China-Linked Operation “WrtHug” Hijacks Thousands of ASUS Routers
SecurityScorecard has revealed a new Chinese campaign targeting thousands of ASUS routers globally
Information Security Magazine
Half of Ransomware Access Due to Hijacked VPN Credentials
7 hours 28 minutes ago
Beazley Security data finds the top cause of initial access for ransomware in Q3 was compromised VPN credentials
CISA 2015 Receives Extension, Offering Brief Relief for Cyber Information Sharing
1 day ago
One US cybersecurity leader described the short-term extension of the Cybersecurity Information Sharing Act as a “temporary patch” and called for a long-term solution
New npm Malware Campaign Redirects Victims to Crypto Sites
1 day 1 hour ago
A new malware campaign has been observed built on seven npm packages and using cloaking techniques and fake CAPTCHAs, operated by threat actor dino_reborn
AI-Enhanced Tuoni Framework Targets Major US Real Estate Firm
1 day 2 hours ago
A major US real estate firm has been targeted with an advanced intrusion attempt using Tuoni C2, combining social engineering, steganography and in-memory attacks
DoorDash Confirms Data Breach Exposing Customer Personal Information
1 day 3 hours ago
DoorDash has confirmed an October 2025 data breach that exposed customer names, phone numbers, addresses and email details
GenAI and Deepfakes Drive Digital Forgeries and Biometric Fraud
1 day 6 hours ago
Entrust says AI is helping fraudsters open new accounts and bypass biometric checks
Half a Million Stolen FTSE 100 Credentials Found on Criminal Sites
1 day 7 hours ago
Socura finds 460,000 compromised credentials belonging to FTSE 100 company employees
Kraken Uses Benchmarking to Enhance Ransomware Attacks
2 days ago
Cisco Talos has observed overlaps between Kraken and the earlier HelloKitty cartel through attack tactics using SMB flaws for big-game hunting and double extortion
Europol Leads Takedown of Thousands of Extremist Gaming Links
2 days 1 hour ago
Europol’s Referral Action Day removed extremist links across gaming and gaming-adjacent platforms, targeting radical content
Cyber Readiness Stalls Despite Confidence in Incident Response
2 days 2 hours ago
New Immersive report finds cyber resilience and decision making are flatlining
US: Five Plead Guilty in North Korean IT Worker Fraud Scheme
2 days 5 hours ago
The five defendants allegedly assisted North Korean hackers with obtaining remote IT employment with US companies
Cyber-Attack Costs Carmaker JLR $258m in Q2
2 days 7 hours ago
Carmaker JLR has posted $639m Q2 losses and a one-off $258m hit after a major ransomware attack
Chinese Hackers Automate Cyber-Attacks With AI-Powered Claude Code
5 days 4 hours ago
Anthropic’s Claude Code AI assistant performed 80% to 90% of the tasks involved in a recent cyber-attack campaign, said Anthropic researchers
Akira Ransomware Haul Surpasses $244M in Illicit Proceeds
5 days 5 hours ago
Akira ransomware has extorted $244M since September 2025, with some attacks exfiltrating data in just two hours, a joint cybersecurity advisory warns
Google Files Lawsuit to Dismantle 'Lighthouse' Smishing Kit
5 days 7 hours ago
Google filed a civil lawsuit against 25 individuals accused of ties to a Chinese cyber collective known as the ‘Smishing Triad’
“IndonesianFoods” npm Worm Publishes 44,000 Malicious Packages
6 days 1 hour ago
A new npm worm dubbed “IndonesianFoods” has doubled the number of known malicious packages
CISO Pay Increases 7% As Budget Growth Slows
6 days 3 hours ago
An IANS study finds CISO compensation rose 6.7% on average in 2025 while budget growth halved compared to 2024
Operation Endgame 3.0 Dismantles Three Major Malware Networks
6 days 4 hours ago
A global law enforcement operation has taken down the Rhadamanthys infostealer, VenomRAT trojan and the Elysium botnet
Improve Collaboration to Hit Back At Rising Fraud, Says techUK
6 days 6 hours ago
Industry body techUK calls for real-time intelligence sharing across sectors to combat fraud
Checked
6 hours 7 minutes ago