Tag: hacker

Breach Roundup: UPenn Hit by Email Breach

Nov 6, 2025 10:19 PM

Tags: backdoor, breach, email, hacker, ransomware, risk, scam, supply-chain, ukraine

Also, Australian Police Arrest 55 in New Round of Anom App Sting. This week: UPenn hit by email breach, Australian police arrested 55, ‘SesameOp’ backdoor hid C2 traffic, BEC scammers used AWS, hackers stole trucking cargo, Ukrainian national extradited to United States for role in Conti ransomware and a supply chain risk in advanced installer…
Report: Nevada State Hackers Evaded Detection for Months

Nov 6, 2025 9:19 PM

Tags: backup, breach, detection, hacker, infrastructure, ransomware, threat

Statewide Breach Hit 60 Agencies Before Ransomware Was Deployed. A threat actor infiltrated Nevada’s statewide systems undetected for months, ultimately disrupting at least 60 agencies by deleting backups and launching ransomware that forced a full rebuild of core infrastructure and triggered a multimillion-dollar emergency response. First seen on govinfosecurity.com Jump to article: www.govinfosecurity.com/report-nevada-state-hackers-evaded-detection-for-months-a-29948
>>Pay up or we share the tapes<<: Hackers target massage parlour clients in blackmail scheme

Nov 6, 2025 8:23 PM

Tags: data, hacker, hacking

South Korean police have uncovered a hacking operation that stole sensitive data from massage parlours and blackmailed their male clientele. First seen on bitdefender.com Jump to article: www.bitdefender.com/en-us/blog/hotforsecurity/pay-up-or-we-share-the-tapes-hackers-target-massage-parlour-clients-in-blackmail-scheme
New ChatGPT Vulnerabilities Let Hackers Steal Data, Hijack Memory

Nov 6, 2025 6:19 PM

Tags: chatgpt, data, hacker, injection, vulnerability

Seven vulnerabilities in ChatGPT (including GPT-5) allow attackers to use ‘0-click’ and ‘memory injection’ to bypass safety features and persistently steal private user data and chat history. Tenable Research exposes the flaws. First seen on hackread.com Jump to article: hackread.com/chatgpt-vulnerabilities-hackers-hijack-memory/
New ChatGPT Vulnerabilities Let Hackers Steal Data, Hijack Memory

Nov 6, 2025 6:19 PM

Tags: chatgpt, data, hacker, injection, vulnerability

Seven vulnerabilities in ChatGPT (including GPT-5) allow attackers to use ‘0-click’ and ‘memory injection’ to bypass safety features and persistently steal private user data and chat history. Tenable Research exposes the flaws. First seen on hackread.com Jump to article: hackread.com/chatgpt-vulnerabilities-hackers-hijack-memory/
Iranian Hackers Exploit RMM Tools to Target Academics and Foreign-Policy Experts

Nov 6, 2025 3:19 PM

Tags: credentials, cyber, exploit, group, hacker, iran, phishing, social-engineering, tactics, threat, tool

Proofpoint Threat Research has identified a previously unknown Iranian threat actor, dubbed UNK_SmudgedSerpent, that conducted sophisticated phishing campaigns against academics and foreign policy experts between June and August 2025. The group employed credential harvesting techniques, sophisticated social engineering, and remote management tools to infiltrate targets, revealing a complex web of overlapping tactics reminiscent of established…
Iranian Hackers Exploit RMM Tools to Target Academics and Foreign-Policy Experts

Nov 6, 2025 3:19 PM

Tags: credentials, cyber, exploit, group, hacker, iran, phishing, social-engineering, tactics, threat, tool

Proofpoint Threat Research has identified a previously unknown Iranian threat actor, dubbed UNK_SmudgedSerpent, that conducted sophisticated phishing campaigns against academics and foreign policy experts between June and August 2025. The group employed credential harvesting techniques, sophisticated social engineering, and remote management tools to infiltrate targets, revealing a complex web of overlapping tactics reminiscent of established…
Russia’s Sandworm hackers deploying wipers against Ukraine’s grain industry

Nov 6, 2025 2:19 PM

Tags: hacker, hacking, malware, russia, ukraine

The Russian state-backed hacking unit Sandworm has been targeting Ukraine’s grain industry with wiper malware amid Moscow’s ongoing efforts to undermine Kyiv’s wartime economy. First seen on therecord.media Jump to article: therecord.media/russia-sandworm-grain-wipers
Russia’s Sandworm hackers deploying wipers against Ukraine’s grain industry

Nov 6, 2025 2:19 PM

Tags: hacker, hacking, malware, russia, ukraine

The Russian state-backed hacking unit Sandworm has been targeting Ukraine’s grain industry with wiper malware amid Moscow’s ongoing efforts to undermine Kyiv’s wartime economy. First seen on therecord.media Jump to article: therecord.media/russia-sandworm-grain-wipers
Russia’s Sandworm hackers deploying wipers against Ukraine’s grain industry

