GhostRedirector Hacks 65 Windows Servers Using Rungan Backdoor and Gamshen IIS Module The Hacker [email protected] (The Hacker News)
September 4, 2025

Cybersecurity researchers have lifted the lid on a previously undocumented threat cluster dubbed GhostRedirector that has managed to compromise at least 65 Windows servers primarily located in Brazil, Thailand, and …


Blast Radius of Salesloft Drift Attacks Remains Uncertain darkreadingAlexander Culafi
September 4, 2025

Many high-profile Salesloft Drift customers have disclosed data breaches as a result of a recent supply-chain attack, but the extent and severity of this campaign are unclear. Many high-profile Salesloft Drift …


Why Threat Hunting Should Be Part of Every Security Program darkreadingRobert Lackey
September 4, 2025

The more you hunt, the more you learn. The more you hunt, the more you learn.  ​Read More


ISC Stormcast For Thursday, September 4th, 2025 https://isc.sans.edu/podcastdetail/9598, (Thu, Sep 4th) SANS Internet Storm Center, InfoCON: green
September 4, 2025

(c) SANS Internet Storm Center. https://isc.sans.edu Creative Commons Attribution-Noncommercial 3.0 United States License. (c) SANS Internet Storm Center. https://isc.sans.edu Creative Commons Attribution-Noncommercial 3.0 United States License.  ​Read More


How Gray-Zone Hosting Companies Protect Data the US Wants Erased darkreadingAndrada Fiscutean
September 4, 2025

The digital refuge: Abortion clinics, activist groups, and other organizations are turning to overseas hosting providers willing to keep their data — and their work — safe. The digital refuge: Abortion …


CISA Adds Three Known Exploited Vulnerabilities to Catalog AlertsCISA
September 4, 2025

CISA has added three new vulnerabilities to its Known Exploited Vulnerabilities (KEV) Catalog, based on evidence of active exploitation. CVE-2025-38352 Linux Kernel Time-of-Check Time-of-Use (TOCTOU) Race Condition Vulnerability CVE-2025-48543 Android Runtime Unspecified Vulnerability CVE-2025-53690 …


CISA Releases Five Industrial Control Systems Advisories AlertsCISA
September 4, 2025

CISA released five Industrial Control Systems (ICS) advisories on September 4, 2025. These advisories provide timely information about current security issues, vulnerabilities, and exploits surrounding ICS. ICSA-25-247-01 Honeywell OneWireless Wireless Device …


A Practical Approach for Post-Quantum Migration With Hybrid Clouds darkreading
September 4, 2025

This Tech Tip outlines how organizations can make the shift to post-quantum cryptography for their hybrid cloud environment with minimal disruption. This Tech Tip outlines how organizations can make the shift …


Cybercriminals Exploit X’s Grok AI to Bypass Ad Protections and Spread Malware to Millions The Hacker [email protected] (The Hacker News)
September 4, 2025

Cybersecurity researchers have flagged a new technique that cybercriminals have adopted to bypass social media platform X's malvertising protections and propagate malicious links using its artificial intelligence (AI) assistant Grok. The …


Google Fined $379 Million by French Regulator for Cookie Consent Violations The Hacker [email protected] (The Hacker News)
September 4, 2025

The French data protection authority has fined Google and Chinese e-commerce giant Shein $379 million (€325 million) and $175 million (€150 million), respectively, for violating cookie rules. Both companies set advertising …