Freelance Software Developers in North Korean Malware Crosshairs

/in

ESET says hundreds of freelance software developers have fallen victim to North Korean hackers posing as recruiters.

The post Freelance Software Developers in North Korean Malware Crosshairs appeared first on SecurityWeek.

SecurityWeek – ​Read More

Cisco Details ‘Salt Typhoon’ Network Hopping, Credential Theft Tactics

/in

Cisco Talos observed Chinese hackers pivoting from a compromised device operated by one telecom to target a device in another telecom.

The post Cisco Details ‘Salt Typhoon’ Network Hopping, Credential Theft Tactics appeared first on SecurityWeek.

SecurityWeek – ​Read More

Ukrainian hackers claim breach of Russian loan company linked to Putin’s ex-wife

/in

A pro-Ukraine hacking group claimed that it was behind an attack on CarMoney, a Russian microfinance company with reported connections to Vladimir Putin’s ex-wife.

The Record from Recorded Future News – ​Read More

4 Low-Cost Ways to Defend Your Organization Against Deepfakes

/in

Every organization should be exploring a layered approach in which artificial and human intelligences come together to form a rich, dynamic, and multifaceted deepfake defense strategy tailored to its needs.

darkreading – ​Read More

The US Is Considering a TP-Link Router Ban—Should You Worry?

/in

Several government departments are investigating TP-Link routers over Chinese cyberattack fears, but the company denies links.

Security Latest – ​Read More

Vulnerabilities in MongoDB Library Allow RCE on Node.js Servers

/in

OPSWAT details two critical vulnerabilities in the Mongoose ODM library for MongoDB leading to remote code execution on the Node.js server.

The post Vulnerabilities in MongoDB Library Allow RCE on Node.js Servers appeared first on SecurityWeek.

SecurityWeek – ​Read More

In Other News: Black Basta Chats Leaked, New SEC Cyber Unit, DOGE Site Hacked

/in

Noteworthy stories that might have slipped under the radar: Black Basta ransomware chat logs leaked, SEC launches new cyber unit, DOGE website hacked.

The post In Other News: Black Basta Chats Leaked, New SEC Cyber Unit, DOGE Site Hacked appeared first on SecurityWeek.

SecurityWeek – ​Read More

How China Pinned University Cyberattacks on NSA Hackers

/in

A researcher dives into Chinese reports attributing cyberattacks on Northwestern Polytechnical University to the NSA’s TAO division.

The post How China Pinned University Cyberattacks on NSA Hackers appeared first on SecurityWeek.

SecurityWeek – ​Read More

Black Basta is latest ransomware group to be hit by leak of chat logs

/in

Cybersecurity researchers are analyzing about 200,000 messages from inside the high-profile Black Basta ransomware operation that were leaked recently.

The Record from Recorded Future News – ​Read More

CISA Warns of Attacks Exploiting Craft CMS Vulnerability

/in

CISA has added a Craft CMS flaw tracked as CVE-2025-23209 to its Known Exploited Vulnerabilities (KEV) catalog.

The post CISA Warns of Attacks Exploiting Craft CMS Vulnerability appeared first on SecurityWeek.

SecurityWeek – ​Read More