⚠️ ‘CountLoader’ is arming Russian ransomware (LockBit, Black Basta, Qilin)—dropping Cobalt Strike, AdaptixC2 & PureHVNC.
It spreads via fake Ukrainian police PDFs & DeepSeek lures, hijacks browsers, hides as “Google Update,” and abuses certutil/bitsadmin.
Details → https://thehackernews.com/2025/09/countloader-broadens-russian-ransomware.html
It spreads via fake Ukrainian police PDFs & DeepSeek lures, hijacks browsers, hides as “Google Update,” and abuses certutil/bitsadmin.
Details → https://thehackernews.com/2025/09/countloader-broadens-russian-ransomware.html
😁8🤯4👍1
🚨 SonicWall Breach Alert: Hackers broke into its cloud backups and accessed firewall config files for <5% of customers.
⚠️ Encrypted credentials were inside—but the stolen data could help attackers exploit those firewalls next.
Here’s what every SonicWall user needs to do ↓ https://thehackernews.com/2025/09/sonicwall-urges-password-resets-after.html
⚠️ Encrypted credentials were inside—but the stolen data could help attackers exploit those firewalls next.
Here’s what every SonicWall user needs to do ↓ https://thehackernews.com/2025/09/sonicwall-urges-password-resets-after.html
🔥8😁4👍1
❓What do you get when you combine AI + Quantum? Great potential.
But when it comes to cybersecurity, you also get challenges.
Quantum + AI are already reshaping cyber risk.
Hear all about it from ex-NIST, Nokia Bell Labs & global security leaders in our live webinar ↓ https://thehackernews.uk/ai-quantum-webinar
But when it comes to cybersecurity, you also get challenges.
Quantum + AI are already reshaping cyber risk.
Hear all about it from ex-NIST, Nokia Bell Labs & global security leaders in our live webinar ↓ https://thehackernews.uk/ai-quantum-webinar
😱11
🚨 Hackers exploited 2 zero-day flaws in Ivanti EPMM to hijack servers.
CISA says they dropped custom Java malware that lets them run any code, steal LDAP creds & stay hidden.
Patch immediately or risk a breach.
Full details → https://thehackernews.com/2025/09/cisa-warns-of-two-malware-strains.html
CISA says they dropped custom Java malware that lets them run any code, steal LDAP creds & stay hidden.
Patch immediately or risk a breach.
Full details → https://thehackernews.com/2025/09/cisa-warns-of-two-malware-strains.html
👏13🔥3😁1
🚨 UK just busted two Scattered Spider hackers—19 & 18—behind the massive TfL cyberattack.
💥 One of them, Thalha Jubair, is also charged in the US for 120+ hacks & $115M in ransoms. He could face 95 years.
Full story → https://thehackernews.com/2025/09/uk-arrest-two-teen-scattered-spider.html
💥 One of them, Thalha Jubair, is also charged in the US for 120+ hacks & $115M in ransoms. He could face 95 years.
Full story → https://thehackernews.com/2025/09/uk-arrest-two-teen-scattered-spider.html
🤯17👍7😁5😱2
🚨 Two FSB-linked hacking crews—Gamaredon + Turla—are now working together to hit Ukraine’s defense networks.
Gamaredon’s custom tools (PteroGraphin, PteroOdd, PteroPaste) secretly planted Turla’s Kazuar v2/v3 backdoor on Ukrainian systems.
Here’s what to know → https://thehackernews.com/2025/09/russian-hackers-gamaredon-and-turla.html
Gamaredon’s custom tools (PteroGraphin, PteroOdd, PteroPaste) secretly planted Turla’s Kazuar v2/v3 backdoor on Ukrainian systems.
Here’s what to know → https://thehackernews.com/2025/09/russian-hackers-gamaredon-and-turla.html
🤯14👏7⚡5👍2😱2
🚨 AI agents are reshaping business—but also exposing fresh security risks.
🔒 Auth0’s free webinar shows how to spot the hidden threats & lock them down before attackers strike.
Don’t wait. Watch now → https://thehacker.news/ai-agents-security
🔒 Auth0’s free webinar shows how to spot the hidden threats & lock them down before attackers strike.
Don’t wait. Watch now → https://thehacker.news/ai-agents-security
🔥11
⚡ Security teams, say goodbye to slow alert triage.
