Fake ChatGPT support sessions are being used to trick macOS users into installing the AMOS infostealer via malicious terminal commands. The post Fake ChatGPT Support Installs AMOS Infostealer on macOS appeared first on eSecurity Planet. This article has been indexed…
Google ads funnel Mac users to poisoned AI chats that spread the AMOS infostealer
Criminals make malicious ChatGPT and Grok conversations appear at the top of common Google searches—leading users straight to the Atomic macOS Stealer. This article has been indexed from Malwarebytes Read the original article: Google ads funnel Mac users to poisoned…
Asus Supplier Breach Sparks Security Concerns After Everest Ransomware Claims Data Theft
Asus has confirmed a security breach via one of its third-party suppliers after the Everest ransomware group claimed it had accessed internal materials belonging to the company. In its statement, Asus confirmed that a supply chain vendor “was hacked,”…
Top 20 Most Exploited Vulnerabilities of 2025: A Comprehensive Analysis
The cybersecurity landscape of 2025 has been marked by an unprecedented surge in vulnerability exploitation, with threat actors leveraging critical flaws across enterprise software, cloud infrastructure, and industrial systems. This comprehensive analysis examines the twenty most dangerous exploited vulnerabilities of…
New AiTM Attack Campaign That Bypasses MFA Targeting Microsoft 365 and Okta Users
A sophisticated phishing campaign has emerged that successfully bypasses multi-factor authentication, protecting Microsoft 365 and Okta users, representing a serious threat to organizations relying on these platforms for identity management. The campaign, discovered in early December 2025, demonstrates advanced knowledge…
New Advanced Phishing Kits Use AI and MFA Bypass Tactics to Steal Credentials at Scale
Cybersecurity researchers have documented four new phishing kits named BlackForce, GhostFrame, InboxPrime AI, and Spiderman that are capable of facilitating credential theft at scale. BlackForce, first detected in August 2025, is designed to steal credentials and perform Man-in-the-Browser (MitB) attacks…
Check Point CloudGuard Network Security Advances Auto-Scaling Support for Oracle Cloud Workloads
As enterprises expand into Oracle Cloud Infrastructure (OCI), they need security that scales as dynamically as their workloads. Check Point CloudGuard Network Security now brings full auto-scaling support to OCI extending its industry-leading cloud security automation capabilities to yet another…
Microsoft promises more bug payouts, with or without a bounty program
Critical vulnerabilities found in third-party applications eligible for award under ‘in scope by default’ move Microsoft is overhauling its bug bounty program to reward exploit hunters for finding vulnerabilities across all its products and services, even those without established bounty…
Gladinet CentreStack Flaw Exploited to Hack Organizations
Threat actors have hacked at least nine organizations by exploiting the recently patched Gladinet CentreStack flaw. The post Gladinet CentreStack Flaw Exploited to Hack Organizations appeared first on SecurityWeek. This article has been indexed from SecurityWeek Read the original article:…
ImmuniWeb enhances AI vulnerability testing and compliance reporting
ImmuniWeb has unveiled a major update to its ImmuniWeb AI Platform, based on ongoing research as well as valuable feedback from customers and partners in over 50 countries. This cumulative Q4 update builds on the Q3 update announced in early…
IT Security News Hourly Summary 2025-12-12 15h : 12 posts
12 posts were published in the last hour 13:36 : Cisco-Trained Hackers Lead Sophisticated Attacks on Cisco Devices 13:36 : Critical GitLab Vulnerabilities Expose DevOps Pipelines 13:36 : Jenkins DoS Vulnerability Lets Attackers Freeze CI/CD Pipelines 13:36 : Uncle Sam…
Cisco-Trained Hackers Lead Sophisticated Attacks on Cisco Devices
Cisco-trained hackers led a nation-state espionage campaign against global telecom networks. The post Cisco-Trained Hackers Lead Sophisticated Attacks on Cisco Devices appeared first on eSecurity Planet. This article has been indexed from eSecurity Planet Read the original article: Cisco-Trained Hackers…
