Chaos Ransomware Rises as BlackSuit Gang Falls darkreadingAlexander Culafi
July 28, 2025

Researchers detailed a newer double-extortion ransomware group made up of former members of BlackSuit, which was recently disrupted by international law enforcement. Researchers detailed a newer double-extortion ransomware group made up …


New Risk Index Helps Organizations Tackle Cloud Security Chaos darkreadingArielle Waldman
July 28, 2025

Enterprises can use the IaC Risk Index to identify vulnerable cloud resources in their infrastructure-as-code environment which are not managed or governed. Enterprises can use the IaC Risk Index to identify …


Hackers Breach Toptal GitHub, Publish 10 Malicious npm Packages With 5,000 Downloads The Hacker [email protected] (The Hacker News)
July 28, 2025

In what's the latest instance of a software supply chain attack, unknown threat actors managed to compromise Toptal's GitHub organization account and leveraged that access to publish 10 malicious packages …


Sophisticated Shuyal Stealer Targets 19 Browsers, Demonstrates Advanced Evasion darkreadingElizabeth Montalbano, Contributing Writer
July 28, 2025

A new infostealing malware making the rounds can exfiltrate credentials and other system data even from browsing software considered more privacy-focused than mainstream options. A new infostealing malware making the rounds …


Parasitic Sharepoint Exploits, (Mon, Jul 28th) SANS Internet Storm Center, InfoCON: green
July 28, 2025

Last week, newly exploited SharePoint vulnerabilities took a lot of our attention. It is fair to assume that last Monday (July 21st), all exposed vulnerable SharePoint installs were exploited. Of …


How to Spot Malicious AI Agents Before They Strike darkreadingAlisdair Faulkner
July 28, 2025

The rise of agentic AI means the battle of the machines is just beginning. To win, we'll need our own agents — human and machine — working together. The rise of …


⚡ Weekly Recap — SharePoint Breach, Spyware, IoT Hijacks, DPRK Fraud, Crypto Drains and More The Hacker [email protected] (The Hacker News)
July 28, 2025

Some risks don’t breach the perimeter—they arrive through signed software, clean resumes, or sanctioned vendors still hiding in plain sight. This week, the clearest threats weren’t the loudest—they were the most …


CISA Adds Three Known Exploited Vulnerabilities to Catalog AlertsCISA
July 28, 2025

CISA has added three new vulnerabilities to its Known Exploited Vulnerabilities (KEV) Catalog, based on evidence of active exploitation. CVE-2025-20281 Cisco Identity Services Engine Injection Vulnerability CVE-2025-20337 Cisco Identity Services Engine Injection Vulnerability CVE-2023-2533 …


Email Security Is Stuck in the Antivirus Era: Why It Needs a Modern Approach The Hacker [email protected] (The Hacker News)
July 28, 2025

Picture this: you’ve hardened every laptop in your fleet with real‑time telemetry, rapid isolation, and automated rollback. But the corporate mailbox—the front door for most attackers—is still guarded by what …


Scattered Spider Hijacks VMware ESXi to Deploy Ransomware on Critical U.S. Infrastructure The Hacker [email protected] (The Hacker News)
July 27, 2025

The notorious cybercrime group known as Scattered Spider is targeting VMware ESXi hypervisors in attacks targeting retail, airline, and transportation sectors in North America. "The group's core tactics have remained consistent …