Vampire Bot Malware Sinks Fangs Into Job Hunters – Dark Reading
The campaign is the latest by BatShadow, one of a growing number of cybercrime groups operating out of Vietnam. – Read More
Dark Reading
Red Hat Hackers Team Up With Scattered Lapsus$ Hunters – Dark Reading
Crimson Collective, which recently breached the GitLab instance of Red Hat Consulting, has teamed up with the notorious cybercriminal collective. – Read More
3 Extortion Gangs Join Forces in Ransomware ‘Cartel’ – Dark Reading
LockBit, Qilin, and DragonForce also invited other attackers to join their collaboration to share attack information and resources. – Read More
Figma MCP Server Opens Orgs to Agentic AI Compromise – Dark Reading
Patch now: A bug (CVE-2025-53967) in the popular Web design tool’s option for talking to agentic AI can lead to remote code execution (RCE). – Read More
China-Nexus Actors Weaponize ‘Nezha’ Open Source Tool – Dark Reading
A threat actor is putting a spin on classic remote monitoring and management (RMM) attacks, using a Chinese open source tool instead. – Read More
Calling All Influencers: Spear-Phishers Dangle Tesla, Red Bull Jobs – Dark Reading
Wanna work for a hot brand? Cyberattackers continue to evolve lures for job seekers in an impersonation campaign aimed at stealing resumes from social media pros. – Read More
Cyberattack Leads to Beer Shortage as Asahi Recovers – Dark Reading
A ransomware last week left the Asahi brewery in Japan struggling to take orders and deliver its products domestically, as manufacturers become a favored target. – Read More
Attackers Season Spam With a Touch of ‘Salt’ – Dark Reading
Researchers report an increase in the use of hidden content in spam and malicious email to confuse filters and other security mechanisms. – Read More
Security Concerns Shadow Vibe Coding Adoption – Dark Reading
In a recent poll, readers shared how they’re using vibe coding in AppDev (if they are at all). While some found success, others found the risks too great. – Read…
Medusa Ransomware Actors Exploit Critical Fortra GoAnywhere Flaw – Dark Reading
Researchers say exploitation of CVE-2025-10035 requires a private key, and it’s unclear how Storm-1175 threat actors pulled this off. – Read More
Patch Now: ‘RediShell’ Threatens Cloud Via Redis RCE – Dark Reading
A 13-year-old flaw with a CVSS score of 10 in the popular data storage service allows for full host takeover, and more than 300k instances are currently exposed. – Read…
Cyberattackers Exploit Zimbra Zero-Day Via ICS – Dark Reading
A threat actor purporting to be from the Libyan Navy’s Office of Protocol targeted Brazil’s military earlier this year using the rare tactic. – Read More
Clop Ransomware Hits Oracle Customers Via Zero-Day Flaw – Dark Reading
The infamous Clop gang has targeted a wide range of Oracle E-Business Suite customers using a newly disclosed zero-day vulnerability. – Read More
Chinese Gov’t Fronts Trick the West to Obtain Cyber Tech – Dark Reading
Outwardly neutral Chinese institutions have been collaborating with Western orgs and researchers for the benefit of PRC state intelligence. – Read More
Self-Propagating Malware Hits WhatsApp Users in Brazil – Dark Reading
The enterprise-focused Water Saci campaign spreads Sorvepotel, which can steal credentials and monitor browser activity to defraud financial institutions in the region. – Read More