π WhatsApp Patches Zero-Day, Zero-Click Flaw π
π Read more.
π Via "Infosecurity Magazine"
----------
ποΈ Seen on @cibsecurity
WhatsApp has fixed a zeroday vulnerability linked to a sophisticated cyberattack.π Read more.
π Via "Infosecurity Magazine"
----------
ποΈ Seen on @cibsecurity
Infosecurity Magazine
WhatsApp Patches Zero-Day, Zero-Click Flaw
WhatsApp has fixed a zero-day vulnerability linked to a sophisticated cyber-attack
π¦
Supply Chain Attacks Have Doubled. Whatβs Driving the Increase? π¦
π Read more.
π Via "CYBLE"
----------
ποΈ Seen on @cibsecurity
supply chain attacks " dataimagecaption"" datamediumfile"httpscyble.comwpcontentuploads202509supplychainattacks300x150.webp" datalargefile"httpscyble.comwpcontentuploads202509supplychainattacks.webp" title"Supply Chain Attacks Have Doubled. Whats Driving the Increase? 1" Software supply chain attacks have been occurring at twice their longterm average in recent months and have shown no sign of slowing down. The uptick in supply chain attacks began in April 2025, when Cyble dark web researchers observed claims of 31 such attacks. Since then, cyberattacks with supply chain implications have averaged 26 a month, twice the rate seen from early 2024 through March 2025 chart below. Cybles most recent threat landscape report registration required documented 30 supply chain incidents...π Read more.
π Via "CYBLE"
----------
ποΈ Seen on @cibsecurity
Cyble
Supply Chain Attacks Surge In 2025: Double The Usual Rate
Supply chain attacks have doubled since April 2025, targeting IT and tech firms. Ransomware, data theft, and zero-day exploits drive the ongoing surge.
π’ Ransomware attack on IT supplier disrupts hundreds of Swedish municipalities π’
π Read more.
π Via "ITPro"
----------
ποΈ Seen on @cibsecurity
The attack on IT systems supplier Miljdata has impacted public sector services across the country.π Read more.
π Via "ITPro"
----------
ποΈ Seen on @cibsecurity
IT Pro
Ransomware attack on IT supplier disrupts hundreds of Swedish municipalities
The attack on IT systems supplier MiljΓΆdata has impacted public sector services across the country
π¦Ώ Build Job-Ready IT and Cybersecurity Skills with Hands-On Labs π¦Ώ
π Read more.
π Via "Tech Republic"
----------
ποΈ Seen on @cibsecurity
Get lifetime access to The 2025 Complete Defensive Cyber Security Bundle for 39.99 reg. 240.π Read more.
π Via "Tech Republic"
----------
ποΈ Seen on @cibsecurity
TechRepublic
Build Job-Ready IT and Cybersecurity Skills with Hands-On Labs
Get lifetime access to The 2025 Complete Defensive Cyber Security Bundle for $39.99 (reg. $240).
π¦Ώ Build Job-Ready IT and Cybersecurity Skills with Hands-On Labs π¦Ώ
π Read more.
π Via "Tech Republic"
----------
ποΈ Seen on @cibsecurity
Get lifetime access to The 2025 Complete Defensive Cyber Security Bundle for 39.99 reg. 240.π Read more.
π Via "Tech Republic"
----------
ποΈ Seen on @cibsecurity
TechRepublic
Build Job-Ready IT and Cybersecurity Skills with Hands-On Labs
Get lifetime access to The 2025 Complete Defensive Cyber Security Bundle for $39.99 (reg. $240).
π¦
Supply Chain Attacks Have Doubled. Whatβs Driving the Increase? π¦
π Read more.
