Security Affairs Malware newsletter includes a collection of the best articles and research on malware in the international landscape Malware Newsletter Agenda Ransomware Deploys Linux Variant on Windows Systems Through Remote Management Tools and BYOVD Techniques Uncovering Qilin attack methods…
Growing VPN Exploits Trigger Fresh Ransomware Crisis in APAC
Despite the growing cyber risk landscape in Asia-Pacific, ransomware operations continue to tighten their grip on India and the broader region, as threat actors more often seek to exploit network vulnerabilities and target critical sectors in order to get…
New Vidar Variant Uses API Hooking to Steal Data Before Encryption
A recent investigation by Aryaka Threat Research Labs has revealed a new version of the Vidar infostealer that demonstrates how cybercriminals are refining existing malware to make it more discreet and effective. Vidar, which has circulated for years through…
IT Security News Hourly Summary 2025-11-02 12h : 1 posts
1 posts were published in the last hour 10:34 : Ukrainian extradited to US over Conti ransomware involvement
Ukrainian extradited to US over Conti ransomware involvement
Ukrainian Oleksii Lytvynenko extradited from Ireland to US for alleged role in Conti ransomware after fleeing Ukraine in 2022. Ukrainian national Oleksii Lytvynenko (43) extradited from Ireland to the US, faces charges for alleged involvement in Conti ransomware attacks after…
Week in review: WSUS vulnerability exploited to drop Skuld infostealer, PoC for BIND 9 DNS flaw published
Here’s an overview of some of last week’s most interesting news, articles, interviews and videos: Can your earbuds recognize you? Researchers are working on it Biometric authentication has moved from fingerprints to voices to facial scans, but a team of…
IT Security News Hourly Summary 2025-11-02 09h : 1 posts
1 posts were published in the last hour 7:9 : New EDR-Redir V2 Blinds Windows Defender on Windows 11 With Fake Program Files
New EDR-Redir V2 Blinds Windows Defender on Windows 11 With Fake Program Files
An upgraded release of tool EDR-Redir V2, designed to evade Endpoint Detection and Response (EDR) systems by exploiting Windows bind link technology in a novel way. According to the researcher TwoSevenOneT, the version targets the parent directories of EDR installations,…
OpenAI’s New Aardvark GPT-5 Agent that Detects and Fixes Vulnerabilities Automatically
OpenAI has unveiled Aardvark, an autonomous AI agent powered by its cutting-edge GPT-5 model, designed to detect software vulnerabilities and automatically propose fixes. This tool aims to entrust developers and security teams by scaling human-like analysis across vast codebases, addressing…
IT Security News Hourly Summary 2025-11-02 06h : 1 posts
1 posts were published in the last hour 4:6 : What Rural Internet Providers Offer Remote Communities
What Rural Internet Providers Offer Remote Communities
Loss of internet access in rural areas is considerably more serious, as it disrupts education, work, and communication. Despite such hurdles, it is rural internet providers serving such remote communities and getting them connected. By understanding what these providers can…
A Walk in the Park
In August of 2024 I stopped in my local book shop (shoutout to The Raven Bookstore) as I often do to browse the shelves and see if there was anything I couldn’t live without. A very colorful book jacket caught…
IT Security News Hourly Summary 2025-11-02 00h : 1 posts
1 posts were published in the last hour 22:55 : IT Security News Daily Summary 2025-11-01
IT Security News Daily Summary 2025-11-01
35 posts were published in the last hour 18:34 : BadCandy Webshell threatens unpatched Cisco IOS XE devices, warns Australian government 17:6 : Iran Attacks Israeli Cybersecurity Infrastructure 17:5 : IT Security News Hourly Summary 2025-11-01 18h : 4 posts…
BadCandy Webshell threatens unpatched Cisco IOS XE devices, warns Australian government
Australia warns of attacks on unpatched Cisco IOS XE devices exploiting CVE-2023-20198, allowing BadCandy webshell install. The Australian Signals Directorate (ASD) warns of ongoing attacks on unpatched Cisco IOS XE devices exploiting CVE-2023-20198, allowing BadCandy webshell infections and admin takeover. “Cyber…
Iran Attacks Israeli Cybersecurity Infrastructure
The National Cyber Directorate found a series of cyberattacks that targeted Israeli organisations that offer IT services to companies in the country, and might be linked to Iran. Earlier this month, the failed cyberattack against Shamir Medical Center on Yom…
IT Security News Hourly Summary 2025-11-01 18h : 4 posts
4 posts were published in the last hour 16:34 : TikTok ‘Free Photoshop’ Scam Steals User Data via Malicious Commands 16:34 : Online Identity Is Evolving: From Data Storage to Proof-Based Verification with zkTLS 16:34 : How to Make Zoom…
TikTok ‘Free Photoshop’ Scam Steals User Data via Malicious Commands
A sophisticated scam targeting TikTok users is exploiting the platform’s reach to steal personal data by promising free access to expensive software like Adobe Photoshop. Cybercriminals are using a social engineering technique called ClickFix to trick victims into executing…
Online Identity Is Evolving: From Data Storage to Proof-Based Verification with zkTLS
The next phase of online identity is shifting from data storage to proof-based verification. Today, the internet already contains much of what verification and compliance teams require — from academic credentials and payment confirmations to loyalty program details. The…
How to Make Zoom Meetings More Secure and Protect Your Privacy
Zoom calls remain an essential part of remote work and digital communication, but despite their convenience, they are not entirely private. Cybercriminals can exploit vulnerabilities to steal sensitive information, intercept conversations, or access meeting data. However, several practical measures…
Proxy Servers: How They Work and What They Actually Do
When browsing online, your device usually connects directly to a website’s server. However, in certain cases, especially for privacy, security, or access control — a proxy server acts as a go-between. It stands between your device and the internet, forwarding…
New Kurdish Hacktivists Hezi Rash Behind 350 DDoS Attacks in 2 Months
New intelligence on Hezi Rash: See how the Kurdish group launched 350+ DDoS attacks and used DaaS platforms like EliteStress to lower entry barriers. This article has been indexed from Hackread – Cybersecurity News, Data Breaches, Tech, AI, Crypto and…
ASD Warns of Ongoing BADCANDY Attacks Exploiting Cisco IOS XE Vulnerability
The Australian Signals Directorate (ASD) has issued a bulletin about ongoing cyber attacks targeting unpatched Cisco IOS XE devices in the country with a previously undocumented implant known as BADCANDY. The activity, per the intelligence agency, involves the exploitation of…
China-linked UNC6384 exploits Windows zero-day to spy on European diplomats
A China-linked APT group UNC6384 exploits a Windows zero-day in an active cyber espionage targeting European diplomats. Arctic Wolf Labs researchers uncovered a cyber espionage campaign by China-linked APT UNC6384 targeting diplomatic entities in Hungary, Belgium, and other EU nations.…