π Wiper Attack on Polish Power Grid Linked to Russiaβs Sandworm π
π Read more.
π Via "Infosecurity Magazine"
----------
ποΈ Seen on @cibsecurity
A destructive cyber attack targeting Polands energy sector has been linked to Russian APT group Sandworm.π Read more.
π Via "Infosecurity Magazine"
----------
ποΈ Seen on @cibsecurity
π Python Developer π
π Read more.
π Via "UnderDefense"
----------
ποΈ Seen on @cibsecurity
The post Python Developer appeared first on UnderDefense.π Read more.
π Via "UnderDefense"
----------
ποΈ Seen on @cibsecurity
UnderDefense
Python Developer - UnderDefense
ποΈ Indian Users Targeted in Tax Phishing Campaign Delivering Blackmoon Malware ποΈ
π Read more.
π Via "The Hacker News"
----------
ποΈ Seen on @cibsecurity
Cybersecurity researchers have discovered an ongoing campaign that's targeting Indian users with a multistage backdoor as part of a suspected cyber espionage campaign. The activity, per the eSentire Threat Response Unit TRU, involves using phishing emails impersonating the Income Tax Department of India to trick victims into downloading a malicious archive, ultimately granting the threat.π Read more.
π Via "The Hacker News"
----------
ποΈ Seen on @cibsecurity
π B2b Growth Marketing Manager (Online media, external placements, integrated campaigns) π
π Read more.
π Via "UnderDefense"
----------
ποΈ Seen on @cibsecurity
The post B2b Growth Marketing Manager Online media, external placements, integrated campaigns appeared first on UnderDefense.π Read more.
π Via "UnderDefense"
----------
ποΈ Seen on @cibsecurity
UnderDefense
B2b Growth Marketing Manager (Online media, external placements, integrated campaigns) - UnderDefense
π eScan Antivirus Supply Chain Breach Delivers Signed Malware π
π Read more.
π Via "Infosecurity Magazine"
----------
ποΈ Seen on @cibsecurity
Supply chain breach in eScan antivirus distributes multistage malware via legitimate updates.π Read more.
π Via "Infosecurity Magazine"
----------
ποΈ Seen on @cibsecurity
β€2
π’ Hackers are using LLMs to generate malicious JavaScript in real time β and theyβre going after web browsers π’
π Read more.
π Via "ITPro"
----------
ποΈ Seen on @cibsecurity
Defenders advised to use runtime behavioral analysis to detect and block malicious activity at the point of execution, directly within the browser.π Read more.
π Via "ITPro"
----------
ποΈ Seen on @cibsecurity
IT Pro
Hackers are using LLMs to generate malicious JavaScript in real time β and theyβre going after web browsers
Defenders advised to use runtime behavioral analysis to detect and block malicious activity at the point of execution, directly within the browser
π¦Ώ $95M Payout: Apple Begins Compensating Users in Siri Eavesdropping Case π¦Ώ
π Read more.
π Via "Tech Republic"
----------
ποΈ Seen on @cibsecurity
Apple has started issuing Siri privacy settlement payouts, with claimants seeing deposits as low as 8 per device from a 95 million fund. The post 95M Payout Apple Begins Compensating Users in Siri Eavesdropping Case appeared first on TechRepublic.π Read more.
π Via "Tech Republic"
----------
ποΈ Seen on @cibsecurity
TechRepublic
$95M Payout: Apple Begins Compensating Users in Siri Eavesdropping Case
Apple has started issuing Siri privacy settlement payouts, with claimants seeing deposits as low as $8 per device from a $95 million fund.
π¦Ώ WhatsApp Adds One-Tap Security Settings for Added Privacy π¦Ώ
π Read more.
π Via "Tech Republic"
----------
ποΈ Seen on @cibsecurity
WhatsApp rolled out Strict Account Settings, a lockdownstyle mode that blocks unknown attachments, disables link previews, and silences unknown callers. The post WhatsApp Adds OneTap Security Settings for Added Privacy appeared first on TechRepublic.π Read more.
π Via "Tech Republic"
----------
ποΈ Seen on @cibsecurity
TechRepublic
WhatsApp Adds One-Tap Security Settings for Added Privacy
WhatsApp rolled out Strict Account Settings, a lockdown-style mode that blocks unknown attachments, disables link previews, and silences unknown callers.
