Russian hacker to plead guilty for role in Yanluowang ransomware attacks
Volkov acted as an initial access broker for the Yanluowang ransomware group breaking into company networks and selling access to other hackers.
Cybersecurity News - Page 30
Microsoft’s November 2025 update fixes over 60 flaws, including Windows kernel zero-day
The has been exploited in the wild to gain SYSTEM-level privileges on affected Windows devices.
New WhisperLeak side-channel attack lets eavesdrop on sensitive LLM conversations
he attack exploits subtle metadata patterns in network traffic to deduce a user’s discussion topics.
Threat actors exploiting Triofox flaw to upload malicious files
Attackers abused the unauthenticated access to run the setup process and create a new admin account.
North Korean hackers exploit Google’s Find Hub to track and wipe Android devices
Using stolen Google credentials, the hackers log into victims’ accounts to access Find Hub, where they can query GPS data and issue remote wipe commands.
Landfall Android spyware abused Samsung zero-day in targeted Middle East campaign
The attackers delivered the spyware via malicious DNG (Digital Negative) image files, typically sent over WhatsApp.
Cyber Security Week in Review: November 7, 2025
In brief: Threat actors exploit multiple Cisco flaws, Sandworm launched multiple data-wiping cyberattacks against Ukraine, and more.
SonicWall confirms state-sponsored hackers behind September security breach
Еhe malicious activity was limited to unauthorized access of cloud backup files from a specific cloud environment via an API callю
PROMPTFLUX VBS malware uses AI model API to rewrite its own code
PROMPTFLUX is written in VBScript and uses a hard-coded API key to query Google’s Gemini model.
Iran-linked UNK_SmudgedSerpent hackers target academics and policy experts amid regional tensions
The campaign’s TTPs bear strong resemblance to known Iranian cyber espionage groups, including TA455, Charming Kitten, and MuddyWater.
Showing elements 291 - 300