x86.se

2 Min Read

November 3, 2025

Cybercriminals Exploit Remote Monitoring Tools to Infiltrate Logistics and Freight Networks

Bad actors are increasingly training their sights on trucking and logistics companies with an aim to infect them with remote monitoring and management (RM…

14 Min Read

November 3, 2025

Weekly Recap: Lazarus Hits Web3, Intel/AMD TEEs Cracked, Dark Web Leak Tool & More

Cyberattacks are getting smarter and harder to stop. This week, hackers…

1 Min Read

November 3, 2025

The Evolution of SOC Operations: How Continuous Exposure Management Transforms Security Operations

Security Operations Centers (SOC) today are overwhelmed. Analysts handle…

3 Min Read

November 3, 2025

Researchers Uncover BankBot-YNRK and DeliveryRAT Android Trojans Stealing Financial Data

Cybersecurity researchers have shed light on two different Android…

Cloud Security

5 Min Read

August 28, 2025

Malicious Nx Packages in ‘s1ngularity’ Attack Leaked 2,349 GitHub, Cloud, and AI Credentials

The maintainers of the nx build system have alerted users to a supply chain attack that allowed attackers to publish malicious versions of the…

3 Min Read

August 28, 2025

Chinese Tech Firms Linked to Salt Typhoon Espionage Campaigns

The UK, US and partners from across the globe have released a new report on the notorious Chinese APT group Salt Typhoon, claiming it has…

3 Min Read

August 28, 2025

CISA Publish Hunting and Mitigation Guide to Defend Networks from Chinese State-Sponsored Actors

The U.S. Cybersecurity and Infrastructure Security Agency (CISA), alongside the NSA, FBI, and a broad coalition of international partners, has…

2 Min Read

August 28, 2025

Cisco Warns of High-Severity DoS Flaw (CVE-2025-20241) in Nexus Switches

Ddos August 28, 2025 Cisco Systems has published a security advisory detailing a high-severity denial-of-service (DoS) vulnerability affecting…

3 Min Read

August 28, 2025

Chinese State Hackers Target Global Critical Infrastructure, NSA Warns

A coalition of cybersecurity and intelligence agencies from across the globe, including the United States National Security Agency (NSA), has…

Uncategorized

2 Min Read

August 28, 2025

Crypto Companies Freeze $47m in Romance Baiting Funds

Several cryptocurrency companies have come together to prevent nearly $50m stolen via “romance baiting” (pig butchering) scammers…

3 Min Read

August 28, 2025

U.S. Treasury Sanctions DPRK IT-Worker Scheme, Exposing $600K Crypto Transfers and $1M+ Profits

The U.S. Department of the Treasury’s Office of Foreign Assets Control (OFAC) announced a fresh round of sanctions against two…

4 Min Read

August 28, 2025

Ransomware Actor Deletes Data and Backups Post-Exfiltration on Azure

A threat actor has destroyed data and backups following exfiltration in a victim’s Microsoft Azure environment in a novel cloud-based…

3 Min Read

August 28, 2025

Someone Created First AI-Powered Ransomware Using OpenAI's gpt-oss:20b Model

Cybersecurity company ESET has disclosed that it discovered an artificial intelligence (AI)-powered ransomware variant codenamed PromptLock.…

3 Min Read

August 28, 2025

Storm-0501 Exploits Entra ID to Exfiltrate and Delete Azure Data in Hybrid Cloud Attacks

The financially motivated threat actor known as Storm-0501 has been observed refining its tactics to conduct data exfiltration and extortion…

3 Min Read

August 28, 2025

CISA releases New ICS Advisories Surrounding Vulnerabilities and Exploits

CISA released three significant Industrial Control Systems (ICS) advisories on August 26, 2025, alerting organizations to critical…

2 Min Read

August 28, 2025

NVIDIA NeMo AI Curator Enables Code Execution and Privilege Escalation

NVIDIA has issued a critical security bulletin addressing a high-severity vulnerability in its NeMo Curator platform that could allow…

2 Min Read

August 28, 2025

IPFire Web-Based Firewall Interface Allows Authenticated Administrator to Inject Persistent JavaScript

A stored cross-site scripting (XSS) flaw identified in IPFire 2.29’s web-based firewall interface (firewall.cgi). Tracked as…

4 Min Read

August 28, 2025

Emulating the Expedited Warlock Ransomware

Introduction Warlock is a ransomware strain operating under the Ransomware-as-a-Service (RaaS) model that emerged in June 2025, following an…

Vulnerabilities

2 Min Read

August 28, 2025

PoC Exploit Released for CrushFTP 0-day Vulnerability (CVE-2025-54309)

A weaponized proof-of-concept exploit has been publicly released targeting CVE-2025-54309, a severe authentication bypass vulnerability…

2 Min Read

August 28, 2025

28,000+ Citrix Servers Exposed to Active 0-Day RCE Vulnerability Exploited in the Wild

A critical zero-day remote code execution (RCE) vulnerability, tracked as CVE-2025-7775, is affecting over 28,000 Citrix instances worldwide.…

Ransomware

7 Min Read

August 28, 2025

CMMC 2.0 Final Rule Released – Get Prepared Now!

