TheHackersNews

@zmgxukwfarucom

352 Following

43 Followers

TheHackersNews pfp

@zmgxukwfarucom

🚨 A cyber campaign using fake open-source projects on GitHub is stealing personal data and crypto assets. Malicious tools disguised as game mods and automation scripts have already stolen 5 bitcoins (~$456,600). Read the full article to learn how this attack works: https://t.co/IPRRfL4QsH

0 reply

0 recast

0 reaction

TheHackersNews pfp

@zmgxukwfarucom

Apple removes Advanced Data Protection (ADP) for iCloud in the U.K. following pressure from the government to build a backdoor into encrypted data. This undermines end-to-end encryption and could set a dangerous precedent globally. Read more: https://t.co/vVcRf71sIK

0 reply

0 recast

0 reaction

TheHackersNews pfp

@zmgxukwfarucom

🚨 Two critical vulnerabilities in Palo Alto Networks PAN-OS and SonicWall SonicOS SSLVPN are actively exploited, now added to CISA's KEV catalog. CVE-2025-0108 allows unauthenticated attackers to bypass PAN-OS security, while CVE-2024-53704 compromises SSLVPN authentication. https://t.co/v3qnUu6T3H

0 reply

0 recast

0 reaction

TheHackersNews pfp

@zmgxukwfarucom

🚨 Security vulnerabilities in Xerox VersaLink printers could allow attackers to steal authentication credentials via pass-back attacks, exposing critical systems. CVE-2024-12510 and CVE-2024-12511 impact LDAP and SMB/FTP services and could lead to compromised Windows Active https://t.co/7LeW6gzi2t

0 reply

0 recast

0 reaction

TheHackersNews pfp

@zmgxukwfarucom

Google’s new Android security feature blocks scammers from altering critical settings, like installing apps from unknown sources, while on a phone call. This feature aims to prevent a rise in telephone-oriented attack delivery (TOAD), a growing scam trend. Learn more about this https://t.co/VWv9xXt0Kj

0 reply

0 recast

0 reaction

TheHackersNews pfp

@zmgxukwfarucom

🔬 Industry-first report examines the relationship between remediation delays and incidents, based on insights from over 150 security decision makers in large U.S. enterprises. Some key findings: ? Over 62% of incidents are directly related to backlogged risks that the security https://t.co/3GtbWjjFlW

0 reply

0 recast

0 reaction

TheHackersNews pfp

@zmgxukwfarucom

🛑 Apple has released emergency security updates for iOS and iPadOS to patch a vulnerability exploited in the wild. This flaw, identified as CVE-2025-24200, could allow attackers to disable USB Restricted Mode on locked devices. Update your devices now: https://t.co/t7e02CQdBL

0 reply

0 recast

0 reaction

TheHackersNews pfp

@zmgxukwfarucom

🛑 DeepSeek's iOS app is transmitting sensitive user data without encryption to a cloud platform linked to ByteDance (TikTok), leaving it wide open to hackers. 👉 See the full story and analysis here: https://t.co/t4rgGFy07o https://t.co/lnwuVqMwH0

0 reply

0 recast

0 reaction

TheHackersNews pfp

@zmgxukwfarucom

Bogus websites masquerading as Google Chrome are now distributing ValleyRAT—an evolving remote access trojan. Targeting high-value roles in finance, accounting, and sales, this threat actor—Silver Fox—strategically targets sensitive systems. Read the full report: https://t.co/8J3jNKifEf

0 reply

0 recast

0 reaction

TheHackersNews pfp

@zmgxukwfarucom

Python vs. no-code for security automation - a side-by-side breakdown 🔎 Security teams sometimes debate whether to use Python or a no-code platform like Tines for SOAR. Both have their advantages - but how do they compare in real-world automation? https://t.co/FVNIXmKlJa https://t.co/evdpWGKAeg

0 reply

0 recast

0 reaction

TheHackersNews pfp

@zmgxukwfarucom

This week’s update covers a broad range of cybersecurity news—from AI risks to law enforcement efforts against cybercrime. It’s a must-read for everyone. https://t.co/2LRWOcDnZ9

0 reply

0 recast

0 reaction

TheHackersNews pfp

@zmgxukwfarucom

🚨 WARNING: WhatsApp uncovers major spyware campaign targeting journalists! ? 90+ victims were attacked by Israeli firm Paragon Solutions. ? Zero-click spyware deployed via a PDF file—no action from the user needed 👉 Full story: https://t.co/tVfXCklnu9

0 reply

0 recast

0 reaction

TheHackersNews pfp

@zmgxukwfarucom

🚨 ALERT: Over 57 threat actors from China, Iran, North Korea, and Russia are now using Google's Gemini AI to power their malicious cyber operations. From researching vulnerabilities to crafting phishing campaigns, they’re leveraging GenAI for faster, more efficient cybercrime. https://t.co/Mcn9Xivka3

0 reply

0 recast

0 reaction

TheHackersNews pfp

@zmgxukwfarucom

?? New Mirai Botnet Variant Aquabot Targets CVE-2024-41710 in Mitel Phones for DDoS Attacks. The flaw affects Mitel 6800, 6900, 6900w phones and Mitel 6970 Conference Units. Learn more: https://t.co/pVz130vXMy

0 reply

0 recast

0 reaction

TheHackersNews pfp

@zmgxukwfarucom

🚨 Apple Silicon CPUs hit by 2 new vulnerabilities: SLAP & FLOP These attacks target Load Address and Load Value Predictors in Apple CPUs, risking exposure of your: ? Location history ? Calendar events ? Sensitive data 🔗 Read: https://t.co/7gPeevAkaL

0 reply

0 recast

0 reaction

TheHackersNews pfp

@zmgxukwfarucom

🔥 Train. Network. Excel. 🔥 SANS live training events aren’t just classes—they’re your gateway to the ultimate cybersecurity experience! 💡 Learn from the best, meet fellow professionals, and become a true cyber game-changer. 📅 Find your event: 👉 https://t.co/dykVHjuF2V https://t.co/GZ39L75rzV

0 reply

0 recast

0 reaction

TheHackersNews pfp

@zmgxukwfarucom

🚨 Webinar Alert: Best Practices for Access Management in 2025 🚨 Struggling to manage user access in a way that meets the latest security standards while working within a tight budget? If you're a Google Workspace user, you're in luck 👇 Did you know that you can configure any https://t.co/GA09i556dK

0 reply

0 recast

0 reaction

TheHackersNews pfp

@zmgxukwfarucom

?? Critical Flaw in Meta’s AI Stack! Meta's Llama AI framework is vulnerable to remote code execution through insecure deserialization. How it works: Attacker sends crafted data to execute malicious code. Read this article: https://t.co/Dp79vs93z6

0 reply

0 recast

0 reaction

TheHackersNews pfp

@zmgxukwfarucom

🔑 Only 14% of Organizations Can Recover SaaS Data in MINUTES! The rest? It takes hours, or even days—putting compliance and productivity at serious risk. 🔐 Find out how to level up your data resilience in the 2025 SaaS Backup and Recovery Report: https://t.co/PNQNTL7dSR

0 reply

0 recast

0 reaction

TheHackersNews pfp

@zmgxukwfarucom

A massive botnet powered by 13,000 hijacked MikroTik routers is sending malicious emails to bypass email protections and launch malware campaigns. The attack leverages misconfigured DNS and SPF records, making it easier for threat actors to spoof legitimate domains. Read the https://t.co/sGg0f0EgPS

0 reply

0 recast

0 reaction