWire  – Read More  – Hackread – Latest Cybersecurity, Hacking News, Tech, AI & Crypto 

Darktrace uncovers the first exploit of a critical SAP NetWeaver vulnerability (CVE-2025-31324) to deploy Auto-Color backdoor malware. Learn how this evasive Linux RAT targets systems for remote code execution and how AI-powered defence thwarts multi-stage attacks.  – Read More  – Hackread – Latest Cybersecurity, Hacking News, Tech, AI & Crypto 

A newly emerged ransomware-as-a-service (RaaS) gang called Chaos is likely made up of former members of the BlackSuit crew, as the latter’s dark web infrastructure has been the subject of a law enforcement seizure. Chaos, which sprang forth in February 2025, is the latest entrant in the ransomware landscape to conduct big-game hunting and double … Read More “Chaos RaaS Emerges After BlackSuit Takedown, Demanding $300K from U.S. Victims  – The Hacker News” »

Specops Software’s analysis reveals how Scattered Spider’s persistent help desk exploitation cost Clorox $400 million. Understand the August 2023 breach, its operational disruption, and critical steps organisations must take to protect against similar social engineering threats.  – Read More  – Hackread – Latest Cybersecurity, Hacking News, Tech, AI & Crypto 

React conquered XSS? Think again. That’s the reality facing JavaScript developers in 2025, where attackers have quietly evolved their injection techniques to exploit everything from prototype pollution to AI-generated code, bypassing the very frameworks designed to keep applications secure. Full 47-page guide with framework-specific defenses (PDF, free). JavaScript conquered the web, but with  – Read … Read More “Why React Didn’t Kill XSS: The New JavaScript Injection Playbook  – The Hacker News” »

Cybersecurity researchers have discovered a new, large-scale mobile malware campaign that’s targeting Android and iOS platforms with fake dating, social networking, cloud storage, and car service apps to steal sensitive personal data. The cross-platform threat has been codenamed SarangTrap by Zimperium zLabs. Users in South Korea appear to be the primary focus. “This extensive campaign … Read More “Cybercriminals Use Fake Apps to Steal Data and Blackmail Users Across Asia’s Mobile Networks  – The Hacker News” »

Until recently, the cyber attacker methodology behind the biggest breaches of the last decade or so has been pretty consistent: Compromise an endpoint via software exploit, or social engineering a user to run malware on their device;  Find ways to move laterally inside the network and compromise privileged identities; Repeat as needed until you can … Read More “How the Browser Became the Main Cyber Battleground  – The Hacker News” »

The U.S. Cybersecurity and Infrastructure Security Agency (CISA) on Monday added a high-severity security vulnerability impacting PaperCutNG/MF print management software to its Known Exploited Vulnerabilities (KEV) catalog, citing evidence of active exploitation in the wild. The vulnerability, tracked as CVE-2023-2533 (CVSS score: 8.4), is a cross-site request forgery (CSRF) bug that could  – Read More  … Read More “CISA Adds PaperCut NG/MF CSRF Vulnerability to KEV Catalog Amid Active Exploitation  – The Hacker News” »

GLOBAL GROUP Ransomware targets media giant Albavisión, claims 400 GB data theft as it continues hitting global sectors with advanced extortion tactics.  – Read More  – Hackread – Latest Cybersecurity, Hacking News, Tech, AI & Crypto 

Researchers have disclosed a vulnerability in Gemini Command Line Interface (CLI), Google’s latest piece of “agentic” AI software for code development. The flaw, which was reported to Google and patched prior to disclosure, would have allowed an attacker to silently execute arbitrary code on a user’s machine. In one video demonstration, a researcher interacts with … Read More “Researchers flag flaw in Google’s AI coding assistant that allowed for ‘silent’ code exfiltration   – CyberScoop” »

If you’re running a WordPress site and rely on the Post SMTP plugin for email delivery, there’s something…  – Read More  – Hackread – Latest Cybersecurity, Hacking News, Tech, AI & Crypto 

macOS flaw dubbed Sploitlight allows attackers to access Apple Intelligence-cached data by abusing Spotlight plugins, bypassing privacy controls.  – Read More  – Hackread – Latest Cybersecurity, Hacking News, Tech, AI & Crypto 

A new report from Google’s GTIG reveals how UNC3944 (0ktapus) uses social engineering to compromise Active Directory, then exploits VMware vSphere for data theft and direct ransomware deployment. Understand their tactics and learn vital mitigation steps.  – Read More  – Hackread – Latest Cybersecurity, Hacking News, Tech, AI & Crypto 

