Category: Uncategorized
-

Google Patches Critical Zero-Day Flaw in Chrome’s V8 Engine After Active Exploitation [email protected] (The Hacker News)
Google has released security updates to address a vulnerability in its Chrome browser for which an exploit exists in the wild. The zero-day vulnerability, tracked as CVE-2025-6554 (CVSS score: N/A), has been described as a type confusing flaw in the V8 JavaScript and WebAssembly engine. “Type confusion in V8 in Google Chrome prior to 138.0.7204.96…
-

U.S. Arrests Key Facilitator in North Korean IT Worker Scheme, Seizes $7.74 Million [email protected] (The Hacker News)
The U.S. Department of Justice (DoJ) on Monday announced sweeping actions targeting the North Korean information technology (IT) worker scheme, leading to the arrest of one individual and the seizure of 29 financial accounts, 21 fraudulent websites, and nearly 200 computers. The coordinated action saw searches of 21 known or suspected “laptop farms” across 14…
-

Microsoft Removes Password Management from Authenticator App Starting August 2025 [email protected] (The Hacker News)
Microsoft has said that it’s ending support for passwords in its Authenticator app starting August 1, 2025. The changes, the company said, are part of its efforts to streamline autofill in the two-factor authentication (2FA) app. “Starting July 2025, the autofill feature in Authenticator will stop working, and from August 2025, passwords will no longer…
-

U.S. Agencies Warn of Rising Iranian Cyberattacks on Defense, OT Networks, and Critical Infrastructure [email protected] (The Hacker News)
U.S. cybersecurity and intelligence agencies have issued a joint advisory warning of potential cyber-attacks from Iranian state-sponsored or affiliated threat actors. “Over the past several months, there has been increasing activity from hacktivists and Iranian government-affiliated actors, which is expected to escalate due to recent events,” the agencies said. “These cyber actors oftenRead More
-

Europol Dismantles $540 Million Cryptocurrency Fraud Network, Arrests Five Suspects [email protected] (The Hacker News)
Europol on Monday announced the takedown of a cryptocurrency investment fraud ring that laundered €460 million ($540 million) from more than 5,000 victims across the world. The operation, the agency said, was carried out by the Spanish Guardia Civil, along with support from law enforcement authorities from Estonia, France, and the United States. Europol said…
-

Blind Eagle Uses Proton66 Hosting for Phishing, RAT Deployment on Colombian Banks [email protected] (The Hacker News)
The threat actor known as Blind Eagle has been attributed with high confidence to the use of the Russian bulletproof hosting service Proton66. Trustwave SpiderLabs, in a report published last week, said it was able to make this connection by pivoting from Proton66-linked digital assets, leading to the discovery of an active threat cluster that…
-
News brief: AI security threats surge as governance lags
Check out the latest security news from the Informa TechTarget team.Read More
-
Ransomware: Examples, prevention and mitigating the damage
Top cybersecurity experts gathered to discuss the latest threats from ransomware and how organizations, large and small, can prevent or, at least, mitigate an attack.Read More
-

Leveraging Credentials As Unique Identifiers: A Pragmatic Approach To NHI Inventories [email protected] (The Hacker News)
Identity-based attacks are on the rise. Attacks in which malicious actors assume the identity of an entity to easily gain access to resources and sensitive data have been increasing in number and frequency over the last few years. Some recent reports estimate that 83% of attacks involve compromised secrets. According to reports such as the…
-
How CISOs can manage and reduce compliance fatigue
Compliance fatigue can undermine security when poorly managed. CISOs can combat it by starting conversations, automating processes and using compliance to drive security initiatives.Read More