Nov 6, 2025 2:19 PM

Tags: hacker, hacking, malware, russia, ukraine

The Russian state-backed hacking unit Sandworm has been targeting Ukraine’s grain industry with wiper malware amid Moscow’s ongoing efforts to undermine Kyiv’s wartime economy. First seen on therecord.media Jump to article: therecord.media/russia-sandworm-grain-wipers
ThreatsDay Bulletin: AI Tools in Malware, Botnets, GDI Flaws, Election Attacks & More

Nov 6, 2025 2:19 PM

Tags: ai, attack, botnet, crime, cybercrime, election, flaw, hacker, Internet, malware, organized, scam, service, tool

Cybercrime has stopped being a problem of just the internet — it’s becoming a problem of the real world. Online scams now fund organized crime, hackers rent violence like a service, and even trusted apps or social platforms are turning into attack vectors.The result is a global system where every digital weakness can be turned…
ThreatsDay Bulletin: AI Tools in Malware, Botnets, GDI Flaws, Election Attacks & More

Nov 6, 2025 2:19 PM

Tags: ai, attack, botnet, crime, cybercrime, election, flaw, hacker, Internet, malware, organized, scam, service, tool

Cybercrime has stopped being a problem of just the internet — it’s becoming a problem of the real world. Online scams now fund organized crime, hackers rent violence like a service, and even trusted apps or social platforms are turning into attack vectors.The result is a global system where every digital weakness can be turned…
Sandworm hackers use data wipers to disrupt Ukraine’s grain sector

Nov 6, 2025 11:19 AM

Tags: attack, country, data, government, group, hacker, malware, russia, ukraine

Russian state-backed hacker group Sandworm has deployed multiple data-wiping malware families in attacks targeting Ukraine’s education, government, and the grain sector, the country’s main revenue source. First seen on bleepingcomputer.com Jump to article: www.bleepingcomputer.com/news/security/sandworm-hackers-use-data-wipers-to-disrupt-ukraines-grain-sector/
Russia-linked hackers intensify attacks as global APT activity shifts

Nov 6, 2025 11:19 AM

Tags: apt, attack, cybercrime, espionage, group, hacker, hacking, russia

State-aligned hacking groups have spent the past six months ramping up espionage, sabotage, and cybercrime campaigns across multiple regions, according to ESET’s APT Activity … First seen on helpnetsecurity.com Jump to article: www.helpnetsecurity.com/2025/11/06/global-apt-activity-report-2025/
Sandworm hackers use data wipers to disrupt Ukraine’s grain sector

Nov 6, 2025 11:19 AM

Tags: attack, country, data, government, group, hacker, malware, russia, ukraine

Russian state-backed hacker group Sandworm has deployed multiple data-wiping malware families in attacks targeting Ukraine’s education, government, and the grain sector, the country’s main revenue source. First seen on bleepingcomputer.com Jump to article: www.bleepingcomputer.com/news/security/sandworm-hackers-use-data-wipers-to-disrupt-ukraines-grain-sector/
Russia-linked hackers intensify attacks as global APT activity shifts

Nov 6, 2025 11:19 AM

Tags: apt, attack, cybercrime, espionage, group, hacker, hacking, russia

State-aligned hacking groups have spent the past six months ramping up espionage, sabotage, and cybercrime campaigns across multiple regions, according to ESET’s APT Activity … First seen on helpnetsecurity.com Jump to article: www.helpnetsecurity.com/2025/11/06/global-apt-activity-report-2025/
Hackers Weaponize Windows Hyper-V to Hide Linux VM and Evade EDR Detection

Nov 6, 2025 9:19 AM

Tags: detection, edr, exploit, hacker, linux, threat, windows

The threat actor known as Curly COMrades has been observed exploiting virtualization technologies as a way to bypass security solutions and execute custom malware.According to a new report from Bitdefender, the adversary is said to have enabled the Hyper-V role on selected victim systems to deploy a minimalistic, Alpine Linux-based virtual machine.”This hidden environment, with…
SonicWall Confirms State-Sponsored Hackers Behind September Cloud Backup Breach

Nov 6, 2025 7:19 AM

Tags: access, api, backup, breach, cloud, firewall, hacker, malicious, threat, unauthorized

SonicWall has formally implicated state-sponsored threat actors as behind the September security breach that led to the unauthorized exposure of firewall configuration backup files.”The malicious activity carried out by a state-sponsored threat actor – was isolated to the unauthorized access of cloud backup files from a specific cloud environment using an API call,” the company…
Unpatched Windows Flaw a Boon for Nation-State Hackers

Nov 6, 2025 1:19 AM

Tags: china, exploit, flaw, hacker, korea, microsoft, north-korea, vulnerability, windows

Chinese Hackers Target European Diplomats with LNK File Flaw. Chinese nation-state hackers are exploiting a Windows vulnerability to hack European diplomatic outposts, say security researchers – but operating system giant Microsoft says the flaw doesn’t merit a patch. Hackers used a flaw already compromised by North Korea and Russia. First seen on govinfosecurity.com Jump to…
Hackers Steal Personal Data and 17K Slack Messages in Nikkei Data Breach

