New hacker group uses LockBit ransomware variant to target Russian companies

/in

In its latest campaign this spring, DarkGaboon was observed deploying LockBit 3.0 ransomware against victims in Russia, Positive Technologies said in a report last week.

The Record from Recorded Future News – ​Read More

Mirai Botnets Exploiting Wazuh Security Platform Vulnerability 

/in

CVE-2025-24016, a critical remote code execution vulnerability affecting Wazuh servers, has been exploited by Mirai botnets.

The post Mirai Botnets Exploiting Wazuh Security Platform Vulnerability  appeared first on SecurityWeek.

SecurityWeek – ​Read More

Guardz Banks $56M Series B for All-in-One SMB Security

/in

The Israeli company said the Series B raise was led by ClearSky and included equity stakes for new backer Phoenix Financial.

The post Guardz Banks $56M Series B for All-in-One SMB Security appeared first on SecurityWeek.

SecurityWeek – ​Read More

Malicious NPM Packages Disguised as Express Utilities Allow Attackers to Wipe Systems

/in

Two malicious NPM packages contain code that would delete production systems when triggered with the right credentials.

The post Malicious NPM Packages Disguised as Express Utilities Allow Attackers to Wipe Systems appeared first on SecurityWeek.

SecurityWeek – ​Read More

React Native Aria Packages Backdoored in Supply Chain Attack

/in

A threat actor published backdoored versions of 17 NPM packages from GlueStack in a fresh supply chain attack.

The post React Native Aria Packages Backdoored in Supply Chain Attack appeared first on SecurityWeek.

SecurityWeek – ​Read More

Google fixes bug that could reveal users’ private phone numbers

/in

The bug allowed a researcher to uncover recovery phone numbers of nearly any Google account.

Security News | TechCrunch – ​Read More

Apple, Google, and Microsoft offer free password managers – but should you use them?

/in

The three dominant computing platforms have each tried to build features that help you manage passwords without paying for third-party software. Are any of them worth your time and effort?

Latest stories for ZDNET in Security – ​Read More

Kazakhstan detains over 140 for allegedly selling citizens’ data via Telegram channels

/in

Authorities said they busted a ring responsible for illegally extracting citizens’ data from Kazakhstan’s government networks and distributing it through Telegram and other ways.

The Record from Recorded Future News – ​Read More

iMessage Zero-Click Attacks Suspected in Targeting of High-Value EU, US Individuals

/in

iVerify links iPhone crashes to sophisticated zero-click attacks via iMessage targeting individuals involved in politics in the EU and US.

The post iMessage Zero-Click Attacks Suspected in Targeting of High-Value EU, US Individuals appeared first on SecurityWeek.

SecurityWeek – ​Read More

NHS calls for 1 million blood donors as UK stocks remain low following cyberattack

/in

A cyberattack on London hospitals last year led to the depletion of stocks of crucial O-type blood, and the U.K.’s National Health Service is calling for a nationwide effort to shore up supplies.

The Record from Recorded Future News – ​Read More