π Via "CYBLE"
----------
ποΈ Seen on @cibsecurity
supply chain attacks " dataimagecaption"" datamediumfile"httpscyble.comwpcontentuploads202509supplychainattacks300x150.webp" datalargefile"httpscyble.comwpcontentuploads202509supplychainattacks.webp" title"Supply Chain Attacks Have Doubled. Whats Driving the Increase? 1" Software supply chain attacks have been occurring at twice their longterm average in recent months and have shown no sign of slowing down. The uptick in supply chain attacks began in April 2025, when Cyble dark web researchers observed claims of 31 such attacks. Since then, cyberattacks with supply chain implications have averaged 26 a month, twice the rate seen from early 2024 through March 2025 chart below. Cybles most recent threat landscape report registration required documented 30 supply chain incidents...π Read more.
π Via "CYBLE"
----------
ποΈ Seen on @cibsecurity
Cyble
Supply Chain Attacks Surge In 2025: Double The Usual Rate
Supply chain attacks have doubled since April 2025, targeting IT and tech firms. Ransomware, data theft, and zero-day exploits drive the ongoing surge.
π¦
Supply Chain Attacks Have Doubled. Whatβs Driving the Increase? π¦
π Read more.
π Via "CYBLE"
----------
ποΈ Seen on @cibsecurity
supply chain attacks " dataimagecaption"" datamediumfile"httpscyble.comwpcontentuploads202509supplychainattacks300x150.webp" datalargefile"httpscyble.comwpcontentuploads202509supplychainattacks.webp" title"Supply Chain Attacks Have Doubled. Whats Driving the Increase? 1" Software supply chain attacks have been occurring at twice their longterm average in recent months and have shown no sign of slowing down. The uptick in supply chain attacks began in April 2025, when Cyble dark web researchers observed claims of 31 such attacks. Since then, cyberattacks with supply chain implications have averaged 26 a month, twice the rate seen from early 2024 through March 2025 chart below. Cybles most recent threat landscape report registration required documented 30 supply chain incidents...π Read more.
π Via "CYBLE"
----------
ποΈ Seen on @cibsecurity
Cyble
Supply Chain Attacks Surge In 2025: Double The Usual Rate
Supply chain attacks have doubled since April 2025, targeting IT and tech firms. Ransomware, data theft, and zero-day exploits drive the ongoing surge.
β€1
ποΈ ScarCruft Uses RokRAT Malware in Operation HanKook Phantom Targeting South Korean Academics ποΈ
π Read more.
π Via "The Hacker News"
----------
ποΈ Seen on @cibsecurity
Cybersecurity researchers have discovered a new phishing campaign undertaken by the North Korealinked hacking group called ScarCruft aka APT37 to deliver a malware known as RokRAT. The activity has been codenamed Operation HanKook Phantom by Seqrite Labs, stating the attacks appear to target individuals associated with the National Intelligence Research Association, including academic figures.π Read more.
π Via "The Hacker News"
----------
ποΈ Seen on @cibsecurity
β€1
π Amazon Stops Russian APT29 Watering Hole Attack Exploiting Microsoft Auth π
π Read more.
π Via "Infosecurity Magazine"
----------
ποΈ Seen on @cibsecurity
The campaign shows APT29s intentions to cast a wider net in their intelligence collection efforts, said Amazon.π Read more.
π Via "Infosecurity Magazine"
----------
ποΈ Seen on @cibsecurity
Infosecurity Magazine
Amazon Stops Russian APT29 Watering Hole Attack Exploiting Microsoft Auth
The campaign shows APT29βs intentions to βcast a wider net in their intelligence collection efforts,β said Amazon
π¦
Supply Chain Attacks Have Doubled. Whatβs Driving the Increase? π¦
π Read more.
π Via "CYBLE"
----------
ποΈ Seen on @cibsecurity
supply chain attacks " dataimagecaption"" datamediumfile"httpscyble.comwpcontentuploads202509supplychainattacks300x150.webp" datalargefile"httpscyble.comwpcontentuploads202509supplychainattacks.webp" title"Supply Chain Attacks Have Doubled. Whats Driving the Increase? 1" Software supply chain attacks have been occurring at twice their longterm average in recent months and have shown no sign of slowing down. The uptick in supply chain attacks began in April 2025, when Cyble dark web researchers observed claims of 31 such attacks. Since then, cyberattacks with supply chain implications have averaged 26 a month, twice the rate seen from early 2024 through March 2025 chart below. Cybles most recent threat landscape report registration required documented 30 supply chain incidents...π Read more.
