All Recent Posts

Help Net Security

Week in review: Salesloft Drift breach investigation results, malicious GitHub Desktop installers

September 14, 2025 add comment
Here’s an overview of some of last week’s most interesting news, articles, interviews and videos: Salesloft Drift data breach: Investigation reveals how attackers got in The attack that resulted... Read more »
Internet Security

FBI warns of Salesforce attacks by UNC6040 and UNC6395 groups

September 13, 2025 add comment
The U.S. FBI issued a flash alert to warn of malicious activities carried out by two cybercriminal groups tracked as UNC6040 and UNC6395. The FBI issued a FLASH alert... Read more »
Internet Security

HybridPetya ransomware bypasses UEFI Secure Boot echoing Petya/NotPetya

September 13, 2025 add comment
HybridPetya ransomware bypasses UEFI Secure Boot to infect EFI partitions, echoing the infamous Petya/NotPetya attacks of 2016–2017. ESET researchers discovered a new ransomware called HybridPetya on the platform VirusTotal.... Read more »
Help Net Security

HybridPetya: (Proof-of-concept?) ransomware can bypass UEFI Secure Boot

September 12, 2025 add comment
ESET researchers have discovered HybridPetya, a bootkit-and-ransomware combo that’s a copycat of the infamous Petya/NotPetya malware, augmented with the capability of compromising UEFI-based systems and weaponizing CVE-2024-7344 to bypass... Read more »
Internet Security

Cisco fixes high-severity IOS XR flaws enabling image bypass and DoS

September 12, 2025 add comment
Cisco addressed multiple high-severity IOS XR vulnerabilities that can allow ISO image verification bypass and trigger DoS conditions. Cisco addressed multiple vulnerabilities in IOS XR software as part of... Read more »
Help Net Security

CISA looks to partners to shore up the future of the CVE Program

September 12, 2025 add comment
The US Cybersecurity and Infrastructure Security Agency (CISA) has affirmed its continuing support for the Common Vulnerabilities and Exposures (CVE) program. “If we want to outpace and outmaneuver our... Read more »
Internet Security

Samsung fixed actively exploited zero-day

September 12, 2025 add comment
Samsung fixed the remote code execution flaw CVE-2025-21043 that was exploited in zero-day attacks against Android devices. Samsung addressed the remote code execution vulnerability, tracked as CVE-2025-21043, that was... Read more »
Internet Security

UK train operator LNER (London North Eastern Railway) discloses a data breach

September 12, 2025 add comment
LNER warns of a data breach via a third-party supplier, exposing customer contact details and other personal information. UK train operator LNER (London North Eastern Railway) reported a data... Read more »
Internet Security

Apple issues spyware warnings as CERT-FR confirms attacks

September 12, 2025 add comment
Apple warned users of a spyware campaign; France’s cyber agency confirmed targeted iCloud-linked devices may be compromised. Apple warned customers last week about new spyware attacks, the French national... Read more »
IT Security

What is a stealth virus and how does it work?

September 12, 2025 add comment
A stealth virus is a computer virus that uses various mechanisms to avoid detection by antivirus software. Read more »
Subscribe to our Newsletter