Follow on Google News
U.S. sentences Russian access broker to 81 months over ransomware attacks that caused $9 million in losses
A U.S. court has sentenced Russian national Aleksei Volkov to 81 months in prison for helping major cybercrime groups, including the Yanluowang ransomware crew, breach…
North Korean hackers abuse VS Code auto-run tasks to push StoatWaffle malware
North Korean threat actors have started abusing Visual Studio Code auto-run tasks to infect developers with a malware family called StoatWaffle, according to new research.…
Researchers outline eight AWS Bedrock attack paths that could expose enterprise data and AI workflows
Security researchers say Amazon Bedrock environments can expose far more than model outputs when identities hold too many permissions. In new research, XM Cyber mapped…
Tycoon2FA phishing platform rebounds days after major March takedown
Tycoon2FA, the phishing-as-a-service platform disrupted in a March 4 international operation, has already returned to roughly the same activity levels seen before the takedown, according…
TeamPCP deploys Iran-targeted wiper in Kubernetes attacks, researchers say
TeamPCP has expanded its cloud-focused malware activity with a new payload that wipes systems when it detects Iran-related settings and backdoors other environments instead. According…
Trivy supply-chain attack expands to Docker Hub and Aqua’s GitHub repos
The Trivy supply-chain attack has widened beyond the original malicious release and now includes compromised Docker Hub images and fresh repository tampering inside Aqua Security’s…
FBI says Iran-linked Handala hackers used Telegram as malware C2 in attacks on dissidents and journalists
The FBI has warned that Iran-linked hackers used Telegram as command-and-control infrastructure in malware attacks targeting Iranian dissidents, journalists critical of Tehran, and other opposition…
Tax-themed Google Ads push rogue ScreenConnect and a kernel-level EDR killer, Huntress warns
Cybercriminals are abusing Google Ads tied to tax-related searches to infect Windows PCs with a stealthy attack chain that ends in a kernel-level tool designed…
QNAP patches critical QVR Pro flaw that could let remote attackers access vulnerable systems
QNAP has fixed a critical vulnerability in its QVR Pro surveillance software that could let remote attackers gain access to affected systems without authentication. The…
NetScaler patches fix critical SAML and Gateway flaws that could enable remote attacks
Cloud Software Group has released security updates for NetScaler ADC and NetScaler Gateway to fix two newly disclosed vulnerabilities, including one critical bug that can…
November 21, 2025
1 comment 
