FBI says Iranian hackers are using Telegram to steal data in malware attacks

Hackers working for Iran’s government are using Telegram in hacking operations that use malware to target dissidents, ...

Stryker Hackers Allegedly Wiped Devices Using Microsoft Intune

The Handala group claimed responsibility for the attack.
CPO Magazine

Infostealer Using New “DarkSword” iOS Exploit Chain Deployed by Russian Threat Actors

DarkSword packs both a complete iOS exploit chain and infostealer into one package. The chain initiates when Safari opens a ...
Microsoft

Case study: How predictive shielding in Defender stopped GPO-based ransomware before it started

Microsoft Defender stopped a human-operated ransomware attack that abused Group Policy Objects (GPOs) to disable defenses and ...
The Hacker News

Microsoft Warns IRS Phishing Hits 29,000 Users, Deploys RMM Malware

Microsoft warns tax-season phishing hit 29,000 users via IRS lures, enabling credential theft and RMM-based access.

Trivy supply-chain attack spreads to Docker, GitHub repos

The TeamPCP hackers behind the Trivy supply-chain attack continued to target Aqua Security, pushing malicious Docker images ...

New ‘DarkSword’ Spyware Could Be Capable of Hacking Millions of iPhones, Researchers Find. Here’s What You Should Know

Among the websites researchers identified as being used in DarkSword attacks was one with a gov.ua address, according to ...

TeamPCP deploys Iran-targeted wiper in Kubernetes attacks

The TeamPCP hacking group is targeting Kubernetes clusters with a malicious script that wipes all machines when it detects systems configured for Iran.

McAfee uncovers malware campaign using AI-generated code to target game mods and apps

A huge amount of malware is being distributed, and a lot of it seems to be 'vibe coded' ...
Dark Reading

Trivy Supply Chain Attack Targets CI/CD Secrets

A threat actor used the open source security tool to breach CI/CD workflows and steal cloud credentials, SSH keys, and other ...
Dark Reading

Attackers Hide Infostealer in Copyright Infringement Notices

A phishing campaign targeting healthcare, government, hospitality, and education sectors uses several evasion techniques to ...
TechJuice

GlassWorm Malware Silently Infects Hundreds of Python Projects

GlassWorm attack uses stolen GitHub tokens to inject malware into Python repositories, exposing developers to supply chain ...