Cybersecurity Articles

435/68 Friday, October 31, 2025 Mobile security firm Zimperium has uncovered a fast-spreading cyber threat targeting Android users who use the Tap-to-Pay payment feature. Since April 2024, the company’s researchers have been tracking more than 760 malicious apps designed to exploit Near Field Communication (NFC) and Host Card Emulation (HCE) capabilities built into Android devices. […]

434/68 Thursday, October 30, 2025 Researchers at ThreatFabric have revealed details of an Android banking trojan named Herodotus, used in campaigns targeting users in Italy and Brazil. The malware was marketed on underground forums from September 7, 2025, under a Malware-as-a-Service (MaaS) model and supports Android versions 9–16. Its developers borrowed techniques from earlier trojans […]

433/68 Thursday, October 30, 2025 Researchers at Trellix revealed that the SideWinder threat group developed a new infection technique that uses PDF files and a ClickOnce-based infection chain instead of the group’s prior Word-document methods. The campaign, active between March and September 2025, targeted European embassies in India as well as organizations in Sri Lanka, […]

432/68 Thursday, October 30, 2025 A new report from cybersecurity company Netscout has revealed the discovery of “Aisuru”, a next-generation botnet evolved from the Mirai malware family. Aisuru was behind several massive Distributed Denial of Service (DDoS) attacks in October 2025, reaching an unprecedented 20 terabits per second (Tbps) and more than 4 trillion packets […]

431/68 Wednesday, October 29, 2025 Palo Alto Networks has issued a warning about a large-scale SMS phishing (smishing) campaign linked to Chinese-speaking threat actors. The operation, which began in April 2024 and continues to this day, has leveraged more than 194,000 fraudulent domains impersonating various organizations and services. These include toll payment systems, parcel delivery […]

430/68 Wednesday, October 29, 2025 Researchers from iVerify have uncovered a new Android malware named HyperRat, a Remote Access Trojan (RAT) being promoted on cybercrime forums under a Malware-as-a-Service (MaaS) model. By simply subscribing and paying for access, attackers receive a custom-built APK along with credentials to a web control panel, enabling them to immediately […]

429/68 Wednesday, October 29, 2025 A recent report from Coveware, a ransomware response specialist, reveals a key statistic: the ransom-payment rate among victimised organisations has fallen to a record low. In the third quarter of 2025 only 23% of attacked companies paid a ransom. This continues a six-year downward trend (compared with 28% in Q1 […]

428/68 Tuesday, October 28, 2025 Security researchers have discovered that threat actors repurposed the open-source penetration-testing tool RedTiger, modifying it into an info-stealer malware. Attackers compile the tool into binaries and give them game- or Discord-related names to trick users into downloading them. When executed, the malware scans for Discord and web browser databases to […]

427/68 Tuesday, October 28, 2025 The Safepay ransomware group has claimed responsibility for a cyberattack that breached the systems of Xortec GmbH, a German provider of CCTV and security solutions. The group listed the company on its Data Leak Site, setting October 27, 2025, as the ransom payment deadline. Xortec, headquartered in Frankfurt with multiple […]

426/68 Tuesday, October 28, 2025 A large-scale attack campaign is targeting WordPress websites running outdated versions of the GutenKit and Hunk Companion plugins. Security company Wordfence reported blocking as many as 8.7 million attack attempts within just two days (October 8–9). The attacks exploit critical vulnerabilities (CVSS 9.8) that allow attackers to install arbitrary plugins […]