Lazarus Group Expands Malware Arsenal With PondRAT, ThemeForestRAT, and RemotePE The Hacker Newsinfo@thehackernews.com (The Hacker News)
September 2, 2025

The North Korea-linked threat actor known as the Lazarus Group has been attributed to a social engineering campaign that distributes three different pieces of cross-platform malware called PondRAT, ThemeForestRAT, and …


Researchers Warn of MystRodX Backdoor Using DNS and ICMP Triggers for Stealthy Control The Hacker Newsinfo@thehackernews.com (The Hacker News)
September 2, 2025

Cybersecurity researchers have disclosed a stealthy new backdoor called MystRodX that comes with a variety of features to capture sensitive data from compromised systems. "MystRodX is a typical backdoor implemented in …


Hackers Are Sophisticated & Impatient — That Can Be Good darkreadingEnsar Seker
September 2, 2025

You can't negotiate with hackers from a place of fear — but you can turn their urgency against them with the right playbook, people, and preparation. You can't negotiate with hackers …


NIST Enhances Security Controls for Improved Patching darkreadingArielle Waldman
September 2, 2025

The US National Institute of Standards and Technology released Security and Privacy Control version 5.2.0 to help organizations be more proactive regarding patching. The US National Institute of Standards and Technology …


CISA Releases Four Industrial Control Systems Advisories AlertsCISA
September 2, 2025

CISA released four Industrial Control Systems (ICS) advisories on September 2, 2025. These advisories provide timely information about current security issues, vulnerabilities, and exploits surrounding ICS. ICSA-25-245-01 Delta Electronics EIP Builder ICSA-25-245-02 …


CISA Adds Two Known Exploited Vulnerabilities to Catalog AlertsCISA
September 2, 2025

CISA has added two new vulnerabilities to its Known Exploited Vulnerabilities (KEV) Catalog, based on evidence of active exploitation. CVE-2020-24363 TP-link TL-WA855RE Missing Authentication for Critical Function Vulnerability CVE-2025-55177 Meta Platforms WhatsApp Incorrect Authorization Vulnerability These …


JSON Config File Leaks Azure ActiveDirectory Credentials darkreadingElizabeth Montalbano, Contributing Writer
September 2, 2025

In this type of misconfiguration, cyberattackers could use exposed secrets to authenticate directly via Microsoft’s OAuth 2.0 endpoints and infiltrate Azure cloud environments. In this type of misconfiguration, cyberattackers could use …


Shadow AI Discovery: A Critical Part of Enterprise AI Governance The Hacker Newsinfo@thehackernews.com (The Hacker News)
September 2, 2025

The Harsh Truths of AI Adoption MITs State of AI in Business report revealed that while 40% of organizations have purchased enterprise LLM subscriptions, over 90% of employees are actively using …


Ukrainian Network FDN3 Launches Massive Brute-Force Attacks on SSL VPN and RDP Devices The Hacker Newsinfo@thehackernews.com (The Hacker News)
September 2, 2025

Cybersecurity researchers have flagged a Ukrainian IP network for engaging in massive brute-force and password spraying campaigns targeting SSL VPN and RDP devices between June and July 2025. The activity originated …


Silver Fox Exploits Microsoft-Signed WatchDog Driver to Deploy ValleyRAT Malware The Hacker Newsinfo@thehackernews.com (The Hacker News)
September 2, 2025

The threat actor known as Silver Fox has been attributed to abuse of a previously unknown vulnerable driver associated with WatchDog Anti-malware as part of a Bring Your Own Vulnerable …