Backdoors in Python and NPM Packages Target Windows and Linux

/in

Checkmarx uncovers cross-ecosystem attack: fake Python and NPM packages plant backdoor on Windows and Linux, enabling data theft plus remote control.

Hackread – Latest Cybersecurity, Hacking News, Tech, AI & Crypto – ​Read More

Technical Details Published for Critical Cisco IOS XE Vulnerability

/in

The critical flaw, tracked as CVE-2025-20188 (CVSS score of 10/10), allows attackers to execute arbitrary code remotely.

The post Technical Details Published for Critical Cisco IOS XE Vulnerability appeared first on SecurityWeek.

SecurityWeek – ​Read More

US Government Is Investigating Messages Impersonating Trump’s Chief of Staff, Susie Wiles

/in

Elected officials, business executives and other prominent figures in recent weeks received messages from someone impersonating Susie Wiles.

The post US Government Is Investigating Messages Impersonating Trump’s Chief of Staff, Susie Wiles appeared first on SecurityWeek.

SecurityWeek – ​Read More

Counter Antivirus Service AVCheck Shut Down by Law Enforcement

/in

Counter antivirus services such as AVCheck allow cybercriminals to test whether their malware is detected by antivirus products.

The post Counter Antivirus Service AVCheck Shut Down by Law Enforcement appeared first on SecurityWeek.

SecurityWeek – ​Read More

In Other News: PoC for Fortinet Bug, AI Model Subverts Shutdown, RAT Source Code Leaked

/in

Noteworthy stories that might have slipped under the radar: simple PoC code released for Fortinet zero-day, OpenAI O3 disobeys shutdown orders, source code of SilverRAT emerges online.

The post In Other News: PoC for Fortinet Bug, AI Model Subverts Shutdown, RAT Source Code Leaked appeared first on SecurityWeek.

SecurityWeek – ​Read More

Fake Recruiter Emails Target CFOs Using Legit NetBird Tool Across 6 Global Regions

/in

Cybersecurity researchers have warned of a new spear-phishing campaign that uses a legitimate remote access tool called Netbird to target Chief Financial Officers (CFOs) and financial executives at banks, energy companies, insurers, and investment firms across Europe, Africa, Canada, the Middle East, and South Asia. 
“In what appears to be a multi-stage phishing operation, the attackers

The Hacker News – ​Read More

Flowable’s Smart Automation Tools Are Reshaping How Enterprises Operate in 2025

/in

As more businesses face pressure to do more with fewer resources, automation platforms like Flowable are becoming central…

Hackread – Latest Cybersecurity, Hacking News, Tech, AI & Crypto – ​Read More

When your LLM calls the cops: Claude 4’s whistle-blow and the new agentic AI risk stack

/in

Claude 4 agency danger

Claude 4’s “whistle-blow” surprise shows why agentic AI risk lives in prompts and tool access, not benchmarks. Learn the 6 controls every enterprise must adopt.Read More

Security News | VentureBeat – ​Read More

Interlock Ransomware Deploys New NodeSnake RAT in UK Attacks

/in

Quorum Cyber identifies two new NodeSnake RAT variants, strongly attributed to Interlock ransomware, impacting UK higher education and local government.

Hackread – Latest Cybersecurity, Hacking News, Tech, AI & Crypto – ​Read More

New Linux Flaws Allow Password Hash Theft via Core Dumps in Ubuntu, RHEL, Fedora

/in

Two information disclosure flaws have been identified in apport and systemd-coredump, the core dump handlers in Ubuntu, Red Hat Enterprise Linux, and Fedora, according to the Qualys Threat Research Unit (TRU).
Tracked as CVE-2025-5054 and CVE-2025-4598, both vulnerabilities are race condition bugs that could enable a local attacker to obtain access to access sensitive information. Tools like

The Hacker News – ​Read More