Tines’ new free AI workflow auto-grabs SOPs from Confluence and fixes threats on its own—while keeping your team updated on Slack.
⚠️ Faster response, less burnout, zero missed steps.
Full guide → https://thehackernews.com/2025/09/how-to-automate-alert-triage-with-ai.html
Tines’ new free AI workflow auto-grabs SOPs from Confluence and fixes threats on its own—while keeping your team updated on Slack.
⚠️ Faster response, less burnout, zero missed steps.
Full guide → https://thehackernews.com/2025/09/how-to-automate-alert-triage-with-ai.html
🔥7👍2
🚨 17,500+ phishing sites. 316 brands. 74 countries.
A Chinese-speaking gang’s PhaaS kits “Lucid” & “Lighthouse” let criminals launch full-scale attacks for as little as $88 a week.
Email phishing jumped 25% in a month.
Details here → https://thehackernews.com/2025/09/17500-phishing-domains-target-316.html
A Chinese-speaking gang’s PhaaS kits “Lucid” & “Lighthouse” let criminals launch full-scale attacks for as little as $88 a week.
Email phishing jumped 25% in a month.
Details here → https://thehackernews.com/2025/09/17500-phishing-domains-target-316.html
🤯9🔥4👏3😱3😁2👍1
🚨 Fortra GoAnywhere MFT: CVSS 10 (CVE-2025-10035) lets attackers run commands via forged license response.
Thousands exposed; same admin path as the 2023 LockBit-hit bug—weaponization likely.
Details → https://thehackernews.com/2025/09/fortra-releases-critical-patch-for-cvss.html
Patch 7.8.4/7.6.3; restrict Admin Console.
Thousands exposed; same admin path as the 2023 LockBit-hit bug—weaponization likely.
Details → https://thehackernews.com/2025/09/fortra-releases-critical-patch-for-cvss.html
Patch 7.8.4/7.6.3; restrict Admin Console.
😁12🔥2👏1
🚨 1,500 hacked servers/day are being rented out via REM Proxy—powered by SystemBC.
~80% are cloud servers (VPS); infections often last 31+ days.
The network markets 20k MikroTik routers and is used to brute-force WordPress creds.
Details here → https://thehackernews.com/2025/09/systembc-powers-rem-proxy-with-1500.html
~80% are cloud servers (VPS); infections often last 31+ days.
The network markets 20k MikroTik routers and is used to brute-force WordPress creds.
Details here → https://thehackernews.com/2025/09/systembc-powers-rem-proxy-with-1500.html
👏13😁5👍1🔥1
🇮🇷 Iran’s IRGC hackers just breached 34 devices across 11 telecom giants—using fake LinkedIn job offers.
👥 They posed as HR, ran “interviews,” then secretly dropped a stealth backdoor called MINIBIKE hidden in Azure traffic.
Read → https://thehackernews.com/2025/09/unc1549-hacks-34-devices-in-11-telecom.html
👥 They posed as HR, ran “interviews,” then secretly dropped a stealth backdoor called MINIBIKE hidden in Azure traffic.
Read → https://thehackernews.com/2025/09/unc1549-hacks-34-devices-in-11-telecom.html
🔥40🤯11👏6😁5🤔5😱3👍1
⚠️ Warning — One hidden email could trick ChatGPT’s Deep Research into stealing your Gmail inbox.
Dubbed “ShadowLeak,” this stealth attack hides commands in invisible HTML, making the AI grab and exfiltrate your data—without a single click.
Details → https://thehackernews.com/2025/09/shadowleak-zero-click-flaw-leaks-gmail.html
Dubbed “ShadowLeak,” this stealth attack hides commands in invisible HTML, making the AI grab and exfiltrate your data—without a single click.
Details → https://thehackernews.com/2025/09/shadowleak-zero-click-flaw-leaks-gmail.html
👍10🔥5😁3
⚠️ First-ever GPT-4 powered malware uncovered.
Researchers found “MalTerminal,” a prototype that can write its own ransomware or reverse shell—code dated before Nov 2023.
Hackers are also slipping hidden prompts into phishing emails to trick AI scanners and unleash Follina exploits.
