ICYMI: 2025-10-24
Latest Headlines
Smishing Triad Linked to 194,000 Malicious Domains in Global Phishing Operation
Newly Patched Critical Microsoft WSUS Flaw Comes Under Active Exploitation
APT36 Targets Indian Government with Golang-Based DeskRAT Malware Campaign
The Cybersecurity Perception Gap: Why Executives and Practitioners See Risk Differently
3,000 YouTube Videos Exposed as Malware Traps in Massive Ghost Network Operation
Self-Spreading ‘GlassWorm’ Infects VS Code Extensions in Widespread Supply Chain Attack
Critical Windows Server WSUS Vulnerability Exploited in the Wild
Microsoft Disables Downloaded File Previews to Block NTLM Hash Leaks
Pwn2Own WhatsApp Hacker Says Exploit Privately Disclosed to Meta
Threat Actors Tricks Target Users Via Impersonation and Fictional Financial Aid Offers
TransparentTribe Attack Linux-Based Systems of Indian Military Organizations to Deliver DeskRAT
Jingle Thief Attackers Exploiting Festive Season with Weaponized Gift Card Attacks
Warlock Ransomware Actors Exploiting Sharepoint ToolShell Zero-Day Vulnerability in New Attack Wave
New Python RAT Mimic as Legitimate Minecraft App Steals Sensitive Data from Users Computer
SideWinder Hacking Group Uses ClickOnce-Based Infection Chain to Deploy StealerBot Malware
New Red Teaming Tool RedTiger Attacking Gamers and Discord Accounts in the Wild
Arsen Launches Smishing Simulation to Help Companies Defend Against Mobile Phishing Threats
Hackers launch mass attacks exploiting outdated WordPress plugins
Critical WSUS flaw in Windows Server now exploited in attacks
Mozilla: New Firefox extensions must disclose data collection practices
Windows Server emergency patches fix WSUS bug with PoC exploit
– MTZ