Researchers Bypass Deepfake Detection With Replay Attacks darkreadingAlexander Culafi, Senior News Writer, Dark Reading
June 4, 2025

An international group of researchers found that simply rerecording deepfake audio with natural acoustics in the background allows it to bypass detection models at a higher-than-expected rate. An international group of …


Google Exposes Vishing Group UNC6040 Targeting Salesforce with Fake Data Loader App The Hacker [email protected] (The Hacker News)
June 4, 2025

Google has disclosed details of a financially motivated threat cluster that it said "specialises" in voice phishing (aka vishing) campaigns designed to breach organizations' Salesforce instances for large-scale data theft …


Attackers Impersonate Ruby Packages to Steal Sensitive Telegram Data darkreadingElizabeth Montalbano, Contributing Writer
June 4, 2025

Malicious RubyGems pose as a legitimate plug-in for the popular Fastlane rapid development platform in a geopolitically motivated attack with global supply chain reach. Malicious RubyGems pose as a legitimate plug-in …


Beware of Device Code Phishing darkreadingStu Sjouwerman
June 4, 2025

Hackers are exploiting trusted authentication flows — like Microsoft Teams and IoT logins — to trick users into handing over access tokens, bypassing MFA and slipping undetected into corporate networks. Hackers …


Chaos RAT Malware Targets Windows and Linux via Fake Network Tool Downloads The Hacker [email protected] (The Hacker News)
June 4, 2025

Threat hunters are calling attention to a new variant of a remote access trojan (RAT) called Chaos RAT that has been used in recent attacks targeting Windows and Linux systems. According …


Your SaaS Data Isn’t Safe: Why Traditional DLP Solutions Fail in the Browser Era The Hacker [email protected] (The Hacker News)
June 4, 2025

Traditional data leakage prevention (DLP) tools aren't keeping pace with the realities of how modern businesses use SaaS applications. Companies today rely heavily on SaaS platforms like Google Workspace, Salesforce, Slack, …


Updated Guidance on Play Ransomware AlertsCISA
June 4, 2025

CISA, the Federal Bureau of Investigation (FBI), and the Australian Signals Directorate’s Australian Cyber Security Centre (ASD’s ACSC) have issued an updated advisory on Play ransomware, also known as Playcrypt. This …


Malicious PyPI, npm, and Ruby Packages Exposed in Ongoing Open-Source Supply Chain Attacks The Hacker [email protected] (The Hacker News)
June 4, 2025

Several malicious packages have been uncovered across the npm, Python, and Ruby package repositories that drain funds from cryptocurrency wallets, erase entire codebases after installation, and exfiltrate Telegram API tokens, …


Phishing e-mail that hides malicious link from Outlook users, (Wed, Jun 4th) SANS Internet Storm Center, InfoCON: green
June 4, 2025

I recently came across an interesting phishing e-mail. At first glance, it looked like a “normal” phishing that tried to pass itself off as a message from one of the …


HPE Issues Security Patch for StoreOnce Bug Allowing Remote Authentication Bypass The Hacker [email protected] (The Hacker News)
June 3, 2025

Hewlett Packard Enterprise (HPE) has released security updates to address as many as eight vulnerabilities in its StoreOnce data backup and deduplication solution that could result in an authentication bypass …