Attackers Sell Turnkey Remote Access Trojan ‘Atroposia’ – Dark Reading
Atroposia, a new RAT malware, offers low-level cybercriminal affiliates the ability to utilize sophisticated stealth and persistence capabilities. – Read More
Dark Reading
Qilin Targets Windows Hosts With Linux-Based Ransomware – Dark Reading
The attack by the one of the most impactful RaaS groups active today demonstrates an evasion strategy that can stump defenses not equipped to detect cross-platform threats. – Read More
Microsoft Issues Emergency Patch for Critical Windows Server Bug – Dark Reading
Microsoft initially fixed CVE-2025-59287 in the WSUS update mechanism in the October 2025 Patch Tuesday release, but the company has now issued a second, out-of-band update for the flaw, which…
How CISA Layoffs Weaken Civilian Cyber Defense – Dark Reading
Cyber teams need to get to work backfilling diminishing federal resources, according to Alexander Garcia-Tobar, who shares clear steps on a path forward for protecting enterprises with less CISA help.…
Shutdown Sparks 85% Increase in US Government Cyberattacks – Dark Reading
Attackers are pouncing on financially strapped US government agencies and furloughed employees. And the effects of this period might be felt for a long time hereafter. – Read More
US Crypto Bust Offers Hope in Battle Against Cybercrime Syndicates – Dark Reading
A $14 billion seizure by US investigators presents a warning for cybercriminals’ reliance on bitcoin but is still a positive development for the cryptocurrency industry. – Read More
Fear the ‘SessionReaper’: Adobe Commerce Flaw Under Attack – Dark Reading
CVE-2025-54236 is a critical flaw in Adobe Commerce (formerly Magento) that allows attackers to remotely take over sessions on the e-commerce platform. – Read More
Tired of Unpaid Toll Texts? Blame the ‘Smishing Triad’ – Dark Reading
Chinese smishers — the bane of every American with a phone — have been shifting to lower-frequency, possibly higher-impact government impersonation attacks. – Read More
Mideast, African Hackers Target Gov’ts, Banks, Small Retailers – Dark Reading
In the hotly political Middle East, you’d expect hacktivism and disruption of services. But retail attacks? – Read More
Lazarus Group Hunts European Drone Manufacturing Data – Dark Reading
The campaign is the latest effort by the North Korean threat actor to collect data of strategic interest to Pyongyang. – Read More
Pwn2Own Underscores Secure Development Concerns – Dark Reading
Pwn2Own Ireland kicked off on Oct. 21 and what researchers found continued to highlight how secure development practices are lacking across the industry. – Read More
The Best End User Security Awareness Programs Aren’t About Awareness Anymore – Dark Reading
The goal is to apply psychology principles to security training to change behaviors and security outcomes. – Read More
It Takes Only 250 Documents to Poison Any AI Model – Dark Reading
Researchers find it takes far less to manipulate a large language model’s (LLM) behavior than anyone previously assumed. – Read More
Too Many Secrets: Attackers Pounce on Sensitive Data Sprawl – Dark Reading
Hardcoded credentials, access tokens, and API keys are ending up in the darnedest places, prompting a call for organizations to stop over-privileging secrets. – Read More
WhatsApp Secures Ban on NSO Group After 6-Year Legal Battle – Dark Reading
NSO Group must pay $4 million in damages and is permanently prohibited from reverse-engineering WhatsApp or creating new accounts after targeting users with spyware. – Read More