In a significant step to secure the defense industrial base (DIB), the Department of Defense (DoD) has officially released the…

6 Min Read

August 28, 2025

Cross-domain Solutions: The Present and Future of a Growing Industry

Cross-domain solutions (CDS) consist of the secure exchange of information between security domains. This type of solution, which emerged as a…

3 Min Read

August 28, 2025

Innovator Spotlight: CSide

August 27, 2025 Securing the Browser’s Blind Spot By Victoria Hargrove, CDM Reporter What CSide Does Most security stacks fortify…

Phishing

3 Min Read

August 28, 2025

New Phishing Campaign Abuses ConnectWise ScreenConnect to Take Over Devices

A novel phishing campaign attempts to trick victims into downloading ConnectWise ScreenConnect remote monitoring and management (RMM)…

3 Min Read

August 28, 2025

New Data Theft Campaign Targets Salesforce via Salesloft App

Salesforce customers have again been targeted in a “widespread data theft campaign,” this time via compromised OAuth tokens…

Uncategorized

2 Min Read

August 28, 2025

ENISA to Coordinate €36m EU-Wide Incident Response Scheme

The EU’s security agency is being given €36m ($42m) to handle incident response for major cyber-attacks targeting the bloc. ENISA…

3 Min Read

August 28, 2025

Citrix Patches Three NetScaler Zero Days as One Sees Active Exploitation

Citrix has released patches for three zero-day vulnerabilities in NetScaler ADC and Gateway, one of which was already being exploited by…

2 Min Read

August 28, 2025

ShadowSilk Campaign Targets Central Asian Governments

A series of cyber-attacks against government organizations in Central Asia and the Asia-Pacific has been linked to a threat cluster known as…

Ransomware

3 Min Read

August 28, 2025

Nevada “Network Security Incident” Shuts Down State Offices and Services

The State of Nevada has been hit by a “network security incident,” which has resulted in the closure of government offices and…

3 Min Read

August 28, 2025

Researchers Discover First Reported AI-Powered Ransomware

In what is reportedly a world-first, ESET researchers have discovered PrompLock, a generative AI-powered ransomware implant currently in…

Uncategorized

2 Min Read

August 28, 2025

CISA Strengthens Software Procurement Security With New Tool

A new Software Acquisition Guide: Supplier Response Web Tool has been released by the US Cybersecurity and Infrastructure Security Agency…

Security

2 Min Read

August 28, 2025

Google to verify all Android devs to protect users from malware

Google is introducing a new defense for Android called ‘Developer Verification’ to block malware installations from…

2 Min Read

August 28, 2025

Healthcare Services Group data breach impacts 624,000 people

The Healthcare Services Group (HSGI) is alerting more than 600,000 individuals that their personal information was exposed in a security…

Security

2 Min Read

August 28, 2025

Why zero trust is never 'done' and is an ever-evolving process

Picture this scenario: Six months after celebrating their “zero trust transformation,” a financial services firm gets hit with a…

Security

2 Min Read

August 28, 2025

Over 28,000 Citrix devices vulnerable to new exploited RCE flaw

More than 28,200 Citrix instances are vulnerable to a critical remote code execution vulnerability tracked as CVE-2025-7775 that is already…

Security

3 Min Read

August 28, 2025

Global Salt Typhoon hacking campaigns linked to Chinese tech firms

The U.S. National Security Agency (NSA), the UK’s National Cyber Security Centre (NCSC), and partners from over a dozen countries have…

Security

2 Min Read

August 28, 2025

IT system supplier cyberattack impacts 200 municipalities in Sweden

A cyberattack on Miljödata, an IT systems supplier for roughly 80% of Sweden’s municipal systems, has caused accessibility problems…

Security

3 Min Read

August 28, 2025

FreePBX servers hacked via zero-day, emergency fix released

The Sangoma FreePBX Security Team is warning about an actively exploited FreePBX zero-day vulnerability that impacts systems with the…

Security

2 Min Read

August 28, 2025

Experimental PromptLock ransomware uses AI to encrypt, steal data

Threat researchers discovered the first AI-powered ransomware, called PromptLock, that uses Lua scripts to steal and encrypt data on Windows,…

Security

3 Min Read

August 28, 2025

Storm-0501 hackers shift to ransomware attacks in the cloud

Microsoft warns that a threat actor tracked as Storm-0501 has evolved its operations, shifting away from encrypting devices with ransomware to…

3 Min Read

August 28, 2025

Blind Eagle’s Five Clusters Target Colombia Using RATs, Phishing Lures, and Dynamic DNS Infra

Cybersecurity researchers have discovered five distinct activity clusters linked to a persistent threat actor known as Blind Eagle between May…

3 Min Read

August 28, 2025

Salesloft OAuth Breach via Drift AI Chat Agent Exposes Salesforce Customer Data

A widespread data theft campaign has allowed hackers to breach sales automation platform Salesloft to steal OAuth and refresh tokens…

3 Min Read

August 28, 2025

The 5 Golden Rules of Safe AI Adoption

Employees are experimenting with AI at record speed. They are drafting emails, analyzing data, and transforming the workplace. The problem is…

Malware

3 Min Read

August 28, 2025

ShadowSilk Hits 35 Organizations in Central Asia and APAC Using Telegram Bots

A threat activity cluster known as ShadowSilk has been attributed to a fresh set of attacks targeting government entities within Central Asia…

4 Min Read

August 28, 2025

Anthropic Disrupts AI-Powered Cyberattacks Automating Theft and Extortion Across Critical Sectors

Anthropic on Wednesday revealed that it disrupted a sophisticated operation that weaponized its artificial intelligence (AI)-powered chatbot…

2 Min Read

August 28, 2025

300k+ Plex Media Server instances still vulnerable to attack via CVE-2025-34158

Over 300,000 internet-facing Plex Media Server instances are still vulnerable to attack via CVE-2025-34158, a critical vulnerability for which…

Explore Trending Topics