Cybersecurity Articles

543/68 Wednesday, December 24, 2025 Cybersecurity researchers have disclosed a new supply chain attack targeting software developers, involving malicious packages distributed through popular package repositories. One of the threats identified is a package named “lotusbail” on the npm repository, which has been downloaded more than 56,000 times since May 2025. While the package functions as […]

542/68 Tuesday, December 23, 2025 Cybersecurity researchers have observed renewed activity from a sophisticated advanced persistent threat (APT) group known as Infy, also referred to as “Prince of Persia.” The group has a long history of cyber-espionage operations, and its latest resurgence shows an expansion of targets across multiple regions worldwide. In this campaign, the […]

541/68 Tuesday, December 23, 2025 Waymo, Alphabet’s autonomous driving technology company, has announced a temporary suspension of its robotaxi service in San Francisco following a widespread power outage that left multiple self-driving vehicles stranded on city streets. A Waymo spokesperson said the company decided to halt operations as a safety precaution and is working closely […]

540/68 Tuesday, December 23, 2025 The UK government has acknowledged a data breach resulting from a cyberattack. Chris Bryant, Minister of State at the Department for Business, stated that officials moved quickly to close the security vulnerability as soon as it was detected and that an urgent investigation is underway. The compromised data is related […]

539/68 Monday, December 22, 2025 RansomHouse, a ransomware group operating under a Ransomware-as-a-Service (RaaS) model, has been observed upgrading its file-encryption tool from a single-stage process to a more complex multi-layer encryption scheme. The new approach uses two encryption keys-a 32-byte primary key and an 8-byte secondary key-significantly increasing encryption complexity, reducing the chances of […]

538/68 Monday, December 22, 2025 The U.S. Department of Justice (DoJ) has announced criminal charges against 54 individuals involved in a nationwide ATM jackpotting scheme that caused millions of dollars in losses. Investigators have linked the operation to the transnational criminal organization Tren de Aragua (TdA). The defendants face multiple charges, including fraud, money laundering, […]

537/68 Monday, December 22, 2025 A recent report from Chainalysis, a leading blockchain analytics firm, reveals alarming figures for 2025, stating that North Korean hackers have stolen at least USD 2 billion in cryptocurrency, marking a significant increase from 2024. A major contributor was the attack on the Bybit platform, which alone resulted in losses […]

536/68 Friday, December 19, 2025 SonicWall has issued a security advisory urging customers to immediately apply security patches for SMA1000 (Appliance Management Console) devices after Google Threat Intelligence reported active zero-day exploitation involving two vulnerabilities. The attack chain begins with a critical pre-authentication deserialization vulnerability, CVE-2025-23006, which allows remote compromise without authentication, followed by CVE-2025-40602, […]

535/68 Friday, December 19, 2025 Askul, a major Japanese e-commerce and logistics provider, has confirmed that it detected a ransomware attack on October 19, 2025, during which attackers gained access to the company’s infrastructure and exfiltrated sensitive data. The incident disrupted order processing, delivery services, and automated logistics systems, causing service outages before partial operations […]

534/68 Friday, December 19, 2025 Security researchers from QiAnXin XLab have identified a large-scale botnet named “Kimwolf”, which has compromised more than 1.8 million Android-based devices worldwide, including Android TV boxes, digital set-top boxes, and tablets. The infections are especially prevalent among low-cost consumer devices commonly used in households. What makes Kimwolf particularly alarming is […]