Security Evolution: From Pothole Repair to Road Building darkreadingAndy Ellis
June 19, 2025

Instead of constantly fixing security vulnerabilities, organizations should proactively build secure foundations that enable businesses to move faster while reducing risk. Instead of constantly fixing security vulnerabilities, organizations should proactively build …


Scammers Spread False Support Info Using Legitimate Websites darkreadingKristina Beek, Associate Editor, Dark Reading
June 19, 2025

In a new wrinkle on the tech support scam front, these search parameter injection attacks dupe victims into believing they are receiving technical help when they are actually speaking to …


Paragon Commercial Spyware Infects Prominent Journalists darkreadingAlexander Culafi, Senior News Writer, Dark Reading
June 19, 2025

An unnamed customer of Paragon's Graphite product used the commercial spyware to target at least two prominent European journalists in recent months. An unnamed customer of Paragon's Graphite product used the …


BlueNoroff Deepfake Zoom Scam Hits Crypto Employee with MacOS Backdoor Malware The Hacker [email protected] (The Hacker News)
June 19, 2025

The North Korea-aligned threat actor known as BlueNoroff has been observed targeting an employee in the Web3 sector with deceptive Zoom calls featuring deepfaked company executives to trick them into …


Secure Vibe Coding: The Complete New Guide The Hacker [email protected] (The Hacker News)
June 19, 2025

DALL-E for coders? That’s the promise behind vibe coding, a term describing the use of natural language to create software. While this ushers in a new era of AI-generated code, …


Uncover LOTS Attacks Hiding in Trusted Tools — Learn How in This Free Expert Session The Hacker [email protected] (The Hacker News)
June 19, 2025

Most cyberattacks today don’t start with loud alarms or broken firewalls. They start quietly—inside tools and websites your business already trusts. It’s called “Living Off Trusted Sites” (LOTS)—and it’s the new …


Russian APT29 Exploits Gmail App Passwords to Bypass 2FA in Targeted Phishing Campaign The Hacker [email protected] (The Hacker News)
June 19, 2025

Threat actors with suspected ties to Russia have been observed taking advantage of a Google account feature called application specific passwords (or app passwords) as part of a novel social …


Meta Adds Passkey Login Support to Facebook for Android and iOS Users The Hacker [email protected] (The Hacker News)
June 18, 2025

Meta Platforms on Wednesday announced that it's adding support for passkeys, the next-generation password standard, on Facebook. "Passkeys are a new way to verify your identity and login to your account …


Iran-Israel War Triggers a Maelstrom in Cyberspace darkreadingNate Nelson, Contributing Writer
June 18, 2025

As Iran closes its cyberspace to the outside world, hacktivists are picking sides, while attacks against Israel surge and spread across the region. As Iran closes its cyberspace to the outside …


New Linux Flaws Enable Full Root Access via PAM and Udisks Across Major Distributions The Hacker [email protected] (The Hacker News)
June 18, 2025

Cybersecurity researchers have uncovered two local privilege escalation (LPE) flaws that could be exploited to gain root privileges on machines running major Linux distributions. The vulnerabilities, discovered by Qualys, are listed …