Telnyx Targeted in Growing TeamPCP Supply Chain Attack

/in

Two malicious versions of the popular SDK were uploaded to the PyPI registry, targeting Windows, macOS, and Linux.

The post Telnyx Targeted in Growing TeamPCP Supply Chain Attack appeared first on SecurityWeek.

SecurityWeek – ​Read More

Hacked Hospitals, Hidden Spyware: Iran Conflict Shows How Digital Fight Is Ingrained in Warfare

/in

Iran-linked hacking groups are turning to high-volume, low-impact cyberattacks, and AI is providing a boost.

The post Hacked Hospitals, Hidden Spyware: Iran Conflict Shows How Digital Fight Is Ingrained in Warfare appeared first on SecurityWeek.

SecurityWeek – ​Read More

Exploitation of Fresh Citrix NetScaler Vulnerability Begins

/in

The critical-severity flaw leaks application memory and can be exploited to obtain authenticated administrative session IDs.

The post Exploitation of Fresh Citrix NetScaler Vulnerability Begins appeared first on SecurityWeek.

SecurityWeek – ​Read More

Russian CTRL Toolkit Delivered via Malicious LNK Files Hijacks RDP via FRP Tunnels

/in

Cybersecurity researchers have discovered a remote access toolkit of Russian-origin that’s distributed via malicious Windows shortcut (LNK) files that are disguised as private key folders.
The CTRL toolkit, according to Censys, is custom-built using .NET and includes various executables” to facilitate credential phishing, keylogging, Remote Desktop Protocol (RDP) hijacking, and reverse tunneling

The Hacker News – ​Read More

3 red flags that job posting is a scam – and how to verify safely

/in

In a tough job market, having a recruiter offer you a job might seem like a dream – but make sure it’s not a scam.

Latest news – ​Read More

Three China-Linked Clusters Target Southeast Asian Government in 2025 Cyber Campaign

/in

Three threat activity clusters aligned with China have targeted a government organization in Southeast Asia as part of what has been described as a “complex and well-resourced operation.”
The campaigns have led to the deployment of various malware families, including HIUPAN (aka USBFect, MISTCLOAK, or U2DiskWatch), PUBLOAD, EggStremeFuel (aka RawCookie), EggStremeLoader (aka Gorem RAT), MASOL

The Hacker News – ​Read More

F5 BIG-IP DoS Flaw Upgraded to Critical RCE, Now Exploited in the Wild

/in

Initially disclosed as a high-severity denial-of-service (DoS), the bug was reclassified as a critical RCE issue.

The post F5 BIG-IP DoS Flaw Upgraded to Critical RCE, Now Exploited in the Wild appeared first on SecurityWeek.

SecurityWeek – ​Read More

FBI Confirms Kash Patel Email Hack as US Offers $10M Reward for Hackers

/in

The agency said Iranian hackers targeted the director’s personal email account and noted that the compromised information is old.

The post FBI Confirms Kash Patel Email Hack as US Offers $10M Reward for Hackers appeared first on SecurityWeek.

SecurityWeek – ​Read More

If Microsoft really wants to fix Windows 11, it should do these four things ASAP

/in

Opinion: Microsoft says it’s listening to feedback and getting back to fundamentals with Windows 11. I have a few suggestions for how the company can prove it’s serious.

Latest news – ​Read More

Master your navigation: 41 hidden Google Maps settings you should know

/in

Google Maps can help plan your entire trip for you and beyond if you’re hip to all these time-saving shortcuts.

Latest news – ​Read More