Cyber Security News

12 December 2025 02:45

React2Shell Attacks Linked to North Korean Hackers

In the EtherRAT attack, React2Shell is exploited to execute a shell command for downloading and executing a shell script designed to deploy a JavaScript implant.

This implant is a dropper that decrypts the main payload, EtherRAT.

Cyber_Security_Channel

Cyber Security News

06 December 2025 20:36

Chrome, Edge Extensions Caught Tracking Users, Creating Backdoors

All gained ‘Featured’ and ‘Verified’ statuses from Google, before the threat actor weaponized them with a malicious update in mid-2024.

One of them, Clean Master, had more than 300,000 installs.

The update essentially transformed the extensions into a remote code execution framework, Koi says.

Every hour, the extensions would check an external server for instructions and execute arbitrary JavaScript code, with full browser API access.

Cyber_Security_Channel

Cyber Security News

03 December 2025 07:59

⚡️University of Pennsylvania Confirms New Data Breach After Oracle Hack

University of Pennsylvania disclosed another breach in late October 2025, after a hacker compromised internal systems and stole data on Penn's development and alumni activities.

The attacker claimed they exfiltrated personal information belonging to roughly 1.2 million students, alumni, and donors.

Institution noted that the attackers exploited a previously unknown security vulnerability.

@Cyber_Security_Channel

Cyber Security News

28 November 2025 22:05

Chrome Sandbox Escape Earns Researcher $250,000

$250,000 is the maximum reward that Google is prepared to pay out for a Chrome sandbox escape vulnerability, but the amount can only be earned for a submission that includes a high-quality report with demonstration of remote code execution.

Cyber_Security_Channel

Cyber Security News

25 November 2025 02:25

Chinese Cyberspies Deploy ‘BadAudio’ Malware via Supply Chain Attacks

BadAudio is deployed as a DLL and uses search order hijacking for execution.

Recent versions have been dropped in archives also containing VBS, BAT, and LNK files, designed to automate the malware’s placement, to achieve persistence, and trigger the DLL’s sideloading.

Cyber_Security_Channel

Cyber Security News

20 November 2025 17:50

Newly Identified Android Spyware Appears to be From a Commercial Vendor

The Android spyware, dubbed LANDFALL, exploited a zero-day, or previously undocumented, vulnerability in Galaxy phones’ image processing libraries.

The spyware was likely sent via the WhatsApp messaging platform to exfiltrate data and snoop on targets.

The vulnerability was privately reported to Samsung in September 2024 but the company did not release a firmware update to fix it until April 2025.

Cyber_Security_Channel

Cyber Security News

17 November 2025 14:25

Google Finds Malware Connecting to AI Large Language Models to Hone Attacks

One of the attacks, dubbed Quietvault, has been designed to steal login credentials from a Windows PC while leveraging "an AI prompt and on-host installed AI CLI [command line interface] tools to search for other potential secrets on the infected system.

Another malware strain, called Promptflux, appears to be experimental work by hackers. It stands out by tapping Google’s Gemini chatbot to modify its computer code to avoid detection.

“The most novel component of PROMPTFLUX is its ‘Thinking Robot’ module, designed to periodically query Gemini to obtain new code for evading antivirus software,

Cyber_Security_Channel

Cyber Security News

13 November 2025 14:02

📣 Webinar: GenAI in Cybersecurity and Cybercrime

Join ImmuniWeb webinar to enhance your ImmuniWeb® AI Platform skills, earn CPE credits, and qualify to become ImmuniWeb® Certified Professional.

Key insights that will be covered:

• Emerging AI laws and regulations to consider
• Overall state of GenAI trends and developments
• GenAI in cybercrime: myths, realities and threats
• GenAI in cybersecurity: myths, risks and benefits
• Hacking AI-powered apps: OWASP Top 10 for LLMs

→ Date & Time: November 20 at 10am, 5pm and 9pm CET.

→ Host: Dr. Ilia Kolochenko, CEO & Chief Architect at ImmuniWeb, Attorney-at-Law.

Registration is open:

Session 1 – November 20, 2025

Geneva 10am | Dubai 1pm | Singapore 5pm

👉 Click here.

Session 2 – November 20, 2025

Geneva 5pm | New York 11am | California 8am

👉 Click here.

Session 3 – November 20, 2025

Geneva 9pm | New York 3pm | California 12pm

👉 Click here.

-----

#ad #paidpromotion #sponsored

@Cyber_Security_Channel

Cyber Security News

11 November 2025 12:04

🔴 Live Stream Announcement!

Join Mauro Eldritch to dissect FunkLocker; AI-powered #FunkSec ransomware behind 120+ attacks across North America and Asia.

Get actionable insights and learn to detect a full attack chain in minutes.

🕒 When: Nov 12, 3:00 PM, UTC

🔔 Set a reminder and tune in: https://www.youtube.com/live/PiWOtiYs25s?si=8CT55R0mxTFkQafx

-----

#ad #paidpromotion #sponsored

@Cyber_Security_Channel

Cyber Security News

06 November 2025 23:32

State-Sponsored Hackers Stole SonicWall Cloud Backups in Recent Attack

The attacks, the cybersecurity firm said, did not appear linked to the cloud backup incident.

