Akira Ramps Up Assault on SonicWall Firewalls, Suggesting Zero-Day darkreadingElizabeth Montalbano, Contributing Writer
August 4, 2025

An uptick of ransomware activity by the group in late July that uses the vendor's SSL VPN devices for initial intrusion shows evidence of an as-yet-undisclosed flaw under exploitation. An uptick …


Turning Human Vulnerability Into Organizational Strength darkreadingErich Kron
August 4, 2025

Investing in building a human-centric defense involves a combination of adaptive security awareness training, a vigilant and skeptical culture, and the deployment of layered technical controls. Investing in building a human-centric …


Vietnamese Hackers Use PXA Stealer, Hit 4,000 IPs and Steal 200,000 Passwords Globally The Hacker [email protected] (The Hacker News)
August 4, 2025

Cybersecurity researchers are calling attention to a new wave of campaigns distributing a Python-based information stealer called PXA Stealer. The malicious activity has been assessed to be the work of Vietnamese-speaking …


⚡ Weekly Recap: VPN 0-Day, Encryption Backdoor, AI Malware, macOS Flaw, ATM Hack & More The Hacker [email protected] (The Hacker News)
August 4, 2025

Malware isn’t just trying to hide anymore—it’s trying to belong. We’re seeing code that talks like us, logs like us, even documents itself like a helpful teammate. Some threats now …


Man-in-the-Middle Attack Prevention Guide The Hacker [email protected] (The Hacker News)
August 4, 2025

Some of the most devastating cyberattacks don’t rely on brute force, but instead succeed through stealth. These quiet intrusions often go unnoticed until long after the attacker has disappeared. Among …


The Wild West of Shadow IT The Hacker [email protected] (The Hacker News)
August 4, 2025

Everyone’s an IT decision-maker now. The employees in your organization can install a plugin with just one click, and they don’t need to clear it with your team first. It’s …


PlayPraetor Android Trojan Infects 11,000+ Devices via Fake Google Play Pages and Meta Ads The Hacker [email protected] (The Hacker News)
August 3, 2025

Cybersecurity researchers have discovered a nascent Android remote access trojan (RAT) called PlayPraetor that has infected more than 11,000 devices, primarily across Portugal, Spain, France, Morocco, Peru, and Hong Kong. "The …


ISC Stormcast For Monday, August 4th, 2025 https://isc.sans.edu/podcastdetail/9554, (Mon, Aug 4th) SANS Internet Storm Center, InfoCON: green
August 3, 2025

(c) SANS Internet Storm Center. https://isc.sans.edu Creative Commons Attribution-Noncommercial 3.0 United States License. (c) SANS Internet Storm Center. https://isc.sans.edu Creative Commons Attribution-Noncommercial 3.0 United States License.  ​Read More


Legacy May Kill, (Sun, Aug 3rd) SANS Internet Storm Center, InfoCON: green
August 3, 2025

Just saw something that I thought was long gone. The username "pop3user" is showing up in our telnet/ssh logs. I don&#;x26;#;39;t know how long ago it was that I used …


CL-STA-0969 Installs Covert Malware in Telecom Networks During 10-Month Espionage Campaign The Hacker [email protected] (The Hacker News)
August 2, 2025

Telecommunications organizations in Southeast Asia have been targeted by a state-sponsored threat actor known as CL-STA-0969 to facilitate remote control over compromised networks. Palo Alto Networks Unit 42 said it observed …