"The driver file is signed with an old, stolen, or leaked digital certificate and registers as a minifilter driver on infected machines," the Russian cybersecurity company said . "Its end-goal is to inject a backdoor trojan into the system processes and provide protection for malicious files, user-mode processes, and registry keys." The final payload deployed as part of the attack is TONESHELL, an implant with reverse shell and downloader capabilities to fetch next-stage malware onto compromi... ... Last week's cyber news in 2025 was not about one big incident.

2 days ago - Rumors of a possible buyout surfaced earlier this month, with the official announcement coming just weeks after Armis announced raising $435 million. ... The personal information of 21,000 customers was stolen after hackers compromised Red Hat’s GitLab instances. ... The cybercriminals attempted to steal $28 million from compromised bank accounts through phishing. ... The leading global conference series for Operations, Control Systems and IT/OT Security professionals to connect on SCADA, DCS PLC and field controller cybersecurity.

A federal court in the Southern District of Florida has accepted guilty pleas from two cybersecurity professionals who used their expertise to conduct ransomware... ... A new wave of GlassWorm malware has emerged, marking a significant shift in targeting strategy from Windows to macOS systems.

Researchers discovered threat activity less than a week after Fortinet disclosed critical vulnerabilities in multiple products.

3 days ago - WorldcategoryChina's Kuaishou shares fall to near five-week low after livestreaming cyberattack · December 23, 2025 · categoryChina's Kuaishou falls to near five-week low on report of cyberattack · December 23, 2025 · LegalcategorySouth ...

Two former employees of cybersecurity incident response companies Sygnia and DigitalMint have pleaded guilty to targeting U.S. companies in BlackCat (ALPHV) ransomware attacks in 2023.

With a new year upon us, software and cybersecurity experts disagree on the utility of software bill of materials — in theory, SBOMs are great, but in practice, they're a mess.

1 week ago - Executives say cybersecurity has outgrown the IT department December 30, 2025

18 November 2024 - Our daily feed provides consumers and business, technology, financial, education and government professionals with the latest news to keep you on the cutting edge of cyber. If there’s something you should know about, then we’re on it. ... Listen! @SteveWoz, Co-Founder of @Apple #Phreaks Out On The History Of #Hacking w/ @CybersecuritySF on the #Cybercrime #Radio #Podcast. https://t.co/MnQMFkjhSO— Steve Morgan (@CybersecuritySF) February 3, 2022 · © 2025 Cybersecurity Ventures. All rights reserved. Federal copyright law prohibits unauthorized reproduction of this content by any means and imposes fines up to $150,000 for violations.

1 week ago - CyberScoop delivers up-to-the-minute breaking cybersecurity news and is the leading public sector media company reaching top leaders

Dr. Lorrie Cranor⁠, Director of the CyLab Security and Privacy Institute at Carnegie Mellon University joins Ann Johnson, Corporate Vice President, Microsoft, on this week's episode of Afternoon Cyber Tea to discuss the critical gap between security design and real-world usability.

December 2, 2024: A week in security (November 25 – December 1)

Stay updated on the latest cyber security news. The Record from Recorded Future News gives exclusive access to leaders, policymakers, and the cyber underground.

2 days ago - feature 1,500 military digital defenders spent the past week cleaning up a series of cyberattacks on fictional island

1 day ago - KPMG predicts a boom focused on cybersecurity spending, talent acquisition, and strategic partnerships.

1 week ago - Latest news on cybersecurity including online standards, hacking awareness, and increasing digital defense.

3 November 2025 - US cybersecurity experts plead guilty to BlackCat ransomware attacks ... https://www.bleepingcomputer.com/news/security/us-cybersecurity-experts-plead-guilty-to-blackcat-alphv-ransomware-attacks/

Accenture research shows deficiency in enterprise cybersecurity strategy and AI-training, with a quarter of under 35s likely to act on phishing links…

Last week, the SLSH Telegram channel featured an offer to recruit and reward “insiders,” employees at large companies who agree to share internal access to their employer’s network for a share of whatever ransom payment is ultimately paid by the victim company. SLSH has solicited insider access previously, but their latest call for disgruntled employees started making the rounds on social media at the same time news broke that the cybersecurity firm Crowdstrike had fired an employee for allegedly sharing screenshots of internal systems with the hacker group (Crowdstrike said their systems were never compromised and that it has turned the matter over to law enforcement agencies).

3 days ago - ... The FCC has announced a ban on foreign-made drones and critical components, citing national security risks. This decision is grounded in the 2025 National Defense Authorization Act (NDAA) and aims to protect U.S.