Hackers Use GitHub Repositories to Host Amadey Malware and Data Stealers, Bypassing Filters The Hacker [email protected] (The Hacker News)
July 17, 2025

Threat actors are leveraging public GitHub repositories to host malicious payloads and distribute them via Amadey as part of a campaign observed in April 2025. "The MaaS [malware-as-a-service] operators used fake …


Hackers Exploit Apache HTTP Server Flaw to Deploy Linuxsys Cryptocurrency Miner The Hacker [email protected] (The Hacker News)
July 17, 2025

Cybersecurity researchers have discovered a new campaign that exploits a known security flaw impacting Apache HTTP Server to deliver a cryptocurrency miner called Linuxsys. The vulnerability in question is CVE-2021-41773 (CVSS …


Why Cybersecurity Still Matters for America’s Schools darkreadingChester Moyer
July 17, 2025

Cyberattacks on educational institutions are growing. But with budget constraints and funding shortfalls, leadership teams are questioning whether — and how — they can keep their institutions safe. Cyberattacks on educational …


China-Backed Salt Typhoon Hacks US National Guard for Nearly a Year darkreadingAlexander Culafi
July 17, 2025

Between March and December of last year, infamous Chinese state-sponsored APT Salt Typhoon gained access to sensitive US National Guard data. Between March and December of last year, infamous Chinese state-sponsored …


CISA Releases Three Industrial Control Systems Advisories AlertsCISA
July 17, 2025

CISA released three Industrial Control Systems (ICS) advisories on July 17, 2025. These advisories provide timely information about current security issues, vulnerabilities, and exploits surrounding ICS. ICSA-25-198-01 Leviton AcquiSuite and Energy …


Europol Disrupts NoName057(16) Hacktivist Group Linked to DDoS Attacks Against Ukraine The Hacker [email protected] (The Hacker News)
July 17, 2025

An international operation coordinated by Europol has disrupted the infrastructure of a pro-Russian hacktivist group known as NoName057(16) that has been linked to a string of distributed denial-of-service (DDoS) attacks …


CTEM vs ASM vs Vulnerability Management: What Security Leaders Need to Know in 2025 The Hacker [email protected] (The Hacker News)
July 17, 2025

The modern-day threat landscape requires enterprise security teams to think and act beyond traditional cybersecurity measures that are purely passive and reactive, and in most cases, ineffective against emerging threats …


Chinese Hackers Target Taiwan’s Semiconductor Sector with Cobalt Strike, Custom Backdoors The Hacker [email protected] (The Hacker News)
July 17, 2025

The Taiwanese semiconductor industry has become the target of spear-phishing campaigns undertaken by three Chinese state-sponsored threat actors. "Targets of these campaigns ranged from organizations involved in the manufacturing, design, and …


Hiding Payloads in Linux Extended File Attributes, (Thu, Jul 17th) SANS Internet Storm Center, InfoCON: green
July 16, 2025

This week, it&#;x26;#;39;s SANSFIRE[1]! I&#;x26;#;39;m attending the FOR577[2] training ("Linux Incident Response &#;x26; Threat Hunting"). On day 2, we covered the different filesystems and how data is organized on disk. …


Cisco Warns of Critical ISE Flaw Allowing Unauthenticated Attackers to Execute Root Code The Hacker [email protected] (The Hacker News)
July 16, 2025

Cisco has disclosed a new maximum-severity security vulnerability impacting Identity Services Engine (ISE) and Cisco ISE Passive Identity Connector (ISE-PIC) that could permit an attacker to execute arbitrary code on …