Aggregator

Two malicious NPM packages posing as WhatsApp development tools have been discovered deploying destructive data-wiping code that recursively deletes files on a developer's computers. [...]

Ransomware Attack Update for the 7th of August 2025

The NetBSD team has officially announced the commencement of preparations for the release of version 11: a dedicated code branch has been created, and the project has now entered the phase of active testing....

The post NetBSD 11: The OS That Never Forgets Your Old Hardware appeared first on Penetration Testing Tools.

Following on from our preview, here's Ben Gelman and Sean Bergeron's research on enhancing command line classification with benign anomalous data

Cybercriminals have begun exploiting Scalable Vector Graphics (SVG) files as sophisticated attack vectors, transforming seemingly harmless image files into potent phishing weapons capable of executing malicious JavaScript on Windows systems. This emerging threat leverages the XML-based structure of SVG files to embed and execute malicious scripts when opened in default web browsers, bypassing traditional security […]

The post Hackers Weaponizing SVG Files With Malicious Embedded JavaScript to Execute Malware on Windows Systems appeared first on Cyber Security News.

A vulnerability was found in NetApp SAN Host Utilities up to 7.x on Windows. It has been declared as critical. Affected by this vulnerability is an unknown functionality of the component Installer. The manipulation leads to Local Privilege Escalation. This vulnerability is known as CVE-2025-26513. An attack has to be approached locally. There is no exploit available. It is recommended to upgrade the affected component.

While no sensitive financial data like credit card information was compromised, the threat actors were able to get away with names, email addresses, phone numbers, and more.

Security startups of all stripes submitted applications for Black Hat USA's Startup Spotlight. Prime Security won with its AI security architect platform.

A sophisticated cybercriminal operation that targeted American tax preparation businesses through spearphishing campaigns has culminated in the extradition of Nigerian national Chukwuemeka Victor Amachukwu from France to face federal charges in New York. The 39-year-old defendant, operating under multiple aliases including “Chukwuemeka Victor Eletuo” and “So Kwan Leung,” orchestrated a multi-year scheme beginning in 2019 […]

The post Hacker Extradited to US for Stealing Over $2.5 Million in Tax Fraud Attacks appeared first on Cyber Security News.

Reveal Security this week unfurled a platform designed to enable cybersecurity teams to preemptively manage access to multiple applications and cloud infrastructure resources both before and after end users have logged in. Company CEO Kevin Hanes said the Reveal Platform takes advantage of machine and deep learning algorithms to identify normal login behavior without having..

The post Reveal Security Unveils Preemptive Approach to Securing Applications and Cloud Services appeared first on Security Boulevard.

ShinyHunters May Have Struck Again
Airlines Air France and KLM said they suffered a data breach involving a third-party service storing customer data. The alert comes as the ShinyHunters extortion group continues to target Salesforce-using organizations and trick them into sharing direct access to their customer data.

Also: Samourai Wallet Co-Founders' Guilty Plea, Coinbase Loss From Data Theft
This week, Tornado Cash co-founder convicted, Samourai Wallet guilty plea, Coinbase insider data theft, a U.S. court overturned an OpenSea executive's fraud conviction, AI-written malware stole crypto, Credix exploit, CZ sought dismissal of FTX claim, July hacks and a FinCEN crypto ATM warning.

CISA Issues Emergency Directive Requiring Federal Agencies to Fix Flaw
A vulnerability in Exchange hybrid deployments could allow attackers to escalate privileges and gain administrative access to cloud-based environments. Microsoft said Tuesday there is no evidence of its exploitation and "strongly" recommended installing hot fix updates made available in April.

The post How to Build an Incident Response Playbook in 9 Steps  appeared first on AI Security Automation.

The post How to Build an Incident Response Playbook in 9 Steps  appeared first on Security Boulevard.

A vulnerability was found in Johnson Controls FX80 and FX90 14.10.10/14.14.1. It has been classified as problematic. Affected is an unknown function of the component Device Configuration File Handler. The manipulation leads to dependency on vulnerable third-party component. This vulnerability is traded as CVE-2025-43867. It is possible to launch the attack remotely. There is no exploit available. It is recommended to apply a patch to fix this issue.

A vulnerability was found in Burk ARC Solo and classified as critical. This issue affects some unknown processing of the component HTTP Endpoint. The manipulation leads to missing authentication. The identification of this vulnerability is CVE-2025-5095. The attack may be initiated remotely. There is no exploit available. It is recommended to upgrade the affected component.

People don’t want to guess when they buy something – especially something complex or customizable. They want to feel like they’re making the right choice. But with many ecommerce stores, it’s easy to feel lost: too many options, confusing specs, unclear steps. That’s where guided selling makes a difference – and when it’s combined with […]

The post Guided Selling in 3D Product Configurators appeared first on Cyber Security News.

A vulnerability has been found in Packet Power EMX and EG up to 4.0.x and classified as critical. This vulnerability affects unknown code of the component Packet Power Monitoring/Control Web Interface. The manipulation leads to missing authentication. This vulnerability was named CVE-2025-8284. The attack can be initiated remotely. There is no exploit available. It is recommended to upgrade the affected component.