Russian Hackers Exploit CVE-2025-26633 via MSC EvilTwin to Deploy SilentPrism and DarkWisp

/in

The threat actors behind the zero-day exploitation of a recently-patched security vulnerability in Microsoft Windows have been found to deliver two new backdoors called SilentPrism and DarkWisp.
The activity has been attributed to a suspected Russian hacking group called Water Gamayun, which is also known as EncryptHub and LARVA-208.
“The threat actor deploys payloads primarily by means of

The Hacker News – ​Read More

API testing firm APIsec exposed customer data during security lapse

/in

The API testing firm took down a database exposed to the internet without a password.

Security News | TechCrunch – ​Read More

Zero to Hero – A “Measured” Approach to Building a World-Class Offensive Security Program

/in

A strong security program will sometimes require substantial organizational and cultural changes around security practices, and inevitably, a higher cost.

The post Zero to Hero – A “Measured” Approach to Building a World-Class Offensive Security Program appeared first on SecurityWeek.

SecurityWeek – ​Read More

Bridging the Gap Between the CISO & the Board of Directors

/in

Positioning security leaders as more than risk managers turns them into business enablers, trusted advisers, and, eventually, integral members of the C-suite.

darkreading – ​Read More

Threat Actors Deploy WordPress Malware in ‘mu-plugins’ Directory

/in

Sucuri has discovered multiple malware families deployed in the WordPress mu-plugins directory to evade routine security checks.

The post Threat Actors Deploy WordPress Malware in ‘mu-plugins’ Directory appeared first on SecurityWeek.

SecurityWeek – ​Read More

Qakbot Resurfaces in Fresh Wave of ClickFix Attacks

/in

Attackers post links to fake websites on LinkedIn to ask people to complete malicious CAPTCHA challenges that install malware.

darkreading – ​Read More

Hackers Exploit WordPress mu-Plugins to Inject Spam and Hijack Site Images

/in

Threat actors are using the “mu-plugins” directory in WordPress sites to conceal malicious code with the goal of maintaining persistent remote access and redirecting site visitors to bogus sites.
mu-plugins, short for must-use plugins, refers to plugins in a special directory (“wp-content/mu-plugins”) that are automatically executed by WordPress without the need to enable them explicitly via the

The Hacker News – ​Read More

Hacker Leaks Samsung Customer Data

/in

Hacker leaks 270,000 customer tickets allegedly stolen from Samsung Germany using long-compromised credentials.

The post Hacker Leaks Samsung Customer Data appeared first on SecurityWeek.

SecurityWeek – ​Read More

5 Impactful AWS Vulnerabilities You’re Responsible For

/in

If you’re using AWS, it’s easy to assume your cloud security is handled – but that’s a dangerous misconception. AWS secures its own infrastructure, but security within a cloud environment remains the customer’s responsibility.
Think of AWS security like protecting a building: AWS provides strong walls and a solid roof, but it’s up to the customer to handle the locks, install the alarm systems,

The Hacker News – ​Read More

Part of EU’s New €1.3 Billion Investment Going to Cybersecurity

/in

The European Commission plans on investing €1.3 billion ($1.4 billion) in cybersecurity, artificial intelligence and digital skills. 

The post Part of EU’s New €1.3 Billion Investment Going to Cybersecurity appeared first on SecurityWeek.

SecurityWeek – ​Read More