🔥 AI is now the biggest career risk for CISOs—bigger than any breach.

⚡Move too fast → data leaks & shadow AI spread.
🐢Move too slow → rivals race ahead.

How to stay secure and competitive ↓ https://thehackernews.com/2025/09/how-cisos-can-drive-effective-ai.html

⚠️ ‘CountLoader’ is arming Russian ransomware (LockBit, Black Basta, Qilin)—dropping Cobalt Strike, AdaptixC2 & PureHVNC.

It spreads via fake Ukrainian police PDFs & DeepSeek lures, hijacks browsers, hides as “Google Update,” and abuses certutil/bitsadmin.

Details → https://thehackernews.com/2025/09/countloader-broadens-russian-ransomware.html

🚨 SonicWall Breach Alert: Hackers broke into its cloud backups and accessed firewall config files for <5% of customers.

⚠️ Encrypted credentials were inside—but the stolen data could help attackers exploit those firewalls next.

Here’s what every SonicWall user needs to do ↓ https://thehackernews.com/2025/09/sonicwall-urges-password-resets-after.html

❓What do you get when you combine AI + Quantum? Great potential.

But when it comes to cybersecurity, you also get challenges.

Quantum + AI are already reshaping cyber risk.

Hear all about it from ex-NIST, Nokia Bell Labs & global security leaders in our live webinar ↓ https://thehackernews.uk/ai-quantum-webinar

🚨 Hackers exploited 2 zero-day flaws in Ivanti EPMM to hijack servers.

CISA says they dropped custom Java malware that lets them run any code, steal LDAP creds & stay hidden.

Patch immediately or risk a breach.

Full details → https://thehackernews.com/2025/09/cisa-warns-of-two-malware-strains.html

🚨 UK just busted two Scattered Spider hackers—19 & 18—behind the massive TfL cyberattack.

💥 One of them, Thalha Jubair, is also charged in the US for 120+ hacks & $115M in ransoms. He could face 95 years.

Full story → https://thehackernews.com/2025/09/uk-arrest-two-teen-scattered-spider.html

🚨 Two FSB-linked hacking crews—Gamaredon + Turla—are now working together to hit Ukraine’s defense networks.

Gamaredon’s custom tools (PteroGraphin, PteroOdd, PteroPaste) secretly planted Turla’s Kazuar v2/v3 backdoor on Ukrainian systems.

Here’s what to know → https://thehackernews.com/2025/09/russian-hackers-gamaredon-and-turla.html

🚨 AI agents are reshaping business—but also exposing fresh security risks.

🔒 Auth0’s free webinar shows how to spot the hidden threats & lock them down before attackers strike.

Don’t wait. Watch now → https://thehacker.news/ai-agents-security

⚡ Security teams, say goodbye to slow alert triage.

Tines’ new free AI workflow auto-grabs SOPs from Confluence and fixes threats on its own—while keeping your team updated on Slack.

⚠️ Faster response, less burnout, zero missed steps.

Full guide → https://thehackernews.com/2025/09/how-to-automate-alert-triage-with-ai.html

🚨 17,500+ phishing sites. 316 brands. 74 countries.

A Chinese-speaking gang’s PhaaS kits “Lucid” & “Lighthouse” let criminals launch full-scale attacks for as little as $88 a week.

Email phishing jumped 25% in a month.

Details here → https://thehackernews.com/2025/09/17500-phishing-domains-target-316.html

🚨 Fortra GoAnywhere MFT: CVSS 10 (CVE-2025-10035) lets attackers run commands via forged license response.

Thousands exposed; same admin path as the 2023 LockBit-hit bug—weaponization likely.

Details → https://thehackernews.com/2025/09/fortra-releases-critical-patch-for-cvss.html

Patch 7.8.4/7.6.3; restrict Admin Console.

🚨 1,500 hacked servers/day are being rented out via REM Proxy—powered by SystemBC.

~80% are cloud servers (VPS); infections often last 31+ days.

The network markets 20k MikroTik routers and is used to brute-force WordPress creds.

Details here → https://thehackernews.com/2025/09/systembc-powers-rem-proxy-with-1500.html

🇮🇷 Iran’s IRGC hackers just breached 34 devices across 11 telecom giants—using fake LinkedIn job offers.

👥 They posed as HR, ran “interviews,” then secretly dropped a stealth backdoor called MINIBIKE hidden in Azure traffic.

Read → https://thehackernews.com/2025/09/unc1549-hacks-34-devices-in-11-telecom.html

⚠️ Warning — One hidden email could trick ChatGPT’s Deep Research into stealing your Gmail inbox.

Dubbed “ShadowLeak,” this stealth attack hides commands in invisible HTML, making the AI grab and exfiltrate your data—without a single click.

Details → https://thehackernews.com/2025/09/shadowleak-zero-click-flaw-leaks-gmail.html

⚠️ First-ever GPT-4 powered malware uncovered.

Researchers found “MalTerminal,” a prototype that can write its own ransomware or reverse shell—code dated before Nov 2023.

Hackers are also slipping hidden prompts into phishing emails to trick AI scanners and unleash Follina exploits.

Full story → https://thehackernews.com/2025/09/researchers-uncover-gpt-4-powered.html

🚨 North Korea’s Lazarus-linked hackers strike again!

Fake crypto job interviews → bogus “mic fix” → BeaverTail + InvisibleFerret malware hits Windows, Mac & Linux.

😱 One click and your data’s gone.

🔗 Full report → https://thehackernews.com/2025/09/dprk-hackers-use-clickfix-to-deliver.html