x86.se

2 Min Read

October 20, 2025

Five New Exploited Bugs Land in CISA's Catalog — Oracle and Microsoft Among Targets

The U.S. Cybersecurity and Infrastructure Security Agency (CISA) on Monday added five security flaws to its Known Exploited Vulnerabilities (KEV) Catalog,…

16 Min Read

October 20, 2025

⚡ Weekly Recap: F5 Breached, Linux Rootkits, Pixnapping Attack, EtherHiding & More

It's easy to think your defenses are solid — until you realize…

6 Min Read

October 20, 2025

Analysing ClickFix: 3 Reasons Why Copy/Paste Attacks Are Driving Security Breaches

ClickFix, FileFix, fake CAPTCHA — whatever you call it, attacks…

2 Min Read

October 20, 2025

131 Chrome Extensions Caught Hijacking WhatsApp Web for Massive Spam Campaign

Cybersecurity researchers have uncovered a coordinated campaign that…

2 Min Read

October 14, 2025

Secure Boot bypass risk threatens nearly 200,000 Linux Framework laptops

Around 200,000 Linux computer systems from American computer maker Framework were shipped with signed UEFI shell components that could be…

4 Min Read

October 14, 2025

CVE Deep Dive : CVE-2025–32463

Sudo “Chroot to Root” — Critical Library Loading Privilege EscalationPublished : Sept 23, 2025 | by : OptPress enter or…

Ransomware

4 Min Read

October 14, 2025

Keeping Up with Compliance: Navigating a Patchwork of Global Regulations in 2025

Note: Nothing herein shall constitute legal advice, compliance directives, or otherwise. Customers and prospective customers should…

Security

2 Min Read

October 14, 2025

Chinese hackers abuse geo-mapping tool for year-long persistence

Chinese state hackers remained undetected in a target environment for more than a year by turning a component in the ArcGIS geo-mapping tool…

2 Min Read

October 14, 2025

Chinese Hackers Use Trusted ArcGIS App For Year-Long Persistence

Security teams have been urged to adopt proactive threat hunting after a new report revealed how Chinese hackers used novel techniques to…

3 Min Read

October 14, 2025

Moving Beyond Awareness: How Threat Hunting Builds Readiness

Every October brings a familiar rhythm - pumpkin-spice everything in stores and cafés, alongside a wave of reminders, webinars, and…

3 Min Read

October 14, 2025

RMPocalypse: Single 8-Byte Write Shatters AMD’s SEV-SNP Confidential Computing

Chipmaker AMD has released fixes to address a security flaw dubbed RMPocalypse that could be exploited to undermine confidential computing…

3 Min Read

October 14, 2025

New Pixnapping Android Flaw Lets Rogue Apps Steal 2FA Codes Without Permissions

Android devices from Google and Samsung have been found vulnerable to a side-channel attack that could be exploited to covertly steal…

3 Min Read

October 14, 2025

What AI Reveals About Web Applications— and Why It Matters

Before an attacker ever sends a payload, they've already done the work of understanding how your environment is built. They look at your login…

Ransomware

2 Min Read

October 14, 2025

UK Firms Lose Average of £2.9m to AI Risk

British businesses have been urged to prioritize AI governance when adopting the technology in new projects, after new data from EY revealed…

Ransomware

2 Min Read

October 14, 2025

UK: NCSC Reports 130% Spike in "Nationally Significant" Cyber Incidents

The UK’s National Cyber Security Centre (NCSC) reported 204 “national significant” cyber incidents between September 2024…

3 Min Read

October 14, 2025

npm, PyPI, and RubyGems Packages Found Sending Developer Data to Discord Channels

Cybersecurity researchers have identified several malicious packages across npm, Python, and Ruby ecosystems that leverage Discord as a…

Apple

2 Min Read

October 14, 2025

Apple Hit with Second Lawsuit Alleging AI Training Used Pirated Books from “Shadow Libraries”

After previously being accused of using pirated books to train its artificial intelligence models, Apple now faces yet another class-action…

2 Min Read

October 14, 2025

Microsoft Patches Edge IE Mode After Hackers Exploited Chakra Zero-Day for Device Takeover

After discovering that hackers were exploiting a zero-day in the Chakra JavaScript engine used by Internet Explorer versions 9, 10, and 11,…

2 Min Read

October 14, 2025

Critical Supply Chain Flaw: Clevo UEFI Firmware Leaked Intel Boot Guard Private Keys (CVE-2025-11577)

The CERT Coordination Center (CERT/CC) has issued a warning regarding a critical supply chain — CVE-2025-11577 — after researchers…

2 Min Read

October 14, 2025

Critical Elastic Cloud Flaw: CVE-2025-37729 (CVSS 9.1) Allows RCE via Jinjava Template Injection

Elastic has released urgent updates for Elastic Cloud Enterprise (ECE) to patch a critical (CVE-2025-37729) that could allow attackers with…

3 Min Read

October 14, 2025

RMPocalypse Flaw (CVE-2025-0033) Bypasses AMD SEV-SNP to Fully Compromise Encrypted VMs

A research team from ETH Zurich has disclosed a critical — CVE-2025-0033, dubbed RMPocalypse — that undermines AMD’s…

3 Min Read

October 14, 2025

Stealth C2: Hackers Abuse Discord Webhooks for Covert Data Exfiltration in npm, PyPI, and RubyGems Supply Chain Attacks

The Socket Threat Research Team has uncovered a growing trend among malicious package developers: leveraging Discord webhooks as…

