Forwarded from The Hacker News
🛑 DDoS tests in a sandbox won’t save you.
The only way to know if your defenses hold? Test in production, target your critical assets, and retest until it breaks (or holds).
Your next outage might be hiding in what you didn’t test.
✅ Full guide → https://thehackernews.com/expert-insights/2025/09/how-to-get-most-out-of-your-ddos-testing.html
The only way to know if your defenses hold? Test in production, target your critical assets, and retest until it breaks (or holds).
Your next outage might be hiding in what you didn’t test.
✅ Full guide → https://thehackernews.com/expert-insights/2025/09/how-to-get-most-out-of-your-ddos-testing.html
Forwarded from The Hacker News
🤖 AI agents are taking over business operations—but they’re also creating new security threats. ⚠️
🛡️ Join Auth0’s Michelle Agroskin to learn how to secure AI, prevent data leaks, and stay ahead of attacks.
Save your spot now → https://thehacker.news/ai-agents-security
🛡️ Join Auth0’s Michelle Agroskin to learn how to secure AI, prevent data leaks, and stay ahead of attacks.
Save your spot now → https://thehacker.news/ai-agents-security
Forwarded from The Hacker News
🚨 A Chinese hacking group just hit a Philippines military contractor with a new malware called EggStreme.
It doesn’t touch the disk—running entirely in memory—injects keyloggers, steals data, and moves across networks quietly.
Here’s what you need to know ↓ https://thehackernews.com/2025/09/chinese-apt-deploys-eggstreme-fileless.html
It doesn’t touch the disk—running entirely in memory—injects keyloggers, steals data, and moves across networks quietly.
Here’s what you need to know ↓ https://thehackernews.com/2025/09/chinese-apt-deploys-eggstreme-fileless.html
Forwarded from The Hacker News
🚨 Hackers are hijacking ConnectWise ScreenConnect to secretly install AsyncRAT, a powerful remote access trojan.
Targets risk stolen passwords, crypto wallets, and keystrokes—all while the malware pretends to be a harmless “Skype Updater.”
Details ↓ https://thehackernews.com/2025/09/asyncrat-exploits-connectwise.html
Targets risk stolen passwords, crypto wallets, and keystrokes—all while the malware pretends to be a harmless “Skype Updater.”
Details ↓ https://thehackernews.com/2025/09/asyncrat-exploits-connectwise.html
Forwarded from The Hacker News
⚠️ NEW SCAM ALERT! Fake browser extensions are hijacking Facebook & Instagram accounts.
Extensions promising the blue check or ad-boosting tools are secretly stealing cookies, credentials, and business accounts—then selling them on underground markets.
Read ↓ https://thehackernews.com/2025/09/fake-madgicx-plus-and-socialmetrics.html
Extensions promising the blue check or ad-boosting tools are secretly stealing cookies, credentials, and business accounts—then selling them on underground markets.
Read ↓ https://thehackernews.com/2025/09/fake-madgicx-plus-and-socialmetrics.html
Forwarded from The Hacker News
⚠️ Companies are handing out admin-level access to randomly named “ephemeral” accounts—and then deleting them.
The result? Security teams have no idea who did what, leaving a massive blind spot for attackers.
Here’s how to fix it → https://thehackernews.com/expert-insights/2025/09/beyond-buzzwords-hidden-dangers-of.html
The result? Security teams have no idea who did what, leaving a massive blind spot for attackers.
Here’s how to fix it → https://thehackernews.com/expert-insights/2025/09/beyond-buzzwords-hidden-dangers-of.html
Forwarded from The Hacker News
🚨 Akira ransomware is back — hammering SonicWall VPNs through a year-old flaw (CVE-2024-40766, CVSS 9.3).
One misstep in SonicWall’s LDAP “Default User Group” can hand attackers VPN + admin access the moment they steal a password.
Akira has already hit 967 victims and is surging again.
Check your configs. Fix it now.
Details here → https://thehackernews.com/2025/09/sonicwall-ssl-vpn-flaw-and.html
One misstep in SonicWall’s LDAP “Default User Group” can hand attackers VPN + admin access the moment they steal a password.
Akira has already hit 967 victims and is surging again.
Check your configs. Fix it now.