Critical GitLab Vulnerabilities Expose DevOps Pipelines
GitLab patched critical flaws that could enable XSS, denial-of-service attacks, and authentication bypasses. The post Critical GitLab Vulnerabilities Expose DevOps Pipelines appeared first on eSecurity Planet. This article has been indexed from eSecurity Planet Read the original article: Critical GitLab…
Jenkins DoS Vulnerability Lets Attackers Freeze CI/CD Pipelines
A Jenkins denial-of-service vulnerability allows attackers to freeze CI/CD pipelines and disrupt build operations. The post Jenkins DoS Vulnerability Lets Attackers Freeze CI/CD Pipelines appeared first on eSecurity Planet. This article has been indexed from eSecurity Planet Read the original…
Uncle Sam sues ex-Accenture manager over Army cloud security claims
Justice Department alleges federal auditors were misled over compliance with FedRAMP and DoD requirements The US is suing a former senior manager at Accenture for allegedly misleading the government about the security of an Army cloud platform.… This article has…
Fieldtex Data Breach Impacts 238,000
The Akira ransomware group took credit for the Fieldtex Products hack in November, claiming to have stolen 14 Gb of data. The post Fieldtex Data Breach Impacts 238,000 appeared first on SecurityWeek. This article has been indexed from SecurityWeek Read…
Emerging Predator Spyware Technique Enables Zero-Click Compromise
Intellexa is one of the most controversial and persistent players in the shadowy world of commercial cyber-espionage, even though mounting scrutiny, international sanctions, and ongoing investigations have led to increased scrutiny and investigation. Although it is best known for…
NANOREMOTE Malware Leverages Google Drive API for Command-and-Control (C2) to Attack Windows Systems
A sophisticated new Windows backdoor named NANOREMOTE emerged in October 2025, presenting a significant threat to enterprise environments by leveraging legitimate cloud infrastructure for malicious purposes. This fully-featured malware utilizes the Google Drive API as its primary Command-and-Control (C2) channel,…
New ConsentFix Attack Let Attackers Hijack Microsoft Accounts by Leveraging Azure CLI
A sophisticated new phishing attack technique called “ConsentFix” that combines OAuth consent phishing with ClickFix-style prompts to compromise Microsoft accounts without requiring passwords or multi-factor authentication. The attack leverages the Azure CLI app to gain unauthorized access to victim accounts.…
CyberVolk Hackers Group With New VolkLocker Payloads Attacks both Linux and Windows Systems
CyberVolk, a pro-Russia hacktivist group, has reemerged with a new ransomware platform called VolkLocker following a period of dormancy in 2025. The group, first documented in late 2024 for conducting attacks aligned with Russian government interests, initially went silent due…
UK watchdog urged to probe GDPR failures in Home Office eVisa rollout
Rights groups say digital-only record is leaking data and courting trouble Civil society groups are urging the UK’s data watchdog to investigate whether the Home Office’s digital-only eVisa scheme is breaching GDPR, sounding the alarm about systemic data errors and…
3 Compliance Processes to Automate in 2026
For years, compliance has been one of the most resource-intensive responsibilities for cybersecurity teams. Despite growing investments in tools, the day-to-day reality of compliance is still dominated by manual, duplicative tasks. Teams chase down screenshots, review spreadsheets, and cross-check logs,…
Aisuru Botnet Unleashes Record 29.7 Tbps DDoS Attack
A new record-breaking 29.7 Tbps distributed denial-of-service (DDoS) attack launched via the Aisuru botnet has set a new standard for internet disruption and reinforced that multi-terabit attacks are on track to soon be an everyday event for DDoS defenders.…
Recent GeoServer Vulnerability Exploited in Attacks
Because user input is not sufficiently sanitized, attackers could exploit the flaw to define external entities within an XML request. The post Recent GeoServer Vulnerability Exploited in Attacks appeared first on SecurityWeek. This article has been indexed from SecurityWeek Read…