2 Min Read

October 14, 2025

iPhone Fold Hinge Costs Drop to $70-$80, Boosting Viability for Mass Production in 2026

The long-rumored foldable iPhone — tentatively referred to as the iPhone Fold — has yet to be officially announced, but numerous…

2 Min Read

October 13, 2025

Microsoft restricts IE mode access in Edge after zero-day attacks

Microsoft is restricting access to Internet Explorer mode in Edge browser after learning that hackers are leveraging zero-day exploits in…

2 Min Read

October 13, 2025

SimonMed says 1.2 million patients impacted in January data breach

U.S. medical imaging provider SimonMed Imaging is notifying more than 1.2 million individuals of a data breach that exposed their sensitive…

Security

2 Min Read

October 13, 2025

Massive multi-country botnet targets RDP services in the US

A large-scale botnet is targeting Remote Desktop Protocol (RDP) services in the United States from more than 100,000 IP addresses. The…

Security

2 Min Read

October 13, 2025

SonicWall VPN accounts breached using stolen creds in widespread attacks

Researchers warn that threat actors have compromised more than a hundred SonicWall SSLVPN accounts in a large-scale campaign using stolen,…

Microsoft

2 Min Read

October 13, 2025

Microsoft investigates outage affecting Microsoft 365 apps

Microsoft is investigating an ongoing incident that is preventing some customers from accessing Microsoft 365 applications. While the company…

2 Min Read

October 13, 2025

Hackers Target ScreenConnect Features For Network Intrusions

A rise in cyber-attacks exploiting remote monitoring and management (RMM) tools for initial access via phishing has been observed by…

4 Min Read

October 13, 2025

AI vs AI: The Future of Cybersecurity Is Machine vs. Machine. Is the human factor still relevant?

How Artificial Intelligence is transforming both cyber defense and cybercrime by Venkatesh Apsingekar, Senior Engineering Manager –…

4 Min Read

October 13, 2025

Your Alerts Are Increasing Your Cybersecurity Risk

At their core, alerts exist to bring attention to something meaningful: an indicator of compromise (IOC), an indicator of attack (IOA), or a…

2 Min Read

October 13, 2025

Spain Arrests Alleged Leader of GXC Team Cybercrime Network

Spanish authorities have arrested a 25-year-old Brazilian national accused of leading the “GXC Team” – a…

Security

2 Min Read

October 13, 2025

Oracle releases emergency patch for new E-Business Suite flaw

Oracle has issued an emergency security update over the weekend to patch another E-Business Suite (EBS) vulnerability that can be exploited…

2 Min Read

October 13, 2025

New Stealit Malware Campaign Spreads via VPN and Game Installer Apps

Threat actors are conducting a new malicious campaign deploying the Stealit malware via disguised applications, according to Fortinet. The…

Microsoft

2 Min Read

October 13, 2025

Microsoft: Windows 11 Media Creation Tool broken on Windows 10 PCs

Microsoft says the latest version of the Windows 11 Media Creation Tool (MCT) no longer works correctly on Windows 10 22H2 computers. The…

2 Min Read

October 13, 2025

Weekly Recap: WhatsApp Worm, Critical CVEs, Oracle 0-Day, Ransomware Cartel & More

Every week, the cyber world reminds us that silence doesn't mean safety. Attacks often begin quietly — one unpatched flaw, one…

4 Min Read

October 13, 2025

Is Hacking Back Ever a Good Strategy?

Hacking back aims to retaliate against cyberattackers by launching a counterattack to disrupt their systems, recover stolen data or send a…

5 Min Read

October 13, 2025

Why Unmonitored JavaScript Is Your Biggest Holiday Security Risk

Think your WAF has you covered? Think again. This holiday season, unmonitored JavaScript is a critical oversight allowing attackers to steal…

Security

2 Min Read

October 13, 2025

Harvard investigating breach linked to Oracle zero-day exploit

Harvard University is investigating a data breach after the Clop ransomware gang listed the school on its data leak site, saying the alleged…

2 Min Read

October 13, 2025

Researchers Warn RondoDox Botnet is Weaponizing Over 50 Flaws Across 30+ Vendors

Malware campaigns distributing the RondoDox botnet have expanded their targeting focus to exploit more than 50 vulnerabilities across over 30…

2 Min Read

October 13, 2025

Microsoft Locks Down IE Mode After Hackers Turned Legacy Feature Into Backdoor

Microsoft said it has revamped the Internet Explorer (IE) mode in its Edge browser after receiving "credible reports" in August 2025 that…

2 Min Read

October 13, 2025

Apple Bug Bounty Payouts Can Now Top $5m

Apple has doubled its top award for ethical hacking discoveries to $2m, although security researchers could earn even more if they’re…

3 Min Read

October 13, 2025

FBI and French Police Shutter BreachForums Domain Again

The FBI and French investigators have seized at least one domain for a popular cybercrime forum being used as a leak site in connection with…

2 Min Read

October 13, 2025

Astaroth Banking Trojan Abuses GitHub to Remain Operational After Takedowns

Cybersecurity researchers are calling attention to a new campaign that delivers the Astaroth banking trojan that employs GitHub as a backbone…

2 Min Read

October 13, 2025

New Rust-Based Malware "ChaosBot" Uses Discord Channels to Control Victims' PCs

Cybersecurity researchers have disclosed details of a new Rust-based backdoor called ChaosBot that can allow operators to conduct…

Explore Trending Topics