In what’s the latest instance of a software supply chain attack, unknown threat actors managed to compromise Toptal’s GitHub organization account and leveraged that access to publish 10 malicious packages to the npm registry. The packages contained code to exfiltrate GitHub authentication tokens and destroy victim systems, Socket said in a report published last week. … Read More “Hackers Breach Toptal GitHub, Publish 10 Malicious npm Packages With 5,000 Downloads  – The Hacker News” »

The US insurance giant has admitted that hackers stole personal info of the “majority” of its customers and staff earlier this month.  – Read More  – Graham Cluley 

It’s time for SpaceX to take strong action against scammers abusing the company’s Starlink internet service, Sen. Maggie Hassan said in a letter to CEO Elon Musk on Monday. The New Hampshire Democrat cited evidence accumulating over the past two years that some Southeast Asian fraudsters scamming billions of dollars from U.S. citizens have leaned … Read More “Sen. Hassan wants to hear from SpaceX about scammers abusing Starlink  – CyberScoop” »

There are few laws at the state or federal level to constrain data brokerage, the process by which companies collect and sell bulk data on people they’ve never met or done business with. States at the forefront of regulating the industry, like California, currently require hundreds of companies to register with the government and provide … Read More “Hundreds of registered data brokers ignore user requests around personal data  – CyberScoop” »

The FBI released a trove of research on The Com last week, warning that the sprawling cybercriminal network of minors and young adults is growing rapidly and splintering into three primary subsets described by officials as Hacker Com, In Real Life Com and Extortion Com. The warnings lay out how The Com’s thousands of members, … Read More “FBI alerts tie together threats of cybercrime, physical violence from The Com  – CyberScoop” »

European defence giant Naval Group has confirmed that it is investigating an alleged cyber attack which has seen what purports to be sensitive internal data published on the internet by hackers. Read more in my article on the Hot for Security blog.  – Read More  – Graham Cluley 

Some risks don’t breach the perimeter—they arrive through signed software, clean resumes, or sanctioned vendors still hiding in plain sight. This week, the clearest threats weren’t the loudest—they were the most legitimate-looking. In an environment where identity, trust, and tooling are all interlinked, the strongest attack path is often the one that looks like it … Read More “⚡ Weekly Recap — SharePoint Breach, Spyware, IoT Hijacks, DPRK Fraud, Crypto Drains and More  – The Hacker News” »

The “Tea” app, a new and popular social platform for women, confirmed a major data breach affecting users…  – Read More  – Hackread – Latest Cybersecurity, Hacking News, Tech, AI & Crypto 

Picture this: you’ve hardened every laptop in your fleet with real‑time telemetry, rapid isolation, and automated rollback. But the corporate mailbox—the front door for most attackers—is still guarded by what is effectively a 1990s-era filter. This isn’t a balanced approach. Email remains a primary vector for breaches, yet we often treat it as a static … Read More “Email Security Is Stuck in the Antivirus Era: Why It Needs a Modern Approach  – The Hacker News” »

Sublime Security reveals a cunning romance/adult-themed scam targeting German speakers, leveraging Keitaro TDS to deliver an AutoIT-based malware loader. Learn how this sophisticated campaign operates, its deceptive tactics, and the hidden payload.  – Read More  – Hackread – Latest Cybersecurity, Hacking News, Tech, AI & Crypto 

News of two major Microsoft security events in as many weeks should concern every federal agency, not just because of the breaches themselves, but because of what they reveal about how the company does business. First, ProPublica uncovered that Microsoft allowed Chinese engineers to work on sensitive U.S. military cloud projects under the supervision of … Read More “Microsoft’s software licensing playbook is a national security risk  – CyberScoop” »

The notorious cybercrime group known as Scattered Spider is targeting VMware ESXi hypervisors in attacks targeting retail, airline, and transportation sectors in North America. “The group’s core tactics have remained consistent and do not rely on software exploits. Instead, they use a proven playbook centered on phone calls to an IT help desk,” Google’s Mandiant … Read More “Scattered Spider Hijacks VMware ESXi to Deploy Ransomware on Critical U.S. Infrastructure  – The Hacker News” »

Cybersecurity researchers have discovered over a dozen security vulnerabilities impacting Tridium’s Niagara Framework that could allow an attacker on the same network to compromise the system under certain circumstances. “These vulnerabilities are fully exploitable if a Niagara system is misconfigured, thereby disabling encryption on a specific network device,” Nozomi Networks Labs said in a  – … Read More “Critical Flaws in Niagara Framework Threaten Smart Buildings and Industrial Systems Worldwide  – The Hacker News” »

Arizona woman jailed 8.5 years for aiding North Korea’s $17 million IT job scam, defrauding over 300 US companies. Learn how to protect your business from such sophisticated cybersecurity threats.  – Read More  – Hackread – Latest Cybersecurity, Hacking News, Tech, AI & Crypto