327/68 Monday, September 8, 2025 VirusTotal has identified a new phishing campaign that hides within SVG (Scalable Vector Graphics) files, embedding malware inside a fake portal that impersonates the Colombian judicial system. The attack was uncovered after VirusTotal enhanced its AI Code Insight platform to analyze SVG files, using machine learning to summarize suspicious behaviors […]
326/68 Friday, September 5, 2025 Google has released the September 2025 Android security update, addressing a total of 120 vulnerabilities, including two zero-days currently under active exploitation: CVE-2025-38352 in the Linux Kernel and CVE-2025-48543 in the Android Runtime. Both flaws can be exploited for privilege escalation without requiring special permissions or user interaction. In addition […]
325/68 Friday, September 5, 2025 Researchers from Check Point have revealed that HexStrike AI, a tool originally developed for red teaming and bug bounty purposes, is being misused by threat actors, turning it from a security testing utility into an automated attack engine. HexStrike AI can orchestrate more than 150 security utilities through AI agents, […]
324/68 Friday, September 5, 2025 Cybersecurity researchers at Guardio Labs have uncovered a new technique used by cybercriminals to abuse Grok, the AI assistant integrated into the X app (formerly Twitter), to bypass restrictions on posting malicious links. Malvertisers typically post enticing videos to lure victims but avoid embedding links directly in the posts to […]
323/68 Thursday, September 4, 2025 Cybersecurity company Check Point has revealed that the hacking group Silver Fox—also known as SwimSnake, The Great Thief of Valley, UTG-Q-1000, and Void Arachne—is using a Bring Your Own Vulnerable Driver (BYOVD) technique. The attackers leverage a Microsoft-signed but vulnerable driver from WatchDog Anti-malware (amsdk.sys version 1.0.600) to disable security […]
322/68 Thursday, September 4, 2025 Evertec Inc., a major fintech and payment processing company in Latin America and the Caribbean, disclosed that on August 29, 2025, its Brazilian subsidiary Sinqia S.A. was compromised in a cyberattack. Hackers gained access to Pix, the Central Bank of Brazil’s real-time payment system, and attempted to carry out unauthorized […]
321/68 Thursday, September 4, 2025 Cloudflare has revealed that it successfully mitigated the largest DDoS (Distributed Denial of Service) attack ever recorded, which peaked at 11.5 terabits per second (Tbps). The attack, primarily a UDP flood originating mostly from Google Cloud, was part of a prolonged campaign spanning several weeks. In addition, Cloudflare blocked hundreds […]
320/68 Wednesday, September 3, 2025 Cybersecurity firm Zscaler has issued a statement confirming a data breach after attackers gained access to the company’s Salesforce instance and stole customer information stored in support cases. The incident was linked to the compromise of Salesloft Drift, an AI chat agent integrated with Salesforce, which was exploited as a […]
319/68 Wednesday, September 3, 2025 Cybersecurity researchers have warned of a recent shift in threats targeting the Android operating system. Traditionally, dropper malware-whose main role is to deliver other malware—has been widely used to spread banking trojans designed to steal financial data. However, attackers are now increasingly deploying simpler payloads, such as SMS stealers and […]
318/68 Tuesday, September 2, 2025 Amazon has disclosed that it successfully intercepted a watering hole attack campaign carried out by APT29, a Russian-linked hacking group also known as SVR, Cozy Bear, Nobelium, BlueBravo, Midnight Blizzard, and The Dukes. The group leveraged compromised websites to redirect users to malicious infrastructure designed to trick victims into entering […]