However, the sensitive information stored in the stolen files poses a high risk for the impacted organizations.

Cyber_Security_Channel

Cyber Security News

01 November 2025 22:51

Hacktivist Attacks on Critical Infrastructure Surge: Cyble Report

Russia-aligned hacktivist groups INTEID, Dark Engine, Sector 16, and Z-Pentest were responsible for the majority of recent ICS attacks, primarily targeting Energy & Utilities, Manufacturing, and Agriculture sectors across Europe.

Their campaigns focused on disrupting industrial and critical infrastructure in Ukraine, EU and NATO member states.

Cyber_Security_Channel

Cyber Security News

28 October 2025 20:31

OpenAI Atlas Omnibox Is Vulnerable to Jailbreaks

The danger with jailbreaks comes from them being a process methodology rather than an isolated bug.

Once the process is discovered, the potential for abuse is limited only by the attacker’s imagination and skill.

But there are three immediate implications: the successful process can override user intent, can trigger cross-domain actions, and can bypass safety layers.

Cyber_Security_Channel

Cyber Security News

24 October 2025 21:42

$722.5 Billion in Sight for the UK as it Becomes the First Country in the World to Achieve Fitting a Quantum Computer into a Laptop

London-based startup Quantum Motion has successfully developed the world’s first complete quantum computer using CMOS silicon semiconductor technology.

This approach leverages the same manufacturing processes used for everyday electronic devices, including smartphones and laptops.

The system operates using silicon qubits etched onto 300-millimeter wafers, identical to conventional chip production methods.

Cyber_Security_Channel

Cyber Security News

19 October 2025 03:55

Microsoft: Russia, China Increasingly Using AI to Escalate Cyberattacks on the US

Increasingly, these attackers are using AI to target governments, businesses and critical systems like hospitals and transportation networks, according to Amy Hogan-Burney, Microsoft’s vice president for customer security and trust, who oversaw the report.

Many U.S. companies and organizations, meanwhile, are getting by with outdated cyber defenses, even as Americans expand their networks with new digital connections.

Cyber_Security_Channel

Cyber Security News

15 October 2025 01:36

⚡️FBI and French Police Shutter BreachForums Domain Again

This means the seizure will do little to stop the ongoing extortion of victims of the recent Salesforce campaign.

Scattered Lapsus$ Hunters claims to have over one billion records in its possession, and provided an October 10 deadline to negotiate.

Cyber_Security_Channel

Cyber Security News

09 December 2025 20:47

🔴 LIVE from inside #Lazarus APT's IT workers scheme.
 
For weeks, researchers from NorthScan & BCA LTD kept #hackers believing they controlled a US dev's laptop.

In reality, it was #ANYRUN sandbox recording everything.
 
➡️ See full story and videos — click here.

-----

#ad #paidpromotion #sponsored

@Cyber_Security_Channel

Cyber Security News

04 December 2025 14:01

📣 Webinar: Cybersecurity Law, Regulations and Compliance

Enhance your ImmuniWeb® AI Platform skills, earn CPE credits & qualify to become ImmuniWeb® Certified Professional.

Key insights:

• Recent developments in data protection, privacy law
• Cybersecurity requirements, penalties personal liability for non-compliance
• Strategies to reduce legal risks
• Insurance pitfalls & ways to avoid them
• Best data breach investigation practices & disclosure in 2026
• How cybersecurity compliance services by ImmuniWeb can help

→ When: December 11 at 10am, 5pm and 9pm CET.

→ Host: Dr. Ilia Kolochenko, CEO & Chief Architect at ImmuniWeb, Attorney-at-Law.

Registration is open:

Session 1 – December 11, 2025

Geneva 10am | Dubai 1pm | Singapore 5pm

👉 Click here.

Session 2 – December 11, 2025

Geneva 5pm | New York 11am | California 8am

👉 Click here.

Session 3 – December 11, 2025

Geneva 9pm | New York 3pm | California 12pm

👉 Click here.

-----

#ad #paidpromotion #sponsored

@Cyber_Security_Channel

Cyber Security News

01 December 2025 04:57

Securing The Human Layer: Modernising Workforce Authentication

Attackers are using increasingly sophisticated techniques, including credential spraying, brute-force attacks and malware that intercepts passwords and one-time passwords (OTPs).

Additionally, push-bombing or MFA fatigue attacks overwhelm users with mobile push authentication prompts, increasing the likelihood of accidental approval.

These vulnerabilities highlight the urgent need to move away from legacy authentication methods, which consistently fail to prevent breaches and expose organizations to financial, reputational and operational harm.

Cyber_Security_Channel

Cyber Security News

26 November 2025 22:39

Back in August: 6.4 million Bouygues Telecom customers just had their data exposed in a huge data breach – and it's the second to hit French telecoms operators in a month

Never share your usernames and passwords.

Be particularly wary of calls from fake bank advisors who may try to gain your trust by giving your name or account number.

If in doubt, end the call and call your bank or bank advisor back at their usual number.