Nov 6, 2025 12:19 AM

Tags: breach, data, data-breach, hacker, virus

Nikkei confirms breach after a virus infected an employee PC, exposing 17,368 names and Slack chat histories. The media giant reported the incident voluntarily. First seen on hackread.com Jump to article: hackread.com/nikkei-data-breach-hackers-steal-data-slack-messages/
SonicWall blames state-sponsored hackers for September security breach

Nov 6, 2025 12:19 AM

Tags: access, backup, breach, credentials, cybersecurity, firewall, hacker, law

Cybersecurity firm SonicWall attributed the September security breach exposing firewall configuration files to state-sponsored hackers. In September, SonicWall urged customers to reset credentials after firewall backup files tied to MySonicWall accounts were exposed. The company announced it had blocked attackers’ access and was working with cybersecurity experts and law enforcement agencies to determine the scope…
Hyundai AutoEver America data breach exposes SSNs, drivers licenses

Nov 5, 2025 11:19 PM

Tags: access, breach, data, data-breach, hacker, usa

Hyundai AutoEver America is notifying individuals that hackers breached the company’s IT environment and gained access to personal information. First seen on bleepingcomputer.com Jump to article: www.bleepingcomputer.com/news/security/hyundai-autoever-america-data-breach-exposes-ssns-drivers-licenses/
Microsoft Teams Flaws Let Hackers Impersonate Executives

Nov 5, 2025 8:23 PM

Tags: flaw, hacker, microsoft

Researchers found Microsoft Teams bugs letting attackers spoof executives, alter messages, and erode trust in workplace communication. The post Microsoft Teams Flaws Let Hackers Impersonate Executives appeared first on TechRepublic. First seen on techrepublic.com Jump to article: www.techrepublic.com/article/news-microsoft-teams-social-engineering-flaw/
Japanese media giant Nikkei reports Slack breach exposing employee and partner records

Nov 5, 2025 7:20 PM

Tags: access, breach, data, hacker, unauthorized

Japanese media giant Nikkei said hackers gained unauthorized access to its internal Slack communication system, potentially exposing data linked to more than 17,000 people. First seen on therecord.media Jump to article: therecord.media/japan-nikkei-slack-breach
SonicWall says state-sponsored hackers behind September security breach

Nov 5, 2025 7:20 PM

Tags: backup, breach, data-breach, hacker

SonicWall’s investigation into the September security breach that exposed customers’ firewall configuration backup files concludes that state-sponsored hackers were behind the attack. First seen on bleepingcomputer.com Jump to article: www.bleepingcomputer.com/news/security/sonicwall-says-state-sponsored-hackers-behind-security-breach-in-september/
Inside Scattered LAPSUS$: 2025’s Most Notorious Hacker Alliance

Nov 5, 2025 6:19 PM

Tags: attack, cybercrime, group, hacker

Scattered LAPSUS$ Hunters unites major cybercrime groups to launch sophisticated, multi-stage attacks on global enterprises. First seen on esecurityplanet.com Jump to article: www.esecurityplanet.com/threats/news-scattered-lapsus-hacking-group/
Hackers targeting Cisco IOS XE devices with BadCandy implant

Nov 5, 2025 6:19 PM

Tags: cisco, exploit, hacker

Security researchers and Australian authorities warn that exploitation activity is ongoing. First seen on cybersecuritydive.com Jump to article: www.cybersecuritydive.com/news/hackers-cisco-ios-xe-devices-badcandy-implant/804753/
University of Pennsylvania confirms hacker stole data during cyberattack

Nov 5, 2025 5:19 PM

Tags: breach, cyberattack, data, data-breach, hacker

Penn experienced a data breach on Friday as hackers sent messages boasting of the hack to the university community. First seen on techcrunch.com Jump to article: techcrunch.com/2025/11/05/university-of-pennsylvania-confirms-hacker-stole-data-during-cyberattack/
Bugcrowd übernimmt Mayhem Security, um KI-gestützte Automatisierung mit menschlicher Kompetenz in Sicherheitstests zu integrieren

Nov 5, 2025 5:19 PM

Tags: ai, cybersecurity, hacker

Bugcrowd, ein führender Anbieter im Bereich Crowdsourced-Cybersecurity, gab die Übernahme von Mayhem Security bekannt, einem Pionier in der offensiven KI-Sicherheit, der von einigen der weltweit elitärsten Hacker gegründet wurde. Ziel ist es, die nächste Generation des – und KI-gestützten Sicherheitstestings voranzutreiben. Durch die Kombination des Knowhows seiner globalen Hacker-Community mit Mayhems hochmoderner KI-Plattform möchte Bugcrowd…
University of Pennsylvania confirms data stolen in cyberattack

Nov 5, 2025 5:19 PM

Tags: breach, cyberattack, data, hacker

The University of Pennsylvania has confirmed that a hacker breached numerous internal systems related to the university’s development and alumni activities and stole data in a cyberattack. First seen on bleepingcomputer.com Jump to article: www.bleepingcomputer.com/news/security/university-of-pennsylvania-confirms-data-stolen-in-cyberattack/