GIFTEDCROOK Malware Evolves: From Browser Stealer to Intelligence-Gathering Tool
The GIFTEDCROOK malware has evolved from a basic browser data stealer into a sophisticated intelligence-gathering tool, with significant updates enhancing ...
Tuesday, July 15, 2025
Tag: cyber security news
MOVEit Transfer Faces Increased Threats as Scanning Surges and CVE Flaws Are Targeted
GreyNoise Alert on MOVEit Transfer VulnerabilityThreat intelligence firm GreyNoise has reported a significant increase in scanning activity targeting Progress MOVEit ...
New FileFix Method Emerges as a Threat Following 517% Rise in ClickFix Attacks
The ClickFix social engineering tactic, utilizing fake CAPTCHA verifications as an initial access vector, saw a 517% increase from the ...
Iranian APT35 Hackers Targeting Israeli Tech Experts with AI-Powered Phishing Attacks
An Iranian state-sponsored hacking group linked to the Islamic Revolutionary Guard Corps (IRGC) has executed a spear-phishing campaign aimed at ...
Microsoft Extends Windows 10 Security Updates for One Year with New Enrollment Options
Microsoft has announced an extension of Windows 10 Extended Security Updates (ESU) for an additional year, allowing users to secure ...
67 Trojanized GitHub Repositories Found in Campaign Targeting Gamers and Developers
Cybersecurity researchers have identified a campaign named Banana Squad, involving over 67 GitHub repositories that falsely advertise Python-based hacking tools ...
Russian APT29 Exploits Gmail App Passwords to Bypass 2FA in Targeted Phishing Campaign
Threat actors with suspected Russian ties are exploiting Google’s application specific passwords feature in a social engineering campaign to access ...
CISA Warns of Active Exploitation of Linux Kernel Privilege Escalation Vulnerability
The U.S. Cybersecurity and Infrastructure Security Agency (CISA) has added a critical Linux kernel vulnerability, CVE-2023-0386, to its Known Exploited ...
Discord Invite Link Hijacking Delivers AsyncRAT and Skuld Stealer Targeting Crypto Wallets
A new malware campaign is exploiting a vulnerability in Discord's invitation system to deploy Skuld, an information stealer, and the ...
Apple Zero-Click Flaw in Messages Exploited to Spy on Journalists Using Paragon Spyware
Apple has revealed that a recently patched security vulnerability in its Messages app, identified as CVE-2025-43200, was exploited in cyber ...
News Summarized. Time Saved. Bite-sized news briefs for busy people. No fluff, just facts.