π¦Ώ Build Practical Cyber Defense Skills with This 5-Course Bundle π¦Ώ
π Read more.
π Via "Tech Republic"
----------
ποΈ Seen on @cibsecurity
Train in AI threat detection, OSINT tools, and Zero Trust security models with lifetime access for just 19.99. The post Build Practical Cyber Defense Skills with This 5Course Bundle appeared first on TechRepublic.π Read more.
π Via "Tech Republic"
----------
ποΈ Seen on @cibsecurity
TechRepublic
Build Practical Cyber Defense Skills with This 5-Course Bundle
Train in AI threat detection, OSINT tools, and Zero Trust security models with lifetime access for just $19.99.
π1
π¦Ώ Trumpβs Acting Cyber Chief Allegedly Leaked Data to ChatGPT π¦Ώ
π Read more.
π Via "Tech Republic"
----------
ποΈ Seen on @cibsecurity
Sources say event triggered internal cybersecurity alerts and a DHSlevel review into whether federal information had been improperly exposed. The post Trumps Acting Cyber Chief Allegedly Leaked Data to ChatGPT appeared first on TechRepublic.π Read more.
π Via "Tech Republic"
----------
ποΈ Seen on @cibsecurity
TechRepublic
Trumpβs Acting Cyber Chief Allegedly Leaked Data to ChatGPT
Sources say event triggered internal cybersecurity alerts and a DHSβlevel review into whether federal information had been improperly exposed.
π¦Ώ Android Phones Get AI-Powered Anti-Theft Features π¦Ώ
π Read more.
π Via "Tech Republic"
----------
ποΈ Seen on @cibsecurity
Enhanced lockouts and stronger remote locking aim to make stolen devices far harderand less profitablefor criminals. The post Android Phones Get AIPowered AntiTheft Features appeared first on TechRepublic.π Read more.
π Via "Tech Republic"
----------
ποΈ Seen on @cibsecurity
TechRepublic
Android Phones Get AI-Powered Anti-Theft Features
Enhanced lockouts and stronger remote locking aim to make stolen devices far harderβand less profitableβfor criminals.
ποΈ Google Disrupts IPIDEA β One of the Worldβs Largest Residential Proxy Networks ποΈ
π Read more.
π Via "The Hacker News"
----------
ποΈ Seen on @cibsecurity
Google on Wednesday announced that it worked together with other partners to disrupt IPIDEA, which it described as one of the largest residential proxy networks in the world. To that end, the company said it took legal action to take down dozens of domains used to control devices and proxy traffic through them. As of writing, IPIDEA's website "www.ipidea.io" is no longer accessible. It.π Read more.
π Via "The Hacker News"
----------
ποΈ Seen on @cibsecurity
ποΈ Fake Moltbot AI Coding Assistant on VS Code Marketplace Drops Malware ποΈ
π Read more.
π Via "The Hacker News"
----------
ποΈ Seen on @cibsecurity
Cybersecurity researchers have flagged a new malicious Microsoft Visual Studio Code VS Code extension for Moltbot formerly Clawdbot on the official Extension Marketplace that claims to be a free artificial intelligence AI coding assistant, but stealthily drops a malicious payload on compromised hosts. The extension, named "ClawdBot Agent AI Coding Assistant" "clawdbot.clawdbotagent".π Read more.
π Via "The Hacker News"
----------
ποΈ Seen on @cibsecurity
ποΈ Russian ELECTRUM Tied to December 2025 Cyber Attack on Polish Power Grid ποΈ
π Read more.
π Via "The Hacker News"
----------
ποΈ Seen on @cibsecurity
The "coordinated" cyber attack targeting multiple sites across the Polish power grid has been attributed with medium confidence to a Russian statesponsored hacking crew known as ELECTRUM. Operational technology OT cybersecurity company Dragos, in a new intelligence brief published Tuesday, described the late December 2025 activity as the first major cyber attack targeting distributed energy.π Read more.
π Via "The Hacker News"
----------
ποΈ Seen on @cibsecurity
ποΈ Two High-Severity n8n Flaws Allow Authenticated Remote Code Execution ποΈ
π Read more.
