Cybersecurity News
Stay informed about the latest cybersecurity incidents, vulnerabilities, and threat landscape changes. We cover data breaches, ransomware campaigns, critical CVEs, and regulatory updates – with context on what it means for you and how to protect yourself.
Google: China‑Linked UNC5221 Uses Brickstorm Backdoor to Breach US Organizations Undetected for 393 Days
Google Threat Intelligence reported a long-running espionage campaign in which the China-linked cluster UNC5221 deployed the Brickstorm backdoor to compromise ...
Prompt Injection Shows LLM Agents Can Bypass CAPTCHA: What Security Teams Should Do
Researchers at SPLX, a firm focused on automated security testing for AI systems, demonstrated that manipulating an LLM agent’s context ...
Cloudflare Blocks Record 22.2 Tbps DDoS Burst as IoT Botnets Scale Up
Cloudflare reports neutralizing the most powerful distributed denial‑of‑service event seen to date: a 22.2 Tbps burst peaking at 10.6 billion ...
SystemBC Botnet Weaponizes Vulnerable VPS for High-Bandwidth Proxies
Threat actors operating the SystemBC botnet are systematically compromising vulnerable virtual private servers (VPS) and converting them into high-throughput proxy ...
Fezbox: malicious npm package hides JavaScript payload inside a QR-code image
Researchers at Socket report that the npm package fezbox used an unconventional delivery method: obfuscated JavaScript was embedded inside a ...
Kali Linux 2025.3 Brings Back Nexmon, Restores Raspberry Pi 5 Support, and Boosts NetHunter for Mobile and Car Hacking
Kali has released its third build of the year, Kali Linux 2025.3, focusing on wireless and mobile offensive capabilities. The ...
Raspberry Pi 500+: NVMe Storage, 16GB RAM, and QMK Keyboard — Security Implications and Hardening Guide
Raspberry Pi is doubling down on the “computer-in-a-keyboard” concept with the Raspberry Pi 500+. Beyond a performance bump, the device ...
ShadowV2 Turns Misconfigured Docker and GitHub Codespaces into a DDoS-as-a-Service Platform
Darktrace has profiled ShadowV2, a new DDoS botnet that targets exposed Docker environments and monetizes access through a DDoS‑as‑a‑Service model. ...
Stellantis Confirms Contact Data Exposure Amid Broader Salesforce Ecosystem Threats
Stellantis has disclosed unauthorized access to a third‑party platform that supports its customer service operations in North America. According to ...
Steam removes BlockBlasters after StealC infostealer campaign targeting crypto users
Steam has delisted the game BlockBlasters, published by a developer using the name Genesis Interactive, after researchers uncovered a malicious ...