Cyber_Security_Channel

Cyber Security News

22 November 2025 18:36

Russian Hackers Create 4,300 Fake Travel Sites to Steal Hotel Guests' Payment Data

As soon as the card details, along with the expiration data and CVV number, are entered, the page attempts to process a transaction in the background...

While a "support chat" window appears on the screen with steps to complete a supposed "3D Secure verification for your credit card" to secure against fake bookings.

📷 Photo Credit: Dreamstime

Cyber_Security_Channel

Cyber Security News

18 November 2025 10:01

👨‍💻 SOC Leader’s Playbook: 3 Steps to Faster MTTR

Get actionable tips in a Live Webinar on November 25. 

In this session, ANY.RUN experts will demonstrate how to:

• Eliminate the alert fatigue 
• Achieve a 3x performance boost  
• Ensure early detection of new attacks
• Reduce MTTR by 21 minutes per incident  

✔️ Who should attend?

SOC leaders, security managers, CISOs, and analysts of all tiers looking to improve their security posture.

Join a FREE webinar → click here to register.

-----

#ad #paidpromotion #sponsored

@Cyber_Security_Channel

Cyber Security News

15 November 2025 16:25

August Spotlight: Australia’s TPG Telecom Investigating iiNet Hack

The investigation is ongoing, but the company has determined that the hackers have exfiltrated email addresses, phone numbers and other types of data from the compromised system.

Cyber_Security_Channel

Cyber Security News

12 November 2025 13:28

Fresh, Just In: Many Forbes AI 50 Companies Leak Secrets on GitHub

Wiz’s scans also covered members and contributors of the core organization that could inadvertently expose company secrets in their own public repositories.

In addition, the scans targeted less common AI-related secrets that may be missed by traditional scanners.

Cyber_Security_Channel

Cyber Security News

08 November 2025 08:04

Useful Material: Getting a Grip on Digital Identity

Identity really is sort of the tip of the spear of watching for breaches, because there will be failures probing an identity that will give you indicators that something bad is going to happen before it happens.

Once they have the authenticated identity, then it's really damaging.

But if you can see the leading indicators, you can get in front of it, and I think this is where AI is going to really help

Cyber_Security_Channel

Cyber Security News

03 November 2025 22:22

Google Pays $100,000 in Rewards for Two Chrome Vulnerabilities

Google says it paid $130,000 in total for the bugs fixed with the release of Chrome 142.

While no bounties will be awarded for five issues, the company has yet to disclose the amounts to be handed out for two defects.

Cyber_Security_Channel

Cyber Security News

31 October 2025 03:36

Throwback №2: JLR Extends Production Halt After Cyber-Attack

The cause of the disruption lies in the fact that modern automotive manufacturers operate a ‘just-in-time’ logistics and parts supply strategy.

Rather than stockpiling parts, interconnected third party systems receive updates for stock deliveries for vehicles that are being manufactured at the JLR sites.

Some small businesses within the wider JLR supply chain rely solely on JLR for contracts.

Cyber_Security_Channel

Cyber Security News

26 October 2025 16:47

Throwback №1: Jaguar Land Rover production ‘severely disrupted’ by cyberattack

A statement from the firm read: “JLR has been impacted by a cyber incident. We took immediate action to mitigate its impact by proactively shutting down our systems.

Cyber_Security_Channel

Cyber Security News

21 October 2025 10:01

🚨 FunkLocker, an AI-powered Ransomware Strain by the FunkSec APT Group, Linked to 120+ Attacks Against Orgs in North America and Asia

Key takeaways from the analysis:

🔹 FunkSec strains use “AI snippet” coding patterns, making them easy to build but inconsistent in quality.

🔹 FunkLocker forcibly terminates processes and destabilizes systems to achieve full disruption.

🔹 Attackers leverage taskkill.exe, sc.exe, net.exe, and PowerShell to disable defenses and stage encryption.

🔹 Weak operational security, including reused BTC wallets and hardcoded keys, enabled public decryptors.

Click on this link to read the full technical analysis and gather TTPs.

For more insights on the latest malware and phishing attacks, follow @anyrun_app.

-----

#ad #paidpromotion #sponsored

@Cyber_Security_Channel

Cyber Security News

17 October 2025 05:36

Microsoft Patches 173 Vulnerabilities, Including Exploited Windows Flaws

Microsoft’s October 2025 cumulative update for Windows systems removes the vulnerable ltmdm64.sys driver, which is also impacted by CVE-2025-24052, an elevation of privilege weakness for which a proof-of-concept (PoC) exploit exists.

Cyber_Security_Channel

Cyber Security News

13 October 2025 00:10

TSA Solicits AI, Other Tech Solutions To Streamline Airport Screening

The Transportation Security Administration (TSA) is seeking private sector solutions to modernize airport screening using artificial intelligence (AI), biometrics, and automation.

The agency aims to enhance security effectiveness, reduce manual labor, and improve passenger experience.

Key focus areas include AI-powered threat detection, biometric identity verification, automated screening lanes, and remote screening capabilities.

📸 Image Credit: Yahoo

@Cyber_Security_Channel