π Via "The Hacker News"
----------
ποΈ Seen on @cibsecurity
Cybersecurity researchers have disclosed two new security flaws in the n8n workflow automation platform, including a crucial vulnerability that could result in remote code execution. The weaknesses, discovered by the JFrog Security Research team, are listed below CVE20261470 CVSS score 9.9 An eval injection vulnerability that could allow an authenticated user to bypass the Expression.π Read more.
π Via "The Hacker News"
----------
ποΈ Seen on @cibsecurity
ποΈ From Triage to Threat Hunts: How AI Accelerates SecOps ποΈ
π Read more.
π Via "The Hacker News"
----------
ποΈ Seen on @cibsecurity
If you work in security operations, the concept of the AI SOC agent is likely familiar. Early narratives promised total autonomy. Vendors seized on the idea of the "Autonomous SOC" and suggested a future where algorithms replaced analysts. That future has not arrived. We have not seen mass layoffs or empty security operations centers. We have instead seen the emergence of a practical reality.π Read more.
π Via "The Hacker News"
----------
ποΈ Seen on @cibsecurity
ποΈ Critical vm2 Node.js Flaw Allows Sandbox Escape and Arbitrary Code Execution ποΈ
π Read more.
π Via "The Hacker News"
----------
ποΈ Seen on @cibsecurity
A critical sandbox escape vulnerability has been disclosed in the popular vm2 Node.js library that, if successfully exploited, could allow attackers to run arbitrary code on the underlying operating system. The vulnerability, tracked as CVE202622709, carries a CVSS score of 9.8 out of 10.0 on the CVSS scoring system. "In vm2 for version 3.10.0, Promise.prototype.then Promise.prototype.catch.π Read more.
π Via "The Hacker News"
----------
ποΈ Seen on @cibsecurity
ποΈ Mustang Panda Deploys Updated COOLCLIENT Backdoor in Government Cyber Attacks ποΈ
π Read more.
π Via "The Hacker News"
----------
ποΈ Seen on @cibsecurity
Threat actors with ties to China have been observed using an updated version of a backdoor called COOLCLIENT in cyber espionage attacks in 2025 to facilitate comprehensive data theft from infected endpoints. The activity has been attributed to Mustang Panda aka Earth Preta, Fireant, HoneyMyte, Polaris, and Twill Typhoon with the intrusions primarily directed against government entities located.π Read more.
π Via "The Hacker News"
----------
ποΈ Seen on @cibsecurity
ποΈ Password Reuse in Disguise: An Often-Missed Risky Workaround ποΈ
π Read more.
π Via "The Hacker News"
----------
ποΈ Seen on @cibsecurity
When security teams discuss credentialrelated risk, the focus typically falls on threats such as phishing, malware, or ransomware. These attack methods continue to evolve and rightly command attention. However, one of the most persistent and underestimated risks to organizational security remains far more ordinary. Nearidentical password reuse continues to slip past security controls, often.π Read more.
π Via "The Hacker News"
----------
ποΈ Seen on @cibsecurity
ποΈ Google Warns of Active Exploitation of WinRAR Vulnerability CVE-2025-8088 ποΈ
π Read more.
π Via "The Hacker News"
----------
ποΈ Seen on @cibsecurity
Google on Tuesday revealed that multiple threat actors, including nationstate adversaries and financially motivated groups, are exploiting a nowpatched critical security flaw in RARLAB WinRAR to establish initial access and deploy a diverse array of payloads. "Discovered and patched in July 2025, governmentbacked threat actors linked to Russia and China as well as financially motivated.π Read more.
π Via "The Hacker News"
----------
ποΈ Seen on @cibsecurity
ποΈ Fake Python Spellchecker Packages on PyPI Delivered Hidden Remote Access Trojan ποΈ
π Read more.
π Via "The Hacker News"
----------
ποΈ Seen on @cibsecurity
Cybersecurity researchers have discovered two malicious packages in the Python Package Index PyPI repository that masquerade as spellcheckers but contain functionality to deliver a remote access trojan RAT. The packages, named spellcheckerpy and spellcheckpy, are no longer available on PyPI, but not before they were collectively downloaded a little over 1,000 times. "Hidden inside the Basque.π Read more.
π Via "The Hacker News"
----------
ποΈ Seen on @cibsecurity