Follow on Google News
BRUSHWORM and BRUSHLOGGER hit South Asian financial firm in targeted malware attack
A targeted cyberattack against a South Asian financial institution used two custom malware tools, BRUSHWORM and BRUSHLOGGER, to steal files, capture keystrokes, and maintain persistent…
Silver Fox targets Japanese firms with tax and HR phishing emails during busy filing season
A threat actor known as Silver Fox is targeting businesses in Japan with phishing emails that look like routine tax, payroll, and HR notices. ESET…
FBI Director Kash Patel’s personal Gmail account was hacked, and Iran-linked group Handala claims responsibility
Iran-linked hackers breached the personal Gmail account of FBI Director Kash Patel and published emails, photos, and documents online, according to Reuters, the FBI, and…
CISA adds Trivy supply chain compromise to KEV as agencies face April 9 deadline
CISA has added CVE-2026-33634 to its Known Exploited Vulnerabilities catalog, putting the Trivy supply chain compromise on the U.S. government’s short list of flaws that…
Windows 11 and Server 2025 to block legacy cross-signed kernel drivers by default starting in April
Microsoft has confirmed that the April 2026 Windows update will start blocking untrusted kernel drivers signed through the old cross-signed root program by default on…
European Commission confirms cyberattack after breach of AWS-hosted web environment
The European Commission has confirmed a cyberattack that hit part of its cloud infrastructure hosting the Commission’s web presence on the Europa.eu platform. The incident…
CISA flags actively exploited F5 BIG-IP flaw as agencies race to patch
CISA has added CVE-2025-53521, an F5 BIG-IP Access Policy Manager vulnerability, to its Known Exploited Vulnerabilities catalog after confirming active exploitation in the wild. The…
Cybersecurity stocks slide after report says Anthropic is testing a more powerful AI model
Cybersecurity stocks fell sharply on Friday after reports said Anthropic is testing a new advanced AI model with stronger coding and cybersecurity abilities than its…
Fake screenshot links used to infect Web3 support teams with multi-stage malware
A targeted malware campaign is hitting Web3 customer support staff through fake screenshot links sent in live chat conversations. Instead of exploiting a software flaw,…
Silver Fox shifts from RATs to Python stealers in tax audit phishing campaign across South Asia
A tax-themed phishing campaign tied to Silver Fox has moved away from its earlier reliance on remote access trojans and now uses a custom Python-based…
November 21, 2025
1 comment 
