Hackers exploit Fortra GoAnywhere flaw before public alert
Hackers exploit Fortra GoAnywhere flaw before public alert Pierluigi Paganini September 26, 2025 watchTowr Labs says hackers exploited the Fortra...
Year: 2025
China is Fueling Surveillance Technology Adoption in Latin America—Who is in Charge of Data Privacy?
China’s Belt and Road Initiative (BRI) is well known for funding major infrastructure projects, including new highways, ports and energy...
Researchers Expose SVG and PureRAT Phishing Threats Targeting Ukraine and Vietnam
Sep 26, 2025Ravie LakshmananMalware / Cryptocurrency A new campaign has been observed impersonating Ukrainian government agencies in phishing attacks to...
Executive Order Brings US TikTok $14B Deal One Step Closer to Finalizing
US President Donald Trump. Source: The White House President Donald Trump issued an executive order on Thursday that provides legal...
Apple’s Feedback to EU Commission: Repeal Digital Markets Act
Image: mixmagic/Adobe Stock Apple responded to a consultation on the Digital Markets Act with a call to repeal the entire...
Why Identity and Access Still Represent the Weakest Link
Idan Dardikman, co-founder and CTO of Koi Security, discusses the company’s emergence from stealth and its mission to address one...
Bridging the Gap Between Security Teams and Tools
Craig Adams, chief product officer at Rapid7, discusses the growing complexity of security operations and how organizations can better align...
Cybersecurity Snapshot: CISA Highlights Vulnerability Management Importance in Breach Analysis, as Orgs Are Urged To Patch Cisco Zero-Days
CISA’s takeaways of an agency hack include a call for timely vulnerability patching. Plus, Cisco zero-day bugs are under attack...
UK NCSC warns that attackers exploited Cisco firewall zero-days to deploy RayInitiator and LINE VIPER malware
UK NCSC warns that attackers exploited Cisco firewall zero-days to deploy RayInitiator and LINE VIPER malware Pierluigi Paganini September 26,...
Salesforce Faces Lawsuits Over Compromises of Third-Party Apps: Report
Salesforce executives for much of the year have reiterated that an onslaught of cyberattacks on a range of its partners...
Digital Threat Modeling Under Authoritarianism
Today’s world requires us to make complex and nuanced decisions about our digital security. Evaluating when to use a secure...
New COLDRIVER Malware Campaign Joins BO Team and Bearlyfy in Russia-Focused Cyberattacks
The Russian advanced persistent threat (APT) group known as COLDRIVER has been attributed to a fresh round of ClickFix-style attacks...
Crash Tests for Security: Why BAS Is Proof of Defense, Not Assumptions
Sep 26, 2025The Hacker NewsSecurity Validation / Enterprise Security Car makers don't trust blueprints. They smash prototypes into walls. Again...
Fortra GoAnywhere CVSS 10 Flaw Exploited as 0-Day a Week Before Public Disclosure
Sep 26, 2025Ravie LakshmananVulnerability / Threat Intelligence Cybersecurity company watchTowr Labs has disclosed that it has "credible evidence" of active...
New macOS XCSSET Variant Targets Firefox with Clipper and Persistence Module
Sep 26, 2025Ravie LakshmananMalware / Browser Security Cybersecurity researchers have discovered an updated version of a known Apple macOS malware...