Details here → https://thehackernews.com/2025/09/sonicwall-ssl-vpn-flaw-and.html
Forwarded from The Hacker News
84% of company boards admit: cyber risk is a top business threat.
But here’s the kicker—only half actually understand it well enough to make smart decisions.
That disconnect puts revenue, growth, and even jobs on the line.
A new course is teaching CISOs how to finally bridge the boardroom gap ↓ https://thehackernews.com/2025/09/cracking-boardroom-code-helping-cisos.html
But here’s the kicker—only half actually understand it well enough to make smart decisions.
That disconnect puts revenue, growth, and even jobs on the line.
A new course is teaching CISOs how to finally bridge the boardroom gap ↓ https://thehackernews.com/2025/09/cracking-boardroom-code-helping-cisos.html
Forwarded from The Hacker News
🚨 A U.S. Senator just accused Microsoft of gross cybersecurity negligence — saying it’s like an “arsonist selling firefighting services.”
A Bing click → ransomware → 5.6M patient records stolen.
All thanks to outdated defaults still in Windows.
Here’s what went down: https://thehackernews.com/2025/09/senator-wyden-urges-ftc-to-probe.html
A Bing click → ransomware → 5.6M patient records stolen.
All thanks to outdated defaults still in Windows.
Here’s what went down: https://thehackernews.com/2025/09/senator-wyden-urges-ftc-to-probe.html
Forwarded from The Hacker News
Google just dropped a 🔥 update with the Pixel 10:
Your photos now come with cryptographic “nutrition labels” showing who made them, how, and even if AI was involved.
The Pixel Camera hit the highest security rating for this tech — a first for mobile.
Here’s why this matters ↓ https://thehackernews.com/2025/09/google-pixel-10-adds-c2pa-support-to.html
Your photos now come with cryptographic “nutrition labels” showing who made them, how, and even if AI was involved.
The Pixel Camera hit the highest security rating for this tech — a first for mobile.
Here’s why this matters ↓ https://thehackernews.com/2025/09/google-pixel-10-adds-c2pa-support-to.html
Forwarded from The Hacker News
🚨 WARNING: Just opening the wrong repo in Cursor (the AI-powered VS Code fork) can secretly run code on your computer.
Why? Workspace Trust is off by default! A booby-trapped GitHub project = instant system compromise.
Here’s how it works (and how to stay safe) ↓ https://thehackernews.com/2025/09/cursor-ai-code-editor-flaw-enables.html
Why? Workspace Trust is off by default! A booby-trapped GitHub project = instant system compromise.
Here’s how it works (and how to stay safe) ↓ https://thehackernews.com/2025/09/cursor-ai-code-editor-flaw-enables.html
Forwarded from The Hacker News
⚠️ A new ransomware is here → HybridPetya.
It doesn’t just lock your files — it can bypass Secure Boot on modern PCs, sneak into UEFI, and encrypt your entire system.Victims see a fake CHKDSK screen before being hit with a $1,000 Bitcoin demand.
The scariest part? Researchers say Secure Boot bypasses like this are becoming more common.
Details here → https://thehackernews.com/2025/09/new-hybridpetya-ransomware-bypasses.html
It doesn’t just lock your files — it can bypass Secure Boot on modern PCs, sneak into UEFI, and encrypt your entire system.Victims see a fake CHKDSK screen before being hit with a $1,000 Bitcoin demand.
The scariest part? Researchers say Secure Boot bypasses like this are becoming more common.
Details here → https://thehackernews.com/2025/09/new-hybridpetya-ransomware-bypasses.html
Forwarded from The Hacker News
⚠️ Hackers are actively exploiting a critical flaw (CVSS 9.0) in Dassault’s DELMIA Apriso software.
The attack drops spyware that can log keystrokes, take screenshots & spy on apps. 👀
CISA says: Patch by Oct 2, 2025.
Read → https://thehackernews.com/2025/09/critical-cve-2025-5086-in-delmia-apriso.html
The attack drops spyware that can log keystrokes, take screenshots & spy on apps. 👀
CISA says: Patch by Oct 2, 2025.
Read → https://thehackernews.com/2025/09/critical-cve-2025-5086-in-delmia-apriso.html
Forwarded from The Hacker News
🔥 Cloud security is shifting fast: prevention isn’t enough.
