🔥 A free decryptor just landed for FunkSec ransomware — 172 victims hit across tech, gov, and education can now get their files back.

Built with AI. Written in Rust. Broken by rookies.

Get the tool + full story ↓ https://thehackernews.com/2025/07/funksec-ransomware-decryptor-released.html

🚨 Thousands tricked by fake crypto apps via Facebook ads.

They install a stealthy new malware—JSCEAL—that hijacks wallets, steals passwords in real-time, and evades most detection tools.

Worse? It's still active.

Here’s how it works (and how to avoid it) ↓ https://thehackernews.com/2025/07/hackers-use-facebook-ads-to-spread.html

🚨 120,000+ attacks in the wild.

Hackers are exploiting a critical bug (CVSS 9.8) in a popular WordPress theme to hijack sites—no login needed.

They’re planting PHP backdoors and rogue admin accounts.

Details here → https://thehackernews.com/2025/07/hackers-exploit-critical-wordpress.html

🔥 A hacker gang planted a 4G Raspberry Pi inside a bank’s ATM network—bypassing firewalls to install a rootkit called CAKETAP.

It spoofed PIN checks, hid processes, and aimed to trigger fraudulent withdrawals.

Details you should know ↓ https://thehackernews.com/2025/07/unc2891-breaches-atm-network-via-4g.html

🚨 SIEMs are failing the modern SOC.

🔹 Log overload is flooding analysts with noise
🔹 SaaS SIEMs spike costs during attacks
🔹 30% of analyst time is lost to false positives

A new model is rising: metadata, behavior, and real-time detection.

Here's what’s replacing it ↓ https://thehackernews.com/2025/07/alert-fatigue-data-overload-and-fall-of.html

🚨 Cyberattacks are evolving fast—and so is defense.

SentinelOne just landed Leader status in Gartner’s 2025 Magic Quadrant for Endpoint Protection for the 5th year straight.

Its AI spots threats 63% faster and slashes response time in half.

What’s changing in cybersecurity → https://thehackernews.com/2025/07/ai-driven-trends-in-endpoint-security.html

North Korea’s UNC4899 hacked two firms via LinkedIn and Telegram job lures—tricking devs into running malicious Docker containers.

They breached Google Cloud & AWS, stole creds, bypassed MFA, injected wallet-hijacking JavaScript—and stole millions in crypto.

Details here → https://thehackernews.com/2025/07/n-korean-hackers-used-job-lures-cloud.html

🚨 Hackers are hijacking Proofpoint + Bitly to bypass email defenses and steal Microsoft 365 credentials.

Phishing links look legit—wrapped, shortened, and sent from trusted accounts.

Even “protected” emails are now weaponized.

Details you need → https://thehackernews.com/2025/07/experts-detect-multi-layer-redirect.html

🛑 Russia’s Secret Blizzard hackers are hijacking embassy internet traffic in Moscow—at the ISP level.

They’re using fake Kaspersky alerts + a new malware “ApolloShadow” to silently take over devices.

Microsoft confirms: the campaign is ongoing.

Details here → https://thehackernews.com/2025/07/secret-blizzard-deploys-malware-in-isp.html

🚨 China-linked hackers just deployed two ransomware strains—Warlock and LockBit Black—using a custom C2 framework called AK47 C2.

They’re hijacking legit tools, faking Microsoft domains, and disabling antivirus with a Chinese driver.

Details here → https://thehackernews.com/2025/08/storm-2603-exploits-sharepoint-flaws-to.html

🔐 "How much AI is too much in customer experiences?"

Users are starting to push back.

Join our new 📺 WEBINAR featuring an expert from @Okta as she reveals new research on how to balance innovation with trust—straight from the 2025 CIAM Trends Report.

👉 Watch the webinar now → https://thehacker.news/ai-customer-identity

🚨 Hackers are poisoning your Python packages, hijacking logins & weaponizing AI.

The next wave of cyberattacks is already here—and most defenses won’t stop it.

3 New urgent cybersecurity webinars show how to lock down your code, identity & AI stack → https://www.linkedin.com/pulse/secure-your-ai-supply-chain-stack-3-new-cybersecurity-webinars-d9zwc/

🚨 SOCs are losing the AI race — and it’s not because of their tools.

They’re feeding cutting-edge AI systems junk data: incomplete logs, siloed alerts, zero context.

Meanwhile, attackers are training like elite athletes.

Here’s why defenders are falling behind ↓ https://thehackernews.com/2025/08/you-are-what-you-eat-why-your-ai.html

🚨 An AI-generated npm package just stole crypto from devs.

"kodane/patch-manager" posed as a legit Node.js tool — but hid a stealth wallet drainer that hit 1,500+ downloads before takedown.

Here’s what to know ↓ https://thehackernews.com/2025/08/ai-generated-malicious-npm-package.html

🚨 Hackers are using fake Microsoft OAuth apps + the Tycoon phishing kit to hijack 365 accounts

They’ve spoofed 50+ brands (Adobe, DocuSign, SharePoint), bypassing MFA with adversary-in-the-middle attacks.

3,000+ users hit across 900 orgs.

Details → https://thehackernews.com/2025/08/attackers-use-fake-oauth-apps-with.html

🚨 A single Slack message could hijack Cursor—AI code editor—with zero clicks.

CVE-2025-54135 let attackers run remote code just by posting in a public channel.

Cursor auto-executed it. No prompts. No approval.

Details here → https://thehackernews.com/2025/08/cursor-ai-code-editor-fixed-flaw.html

🚨 Akira ransomware is hitting SonicWall SSL VPNs—some fully patched.

Researchers suspect a zero-day or credential abuse. Attacks surged in late July.

Org? Disable SSL VPN until further notice.

Full details ↓ https://thehackernews.com/2025/08/akira-ransomware-exploits-sonicwall.html

🚨 China-linked threat group hacked Southeast Asia telecoms — no data stolen, just full remote access to critical networks for 9 months.

They used stealth malware, tunneled through mobile operators, and wiped their tracks.

Here’s what we know ↓ https://thehackernews.com/2025/08/cl-sta-0969-installs-covert-malware-in.html

🚨 Over 11,000 Android phones hijacked by new PlayPraetor malware.

It fakes Google Play pages, abuses accessibility settings, and livestreams your screen—all to steal banking and crypto credentials.

And it's spreading fast.

Here’s what you need to know ↓ https://thehackernews.com/2025/08/playpraetor-android-trojan-infects.html

You’re not just using SaaS. It’s using you.

AI tools, browser plugins, and apps your team installs without asking are opening hidden doors to your data.

Most IT teams have no idea.

Here’s how to take back control ↓ https://thehackernews.com/2025/08/the-wild-west-of-shadow-it.html