NCSC statement: Incident impacting Collins Aerospace – NCSC News
Statement from the NCSC regarding the cyber incident affecting Collins Aerospace. – Read More
Cyber
LastPass Warns of Fake Repositories Infecting macOS with Atomic Infostealer – The Hacker News
LastPass is warning of an ongoing, widespread information stealer campaign targeting Apple macOS users through fake GitHub repositories that distribute malware-laced programs masquerading as legitimate tools. “In the case of…
Researchers Uncover GPT-4-Powered MalTerminal Malware Creating Ransomware, Reverse Shell – The Hacker News
Cybersecurity researchers have discovered what they say is the earliest example known to date of a malware with that bakes in Large Language Model (LLM) capabilities. The malware has been…
ShadowLeak Zero-Click Flaw Leaks Gmail Data via OpenAI ChatGPT Deep Research Agent – The Hacker News
Cybersecurity researchers have disclosed a zero-click flaw in OpenAI ChatGPT’s Deep Research agent that could allow an attacker to leak sensitive Gmail inbox data with a single crafted email without…
Fortra patches critical GoAnywhere MFT flaw akin to past ransomware exploits – CSO Online
Users of Fortra’s GoAnywhere MFT solution are urged to patch a critical vulnerability that could allow attackers to inject and execute arbitrary commands. The flaw, tracked as CVE-2025-10035, is rated…
Patch Now: Max-Severity Fortra GoAnywhere Bug Allows Command Injection – Dark Reading
Exploitation of the flaw, tracked as CVE-2025-10035, is highly dependent on whether systems are exposed to the Internet, according to Fortra. – Read More
Capture the Flag Competition Leads to Cybersecurity Career – Dark Reading
As Splunk celebrates the 10th anniversary of Boss of the SOC competition, it continues to be a valuable platform for security professionals to test their skills, learn new techniques, and…
Zero Trust: Strengths and Limitations in the AI Attack Era – Dark Reading
Zero Trust could help organizations fight back against attackers who use artificial intelligence, but new threats will require the architecture to evolve. – Read More
‘ShadowLeak’ ChatGPT Attack Allows Hackers to Invisibly Steal Emails – Dark Reading
The loophole allows cyberattackers to exfiltrate company data via OpenAI’s infrastructure, leaving no trace at all on enterprise systems. – Read More
UNC1549 Hacks 34 Devices in 11 Telecom Firms via LinkedIn Job Lures and MINIBIKE Malware – The Hacker News
An Iran-nexus cyber espionage group known as UNC1549 has been attributed to a new campaign targeting European telecommunications companies, successfully infiltrating 34 devices across 11 organizations as part of a…
SystemBC Powers REM Proxy With 1,500 Daily VPS Victims Across 80 C2 Servers – The Hacker News
A proxy network known as REM Proxy is powered by malware known as SystemBC, offering about 80% of the botnet to its users, according to new findings from the Black…
Plastic People, Plastic Cards: Synthetic Identities Plague Finance & Lending Sector – Dark Reading
Following a pandemic-era respite, financial fraud linked to synthetic identities is rising again, with firms potentially facing $3.3 billion in damages from new accounts. – Read More
Fortra Releases Critical Patch for CVSS 10.0 GoAnywhere MFT Vulnerability – The Hacker News
Fortra has disclosed details of a critical security flaw in GoAnywhere Managed File Transfer (MFT) software that could result in the execution of arbitrary commands. The vulnerability, tracked as CVE-2025-10035,…
17,500 Phishing Domains Target 316 Brands Across 74 Countries in Global PhaaS Surge – The Hacker News
The phishing-as-a-service (PhaaS) offering known as Lighthouse and Lucid has been linked to more than 17,500 phishing domains targeting 316 brands from 74 countries. “Phishing-as-a-Service (PhaaS) deployments have risen significantly…
Transforming Cyber Frameworks to Take Control of Cyber-Risk – Dark Reading
Frameworks may seem daunting to implement — especially for government IT teams that may not have an abundance of resources and expertise. But beginning implementation is better than never starting.…