GlassWorm Returns, Slices Back into VS Code Extensions – Dark Reading
GlassWorm, a self-propagating VS Code malware first found in the Open VSX marketplace, continues to infect developer devices around the world. – Read More
2025
Hackers Exploiting Triofox Flaw to Install Remote Access Tools via Antivirus Feature – The Hacker News
Google’s Mandiant Threat Defense on Monday said it discovered n-day exploitation of a now-patched security flaw in Gladinet’s Triofox file-sharing and remote access platform. The critical vulnerability, tracked as CVE-2025-12480…
Konni Hackers Turn Google’s Find Hub into a Remote Data-Wiping Weapon – The Hacker News
The North Korea-affiliated threat actor known as Konni (aka Earth Imp, Opal Sleet, Osmium, TA406, and Vedalia) has been attributed to a new set of attacks targeting both Android and…
Exclusive: nQ Zebraworks enters strategic partnership with Minisoft to deliver invoice-to-cash capability to ARCS3 clients – Legal IT Insider
Invoice-to-cash automation provider nQ Zebraworks has entered a strategic partnership with Minisoft, developer of ARCS3, a leading legal collections and accounts receivable management platform that is used by just over…
Layered security: How SMBs can protect against sophisticated cyberthreats during the holiday season. – CSO Online
Small and medium-size businesses (SMBs) face a daunting cybersecurity landscape. With 29% of businesses with fewer than 25 employees and nearly one in five midsize SMBs (19%) having experienced ransomware…
Stadtverwaltung Ludwigshafen kämpft mit IT-Ausfall – CSO Online
Die Stadtverwaltung Ludwigshafen wurde vermutlich von Hackern angegriffen. Deemerwha studio In Ludwigshafen sind derzeit weder die Online-Services nutzbar, noch ist die Verwaltung per Telefon oder Mail zu erreichen. Und dies…
ClickFix Campaign Targets Hotels, Spurs Secondary Customer Attacks – Dark Reading
Attackers compromise hospitality providers with an infostealer and RAT malware and then use stolen data to launch a phishing attacks against customers via both email and WhatsApp. – Read More
Vibe-codierte Ransomware auf Microsoft Marketplace entdeckt – CSO Online
Forscher haben eine Visual- Studio- Code-Erweiterung mit Ransomware-Funktionen entdeckt. fadfebrian – shutterstock.com Der Sicherheitsspezialist Secure Annex stellte kürzlich fest, dass eine Schadsoftware namens „Ransomvibe” in Erweiterungen für den Quellcode-Editor Visual…
Clio completes $1bn acquisition of vLex + raises $500m Series G at $5bn valuation – Legal IT Insider
Clio today (10 November) announced it has completed its US$1bn acquisition of AI-powered legal intelligence provider vLex and raised a further $500m in funding, valuing the company at $5bn. Its…
⚡ Weekly Recap: Hyper-V Malware, Malicious AI Bots, RDP Exploits, WhatsApp Lockdown and More – The Hacker News
Cyber threats didn’t slow down last week—and attackers are getting smarter. We’re seeing malware hidden in virtual machines, side-channel leaks exposing AI chats, and spyware quietly targeting Android devices in…
European Commission moves to loosen GDPR for AI and cookie tracking – CSO Online
The European Commission is preparing sweeping revisions to the General Data Protection Regulation (GDPR) that could redefine how enterprises handle personal data — from cookie tracking to AI model training…
New Browser Security Report Reveals Emerging Threats for Enterprises – The Hacker News
According to the new Browser Security Report 2025, security leaders are discovering that most identity, SaaS, and AI-related risks converge in a single place, the user’s browser. Yet traditional controls…
Whisper Leak uses a side channel attack to eavesdrop on encrypted AI conversations – CSO Online
Researchers at Microsoft have revealed a new side channel attack named Whisper Leak that can reveal the topic of encrypted conversations between users and language models, even without access to…
Runtime bugs break container walls, enabling root on Docker hosts – CSO Online
Three newly disclosed high-severity bugs in the “runc” container runtime let attackers break out of containers despite standard hardening and isolation controls. According to Aleksa Sarai, a senior software engineer…
Kim Kardashian fails bar exam – Legal Cheek
‘Falling short isn’t failure — it’s fuel,’ says aspiring lawyer Kim Kardashian, the social media mogul and reality TV star, has revealed that she failed the notoriously difficult California bar…