Google Warns Salesloft OAuth Breach Extends Beyond Salesforce, Impacting All Integrations The Hacker [email protected] (The Hacker News)
August 29, 2025

Google has revealed that the recent wave of attacks targeting Salesforce instances via Salesloft Drift is much broader in scope than previously thought, stating it impacts all integrations. "We now advise …


TamperedChef Malware Disguised as Fake PDF Editors Steals Credentials and Cookies The Hacker [email protected] (The Hacker News)
August 28, 2025

Cybersecurity researchers have discovered a cybercrime campaign that's using malvertising tricks to direct victims to fraudulent sites to deliver a new information stealer called TamperedChef. "The objective is to lure victims …


ISC Stormcast For Friday, August 29th, 2025 https://isc.sans.edu/podcastdetail/9592, (Fri, Aug 29th) SANS Internet Storm Center, InfoCON: green
August 28, 2025

(c) SANS Internet Storm Center. https://isc.sans.edu Creative Commons Attribution-Noncommercial 3.0 United States License. (c) SANS Internet Storm Center. https://isc.sans.edu Creative Commons Attribution-Noncommercial 3.0 United States License.  ​Read More


CISA, FBI, NSA Warn of Chinese ‘Global Espionage System’ darkreadingAlexander Culafi
August 28, 2025

Three federal agencies were parties to a global security advisory this week warning about the extensive threat posed by Chinese nation-state actors targeting network devices. Three federal agencies were parties to …


Hackers Steal 4M+ TransUnion Customers’ Data darkreadingKristina Beek
August 28, 2025

The credit reporting agency said the breach was "limited to specific data elements" and didn't include credit reports or core credit information. The credit reporting agency said the breach was "limited …


Akira, Clop Top List of 5 Most Active Ransomware-as-a-Service Groups darkreadingArielle Waldman
August 28, 2025

Flashpoint published its 2025 mid-year ransomware report that highlighted the top five most prolific groups currently in operation. Flashpoint published its 2025 mid-year ransomware report that highlighted the top five most …


1,000+ Devs Lose Their Secrets to an AI-Powered Stealer darkreadingNate Nelson, Contributing Writer
August 28, 2025

One of the most sophisticated supply chain attacks to date caused immense amounts of data to leak to the Web in a matter of hours. One of the most sophisticated supply …


Dark Reading Confidential: A Guided Tour of Today’s Dark Web darkreadingDark Reading Staff
August 28, 2025

Dark Reading Confidential Episode 9: Join us for a look around today's Dark Web, and find out how law enforcement, AI, nation-state activities, and more are reshaping the way cybercriminals …


Affiliates Flock to ‘Soulless’ Scam Gambling Machine Krebs on SecurityBrianKrebs
August 28, 2025

Last month, KrebsOnSecurity tracked the sudden emergence of hundreds of polished online gaming and wagering websites that lure people with free credits and eventually abscond with any cryptocurrency funds deposited …


Researchers Find VS Code Flaw Allowing Attackers to Republish Deleted Extensions Under Same Names The Hacker [email protected] (The Hacker News)
August 28, 2025

Cybersecurity researchers have discovered a loophole in the Visual Studio Code Marketplace that allows threat actors to reuse names of previously removed extensions. Software supply chain security outfit ReversingLabs said it …