New Konfety Malware Variant Evades Detection by Manipulating APKs and Dynamic Code The Hacker [email protected] (The Hacker News)
July 16, 2025

Cybersecurity researchers have discovered a new, sophisticated variant of a known Android malware referred to as Konfety that leverages the evil twin technique to enable ad fraud. The sneaky approach essentially …


Urgent: Google Releases Critical Chrome Update for CVE-2025-6558 Exploit Active in the Wild The Hacker [email protected] (The Hacker News)
July 16, 2025

Google on Tuesday rolled out fixes for six security issues in its Chrome web browser, including one that it said has been exploited in the wild. The high-severity vulnerability in question …


Deepfakes. Fake Recruiters. Cloned CFOs — Learn How to Stop AI-Driven Attacks in Real Time The Hacker [email protected] (The Hacker News)
July 16, 2025

Social engineering attacks have entered a new era—and they’re coming fast, smart, and deeply personalized. It’s no longer just suspicious emails in your spam folder. Today’s attackers use generative AI, stolen …


Google AI “Big Sleep” Stops Exploitation of Critical SQLite Vulnerability Before Hackers Act The Hacker [email protected] (The Hacker News)
July 16, 2025

Google on Tuesday revealed that its large language model (LLM)-assisted vulnerability discovery framework discovered a security flaw in the SQLite open-source database engine before it could have been exploited in …


ISC Stormcast For Wednesday, July 16th, 2025 https://isc.sans.edu/podcastdetail/9528, (Wed, Jul 16th) SANS Internet Storm Center, InfoCON: green
July 15, 2025

(c) SANS Internet Storm Center. https://isc.sans.edu Creative Commons Attribution-Noncommercial 3.0 United States License. (c) SANS Internet Storm Center. https://isc.sans.edu Creative Commons Attribution-Noncommercial 3.0 United States License.  ​Read More


Altered Telegram App Steals Chinese Users’ Android Data darkreadingRobert Lemos, Contributing Writer
July 15, 2025

Using more than 600 domains, attackers entice Chinese-speaking victims to download a vulnerable Telegram app that is nearly undetectable on older versions of Android. Using more than 600 domains, attackers entice …


Lessons Learned From McDonald’s Big AI Flub darkreadingAlexander Culafi
July 15, 2025

McDonald's hiring platform was using its original default credentials and inadvertently exposed information belonging to approximately 64 million job applicants. McDonald's hiring platform was using its original default credentials and inadvertently …


AI Is Reshaping How Attorneys Practice Law darkreadingArielle Waldman
July 15, 2025

Experts recommend enhanced AI literacy, training around the ethics of using AI, and verification protocols to maintain credibility in an increasingly AI-influenced courtroom. Experts recommend enhanced AI literacy, training around the …


AsyncRAT Spawns Concerning Labyrinth of Forks darkreadingJai Vijayan, Contributing Writer
July 15, 2025

Since surfacing on GitHub in 2019, AsyncRAT has become a poster child for how open source malware can democratize cybercrime, with a mazelike footprint of variants available across the spectrum …


Attackers Abuse AWS Cloud to Target Southeast Asian Governments darkreadingElizabeth Montalbano, Contributing Writer
July 15, 2025

The intelligence-gathering cyber campaign introduces the novel HazyBeacon backdoor and uses legitimate cloud communication channels for command-and-control (C2) and exfiltration to hide its malicious activities. The intelligence-gathering cyber campaign introduces the …