In The News

‘DripDropper’ Hackers Patch Their Own Exploit darkreadingJai Vijayan, Contributing Writer
August 19, 2025

An attacker is breaking into Linux systems via a widely abused 2-year-old vulnerability in Apache ActiveMQ, installing malware and then patching the flaw. An attacker is breaking into Linux systems via …

Read More
No Comment

In The News


Public Exploit for Chained SAP Flaws Exposes Unpatched Systems to Remote Code Execution The Hacker [email protected] (The Hacker News)
August 19, 2025

A new exploit combining two critical, now-patched security flaws in SAP NetWeaver has emerged in the wild, putting organizations at risk of system compromise and data theft. The exploit in question …

Read More
No Comment

CISA Releases Four Industrial Control Systems Advisories AlertsCISA
August 19, 2025

CISA released four Industrial Control Systems (ICS) advisories on August 19, 2025. These advisories provide timely information about current security issues, vulnerabilities, and exploits surrounding ICS. ICSA-25-231-01 Siemens Desigo CC Product …

Read More
No Comment

Secure AI Use Without the Blind Spots darkreadingJoan Goodchild
August 19, 2025

Why every company needs a clear, enforceable AI policy — now. Why every company needs a clear, enforceable AI policy — now.  ​Read More

Read More
No Comment

U.K. Government Drops Apple Encryption Backdoor Order After U.S. Civil Liberties Pushback The Hacker [email protected] (The Hacker News)
August 19, 2025

The U.K. government has apparently abandoned its plans to force Apple to weaken encryption protections and include a backdoor that would have enabled access to the protected data of U.S. …

Read More
No Comment

Why Your Security Culture is Critical to Mitigating Cyber Risk The Hacker [email protected] (The Hacker News)
August 19, 2025

After two decades of developing increasingly mature security architectures, organizations are running up against a hard truth: tools and technologies alone are not enough to mitigate cyber risk. As tech …

Read More
No Comment

PyPI Blocks 1,800 Expired-Domain Emails to Prevent Account Takeovers and Supply Chain Attacks The Hacker [email protected] (The Hacker News)
August 18, 2025

The maintainers of the Python Package Index (PyPI) repository have announced that the package manager now checks for expired domains to prevent supply chain attacks. "These changes improve PyPI's overall account …

Read More
No Comment

ISC Stormcast For Tuesday, August 19th, 2025 https://isc.sans.edu/podcastdetail/9576, (Tue, Aug 19th) SANS Internet Storm Center, InfoCON: green
August 18, 2025

(c) SANS Internet Storm Center. https://isc.sans.edu Creative Commons Attribution-Noncommercial 3.0 United States License. (c) SANS Internet Storm Center. https://isc.sans.edu Creative Commons Attribution-Noncommercial 3.0 United States License.  ​Read More

Read More
No Comment

Noodlophile Stealer Hides Behind Bogus Copyright Complaints darkreadingAlexander Culafi
August 18, 2025

Noodlophile is targeting enterprises in spear-phishing attacks using copyright claims as phishing lures. Noodlophile is targeting enterprises in spear-phishing attacks using copyright claims as phishing lures.  ​Read More

Read More
No Comment

Noodlophile Malware Campaign Expands Global Reach with Copyright Phishing Lures The Hacker [email protected] (The Hacker News)
August 18, 2025

The threat actors behind the Noodlophile malware are leveraging spear-phishing emails and updated delivery mechanisms to deploy the information stealer in attacks aimed at enterprises located in the U.S., Europe, …

Read More
No Comment