π Via "CYBLE"
----------
ποΈ Seen on @cibsecurity
Cyble
Supply Chain Attacks Surge In 2025: Double The Usual Rate
Supply chain attacks have doubled since April 2025, targeting IT and tech firms. Ransomware, data theft, and zero-day exploits drive the ongoing surge.
π¦
Supply Chain Attacks Have Doubled. Whatβs Driving the Increase? π¦
π Read more.
π Via "CYBLE"
----------
ποΈ Seen on @cibsecurity
supply chain attacks " dataimagecaption"" datamediumfile"httpscyble.comwpcontentuploads202509supplychainattacks300x150.webp" datalargefile"httpscyble.comwpcontentuploads202509supplychainattacks.webp" title"Supply Chain Attacks Have Doubled. Whats Driving the Increase? 1" Software supply chain attacks have been occurring at twice their longterm average in recent months and have shown no sign of slowing down. The uptick in supply chain attacks began in April 2025, when Cyble dark web researchers observed claims of 31 such attacks. Since then, cyberattacks with supply chain implications have averaged 26 a month, twice the rate seen from early 2024 through March 2025 chart below. Cybles most recent threat landscape report registration required documented 30 supply chain incidents...π Read more.
π Via "CYBLE"
----------
ποΈ Seen on @cibsecurity
Cyble
Supply Chain Attacks Surge In 2025: Double The Usual Rate
Supply chain attacks have doubled since April 2025, targeting IT and tech firms. Ransomware, data theft, and zero-day exploits drive the ongoing surge.
ποΈ ScarCruft Uses RokRAT Malware in Operation HanKook Phantom Targeting South Korean Academics ποΈ
π Read more.
π Via "The Hacker News"
----------
ποΈ Seen on @cibsecurity
Cybersecurity researchers have discovered a new phishing campaign undertaken by the North Korealinked hacking group called ScarCruft aka APT37 to deliver a malware known as RokRAT. The activity has been codenamed Operation HanKook Phantom by Seqrite Labs, stating the attacks appear to target individuals associated with the National Intelligence Research Association, including academic figures.π Read more.
π Via "The Hacker News"
----------
ποΈ Seen on @cibsecurity
π Amazon Stops Russian APT29 Watering Hole Attack Exploiting Microsoft Auth π
π Read more.
π Via "Infosecurity Magazine"
----------
ποΈ Seen on @cibsecurity
The campaign shows APT29s intentions to cast a wider net in their intelligence collection efforts, said Amazon.π Read more.
π Via "Infosecurity Magazine"
----------
ποΈ Seen on @cibsecurity
Infosecurity Magazine
Amazon Stops Russian APT29 Watering Hole Attack Exploiting Microsoft Auth
The campaign shows APT29βs intentions to βcast a wider net in their intelligence collection efforts,β said Amazon
π’ Enterprises need to patch these Citrix flaws now π’
π Read more.
π Via "ITPro"
----------
ποΈ Seen on @cibsecurity
Organizations should move quickly to install patches, according to Citrix.π Read more.
π Via "ITPro"
----------
ποΈ Seen on @cibsecurity
IT Pro
Enterprises need to patch these Citrix flaws now
Organizations should move quickly to install patches, according to Citrix
ποΈ When Browsers Become the Attack Surface: Rethinking Security for Scattered Spider ποΈ
π Read more.
π Via "The Hacker News"
----------
ποΈ Seen on @cibsecurity
As enterprises continue to shift their operations to the browser, security teams face a growing set of cyber challenges. In fact, over 80 of security incidents now originate from web applications accessed via Chrome, Edge, Firefox, and other browsers. One particularly fastevolving adversary, Scattered Spider, has made it their mission to wreak havoc on enterprises by specifically targeting.π Read more.
π Via "The Hacker News"
----------
ποΈ Seen on @cibsecurity
π Ransomware Attack on Pennsylvaniaβs AG Office Disrupts Court Cases π
π Read more.