Full story → https://thehackernews.com/2025/09/researchers-uncover-gpt-4-powered.html
Researchers found “MalTerminal,” a prototype that can write its own ransomware or reverse shell—code dated before Nov 2023.
Hackers are also slipping hidden prompts into phishing emails to trick AI scanners and unleash Follina exploits.
Full story → https://thehackernews.com/2025/09/researchers-uncover-gpt-4-powered.html
🤯36🔥11😁7😱4🤔2👍1
🚨 North Korea’s Lazarus-linked hackers strike again!
Fake crypto job interviews → bogus “mic fix” → BeaverTail + InvisibleFerret malware hits Windows, Mac & Linux.
😱 One click and your data’s gone.
🔗 Full report → https://thehackernews.com/2025/09/dprk-hackers-use-clickfix-to-deliver.html
Fake crypto job interviews → bogus “mic fix” → BeaverTail + InvisibleFerret malware hits Windows, Mac & Linux.
😱 One click and your data’s gone.
🔗 Full report → https://thehackernews.com/2025/09/dprk-hackers-use-clickfix-to-deliver.html
🔥11🤯6😱4👏3😁1
⚠️ macOS users beware! Hackers are pushing fake GitHub repos mimicking apps like LastPass, Dropbox & Notion—spreading the Atomic Stealer malware via Google & Bing searches.
Read: https://thehackernews.com/2025/09/lastpass-warns-of-fake-repositories.html
🔗 Double-check every download. Your data could be next.
Read: https://thehackernews.com/2025/09/lastpass-warns-of-fake-repositories.html
🔗 Double-check every download. Your data could be next.
🤯11😁7👏5😱2
🔥 Microsoft patched a perfect 10.0 CVE in Entra ID (ex-Azure AD) that let attackers impersonate any user, even Global Admins—across every tenant worldwide.
🔑 MFA? Conditional Access? Logging? All bypassed. Total tenant takeover—SharePoint, Exchange, Azure resources.
Details here → https://thehackernews.com/2025/09/microsoft-patches-critical-entra-id.html
🔑 MFA? Conditional Access? Logging? All bypassed. Total tenant takeover—SharePoint, Exchange, Azure resources.
Details here → https://thehackernews.com/2025/09/microsoft-patches-critical-entra-id.html
🔥24😁6👏3🤔3🤯3
In cybersecurity, Quantum + AI aren’t just buzzwords.
🔒 63% of orgs say quantum will break today’s encryption.
🤖 93% already face daily AI-driven attacks.
The storm’s here. Are you ready?
Full expert guide + webinar ↓ https://thehacker.news/ai-quantum-resilience
🔒 63% of orgs say quantum will break today’s encryption.
🤖 93% already face daily AI-driven attacks.
The storm’s here. Are you ready?
Full expert guide + webinar ↓ https://thehacker.news/ai-quantum-resilience
😁7🔥4👍1
⚡ Cybersecurity Weekly Recap!
Hackers move in hours, not weeks—mixing AI-driven attacks, zero-days & supply-chain breaches.
💡 Key Takeaways:
• Old flaws keep resurfacing
• AI gives cybercriminals lightning speed
• Supply chains stay a prime target
👉 Read the latest edition: https://thehackernews.com/2025/09/weekly-recap-chrome-0-day-ai-hacking.html
Hackers move in hours, not weeks—mixing AI-driven attacks, zero-days & supply-chain breaches.
💡 Key Takeaways:
• Old flaws keep resurfacing
• AI gives cybercriminals lightning speed
• Supply chains stay a prime target
👉 Read the latest edition: https://thehackernews.com/2025/09/weekly-recap-chrome-0-day-ai-hacking.html
🔥8👍1
⚠️ Bots outnumber humans 80:1 in your network.
• AI agents & service accounts vastly outnumber employees
• Many have unlimited access with no oversight
• One stolen token = instant attacker backdoor
👉 Spot them before hackers do: https://thehackernews.com/2025/09/how-to-gain-control-of-ai-agents-and.html
• AI agents & service accounts vastly outnumber employees
• Many have unlimited access with no oversight
• One stolen token = instant attacker backdoor
👉 Spot them before hackers do: https://thehackernews.com/2025/09/how-to-gain-control-of-ai-agents-and.html
🔥8👍1