The real battlefield? Runtime visibility — spotting what’s actually being attacked in production ⚡️
AI + CNAPPs are cutting through the noise so teams fix what matters, not chase alerts.
Details here ↓ https://thehackernews.com/2025/09/cloud-native-security-in-2025-why.html
The real battlefield? Runtime visibility — spotting what’s actually being attacked in production ⚡️
AI + CNAPPs are cutting through the noise so teams fix what matters, not chase alerts.
Details here ↓ https://thehackernews.com/2025/09/cloud-native-security-in-2025-why.html
Forwarded from The Hacker News
🚨 Apple just warned users in France:
Spyware is back — iCloud devices targeted again (4th time this year).
🎯 Who’s in the crosshairs? Journalists, lawyers, activists, politicians.
The worst part? Zero-click hacks are still in play.
Full story ↓ https://thehackernews.com/2025/09/apple-warns-french-users-of-fourth.html
Spyware is back — iCloud devices targeted again (4th time this year).
🎯 Who’s in the crosshairs? Journalists, lawyers, activists, politicians.
The worst part? Zero-click hacks are still in play.
Full story ↓ https://thehackernews.com/2025/09/apple-warns-french-users-of-fourth.html
Forwarded from The Hacker News
⚠️ Samsung just fixed a zero-day bug in Android 13–16.
Hackers were already using it to break in through a hidden image library 😳
If you’ve got a Galaxy, update ASAP. Don’t wait.
Here’s the full story → https://thehackernews.com/2025/09/samsung-fixes-critical-zero-day-cve.html
Hackers were already using it to break in through a hidden image library 😳
If you’ve got a Galaxy, update ASAP. Don’t wait.
Here’s the full story → https://thehackernews.com/2025/09/samsung-fixes-critical-zero-day-cve.html
Forwarded from Gizchina.com
Samsung Wins Key European Cybersecurity Certification https://www.gizchina.com/samsung/samsung-wins-key-european-cybersecurity-certification
Gizchina
Samsung Wins Key European Cybersecurity Certification
Samsung has reached a major milestone in Europe and its the first South Korean firm to receive Europe’s RED Cyber Security Testing certification.
Forwarded from Gizchina.com
Should You Buy a Smartphone Right Now? Probably Not (yet!) https://www.gizchina.com/phones/should-you-buy-a-smartphone-right-now-probably-not-yet
Gizchina
Should You Buy a Smartphone Right Now? Probably Not (yet!)
Planning to upgrade your phone? Here’s why waiting a few weeks in 2025 could save you money and unlock smarter, longer-lasting devices.
Forwarded from Gizchina.com
Qualcomm’s Next Big Chip: What to Expect from the Snapdragon 8 Elite Gen 6 https://www.gizchina.com/samsung/qualcomms-next-big-chip-what-to-expect-from-the-snapdragon-8-elite-gen-6
Gizchina
Qualcomm’s Next Big Chip: What to Expect from the Snapdragon 8 Elite Gen 6
Leaks suggest Qualcomm’s Snapdragon 8 Elite Gen 6 could power Samsung’s Galaxy S27 with a 2nm process and improved GPU performance.
Forwarded from Gizchina.com
Amazfit T-Rex 3 Pro Goes Global: Rugged Smartwatch with up to 25 Days Battery Life! https://www.gizchina.com/amazfit-2/amazfit-t-rex-3-pro-goes-global-rugged-smartwatch-with-up-to-25-days-battery-life
Gizchina
Amazfit T-Rex 3 Pro Goes Global: Rugged Smartwatch with up to 25 Days Battery Life!
Amazfit’s T-Rex 3 Pro launches in Europe with titanium bezels, brighter AMOLED displays, built-in flashlight, and up to 25 days of power.
Forwarded from Gizchina.com
DeepSeek Targets End of 2025 for AI Agent to Rival U.S. Tech Giants https://www.gizchina.com/ai/deepseek-targets-end-of-2025-for-ai-agent-to-rival-us-tech-giants
Gizchina
DeepSeek Targets End of 2025 for AI Agent to Rival U.S. Tech Giants
DeepSeek plans to launch its R2 AI agent by the end of 2025, aiming to handle complex tasks and compete with U.S. tech giants.