π Via "Infosecurity Magazine"
----------
ποΈ Seen on @cibsecurity
Pennsylvanias Attorney General confirmed the OAG had refused to pay a ransom demand to the attackers after files were encrypted.π Read more.
π Via "Infosecurity Magazine"
----------
ποΈ Seen on @cibsecurity
Infosecurity Magazine
Ransomware Attack on Pennsylvaniaβs AG Office Disrupts Court Cases
Pennsylvaniaβs Attorney General confirmed the OAG had refused to pay a ransom demand to the attackers after files were encrypted
π Regional Sales Manager (Eastern USA) π
π Read more.
π Via "UnderDefense"
----------
ποΈ Seen on @cibsecurity
The post Regional Sales Manager Eastern USA appeared first on UnderDefense.π Read more.
π Via "UnderDefense"
----------
ποΈ Seen on @cibsecurity
UnderDefense
Regional Sales Manager (Eastern USA) - UnderDefense
βοΈ The Ongoing Fallout from a Breach at AI Chatbot Maker Salesloft βοΈ
π Read more.
π Via "Krebs on Security"
----------
ποΈ Seen on @cibsecurity
The recent masstheft of authentication tokens from Salesloft, whose AI chatbot is used by a broad swath of corporate America to convert customer interaction into Salesforce leads, has left many companies racing to invalidate the stolen credentials before hackers can exploit them. Now Google warns the breach goes far beyond access to Salesforce data, noting the hackers responsible also stole valid authentication tokens for hundreds of online services that customers can integrate with Salesloft, including Slack, Google Workspace, Amazon S3, Microsoft Azure, and OpenAI.π Read more.
π Via "Krebs on Security"
----------
ποΈ Seen on @cibsecurity
Krebs on Security
The Ongoing Fallout from a Breach at AI Chatbot Maker Salesloft
The recent mass-theft of authentication tokens from Salesloft, whose AI chatbot is used by a broad swath of corporate America to convert customer interaction into Salesforce leads, has left many companies racing to invalidate the stolen credentials beforeβ¦
ποΈ Android Droppers Now Deliver SMS Stealers and Spyware, Not Just Banking Trojans ποΈ
π Read more.
π Via "The Hacker News"
----------
ποΈ Seen on @cibsecurity
Cybersecurity researchers are calling attention to a new shift in the Android malware landscape where dropper apps, which are typically used to deliver banking trojans, to also distribute simpler malware such as SMS stealers and basic spyware. These campaigns are propagated via dropper apps masquerading as government or banking apps in India and other parts of Asia, ThreatFabric said in a report.π Read more.
π Via "The Hacker News"
----------
ποΈ Seen on @cibsecurity
ποΈ β‘ Weekly Recap: WhatsApp 0-Day, Docker Bug, Salesforce Breach, Fake CAPTCHAs, Spyware App & More ποΈ
π Read more.
π Via "The Hacker News"
----------
ποΈ Seen on @cibsecurity
Cybersecurity today is less about single attacks and more about chains of small weaknesses that connect into big risks. One overlooked update, one misused account, or one hidden tool in the wrong hands can be enough to open the door. The news this week shows how attackers are mixing methodscombining stolen access, unpatched software, and clever tricks to move from small entry points to large.π Read more.
π Via "The Hacker News"
----------
ποΈ Seen on @cibsecurity
π Silver Fox Exploits Signed Drivers to Deploy ValleyRAT Backdoor π
π Read more.
π Via "Infosecurity Magazine"
----------
ποΈ Seen on @cibsecurity
Silver Fox APT abuses Microsoftsigned drivers to kill antivirus and deploy ValleyRAT remoteaccess backdoor.π Read more.
π Via "Infosecurity Magazine"
----------
ποΈ Seen on @cibsecurity
Infosecurity Magazine
Silver Fox Exploits Signed Drivers to Deploy ValleyRAT Backdoor
Silver Fox APT abuses Microsoft-signed drivers to kill antivirus and deploy ValleyRAT remote-access backdoor