Hackers Use Fake VPN and Browser NSIS Installers to Deliver Winos 4.0 Malware
Cybersecurity researchers have revealed a malware campaign that employs fake software installers disguised as popular applications like LetsVPN and QQ ...
Thursday, November 13, 2025
Tag: cyber news
Chinese Hackers Deploy MarsSnake Backdoor in Multi-Year Attack on Saudi Organization
SummaryThreat hunters have identified a China-aligned hacking group known as UnsolicitedBooker, which targeted an unnamed international organization in Saudi Arabia ...
Malicious PyPI Packages Exploit Instagram and TikTok APIs to Validate User Accounts
SummaryCybersecurity researchers have identified malicious packages on the Python Package Index (PyPI) designed to validate stolen email addresses against TikTok ...
Researchers Expose New Intel CPU Flaws Enabling Memory Leaks and Spectre v2 Attacks
Intel CPU Vulnerability Discovered Researchers at ETH Zürich have uncovered a new security flaw affecting all modern Intel CPUs, which ...
Horabot Malware Targets 6 Latin American Nations Using Invoice-Themed Phishing Emails
Cybersecurity Alert: Horabot Phishing Campaign Cybersecurity researchers have identified a phishing campaign distributing malware known as Horabot, specifically targeting Windows ...
Microsoft Fixes 78 Flaws, 5 Zero-Days Exploited; CVSS 10 Bug Impacts Azure DevOps Server
Microsoft has released updates to fix 78 security vulnerabilities in its software, including five zero-day flaws that are currently being ...
Ivanti Patches EPMM Vulnerabilities Exploited for Remote Code Execution in Limited Attacks
Ivanti has issued security updates to address two vulnerabilities in its Endpoint Manager Mobile (EPMM) software that can be exploited ...
The Persistence Problem: Why Exposed Credentials Remain Unfixed—and How to Change That
Detecting leaked credentials is just the beginning; the real challenge lies in what follows detection, as highlighted in GitGuardian's State ...
Google Rolls Out On-Device AI Protections to Detect Scams in Chrome and Android
Google announced the rollout of new AI-powered countermeasures to combat scams across its platforms, including Chrome, Search, and Android. The ...
Chinese Hackers Exploit SAP RCE Flaw CVE-2025-31324, Deploy Golang-Based SuperShell
A China-linked threat actor named Chaya_004 has been identified exploiting a recently disclosed security vulnerability in SAP NetWeaver, specifically CVE-2025-31324, ...
News Summarized. Time Saved. Bite-sized news briefs for busy people. No fluff, just facts.