ICYMI: 2025-11-04
Latest Headlines
A Cybercrime Merger Like No Other — Scattered Spider, LAPSUS$, and ShinyHunters Join Forces
Europol and Eurojust Dismantle €600 Million Crypto Fraud Network in Global Sweep
Critical React Native CLI Flaw Exposed Millions of Developers to Remote Attacks
Microsoft Teams Bugs Let Attackers Impersonate Colleagues and Edit Messages Unnoticed
Operation SkyCloak Deploys Tor-Enabled OpenSSH Backdoor Targeting Defense Sectors
Google’s AI ‘Big Sleep’ Finds 5 New Vulnerabilities in Apple’s Safari WebKit
U.S. Prosecutors Indict Cybersecurity Insiders Accused of BlackCat Ransomware Attacks
Microsoft Detects “SesameOp” Backdoor Using OpenAI’s API as a Stealth Command Channel
FBI Warns of Criminals Posing as ICE, Urges Agents to ID Themselves
Critical Flaw in Popular React Native NPM Package Exposes Developers to Attacks
New ‘SleepyDuck’ Malware in Open VSX Marketplace Allow Attackers to Control Windows Systems Remotely
Critical RCE Vulnerability in Popular React Native NPM Package Exposes Developers to Attacks
Hackers Can Exploit Microsoft Teams Vulnerabilities to Manipulate Messages and Alter Notifications
Hackers Stolen Over $100 Million by Exploiting Balancer DeFi Protocol
2025 Insider Risk Report Finds Most Organizations Struggle to Detect and Predict Insider Risks
Microsoft Entra Credentials in the Authenticator App on Jail-Broken Devices to be Wiped Out
SesameOp Leveraging OpenAI Assistants API for Stealthy Communication with C2 Servers
Zscaler Acquires Enterprise AI Security Firm SPLX to Boost Zero Trust Exchange
Threat Actors Leverage RMM Tools to Hack Trucking Companies and Steal Cargo Freight
Hackers exploit WordPress plugin Post SMTP to hijack admin accounts
Apache OpenOffice disputes data breach claims by ransomware gang
Malicious Android apps on Google Play downloaded 42 million times
Data breach at major Swedish software supplier impacts 1.5 million
Media giant Nikkei reports data breach impacting 17,000 people
Police arrests suspects linked to €600 million crypto fraud ring
The Top 3 Browser Sandbox Threats That Slip Past Modern Security Tools
Windows 10 update bug triggers incorrect end-of-support alerts
Hackers exploit critical auth bypass flaw in JobMonster WordPress theme
– MTZ