Latest Tech News

Stay updated with the latest in technology, AI, cybersecurity, and more

Filtered by: attack Clear Filter

WinRAR zero-day exploited to plant malware on archive extraction

bleepingcomputer.com Unknown 2025-12-01 00:42:02

A recently fixed WinRAR vulnerability tracked as CVE-2025-8088 was exploited as a zero-day in phishing attacks to install the RomCom malware. The flaw is a directory traversal vulnerability that was fixed in WinRAR 7.13, which allows specially crafted archives to extract files into a file path selected by the attacker. "When extracting a file, previous versions of WinRAR, Windows versions of RAR, UnRAR, portable UnRAR source code and UnRAR.dll can be tricked into using a path, defined in a spe

Topics: attacks rar romcom unrar winrar
Read More
Shop Amazon

WinRAR zero-day flaw exploited by RomCom hackers in phishing attacks

bleepingcomputer.com Unknown 2025-12-01 06:42:02

A recently fixed WinRAR vulnerability tracked as CVE-2025-8088 was exploited as a zero-day in phishing attacks to install the RomCom malware. The flaw is a directory traversal vulnerability that was fixed in WinRAR 7.13, which allows specially crafted archives to extract files into a file path selected by the attacker. "When extracting a file, previous versions of WinRAR, Windows versions of RAR, UnRAR, portable UnRAR source code and UnRAR.dll can be tricked into using a path, defined in a spe

Topics: attacks rar romcom unrar winrar
Read More
Shop Amazon

Flipper Zero dark web firmware bypasses rolling code security

news.ycombinator.com Written By 2025-12-01 09:10:42

Over on YouTube Talking Sasquach has recently tested custom firmware for the Flipper Zero that can entirely break the rolling code security system used on most modern vehicles. Rolling code security works by using a synchronized algorithm between a transmitter and receiver to generate a new, unique code for each transmission, preventing replay attacks and unauthorized access. In the past we've discussed an attack against rolling code security systems called RollJam, which works by jamming the o

Topics: attack code keyfob rolling works
Read More
Shop Amazon

Flipper Zero DarkWeb Firmware Bypasses Rolling Code Security

news.ycombinator.com Written By 2025-12-03 21:10:42

Over on YouTube Talking Sasquach has recently tested custom firmware for the Flipper Zero that can entirely break the rolling code security system used on most modern vehicles. Rolling code security works by using a synchronized algorithm between a transmitter and receiver to generate a new, unique code for each transmission, preventing replay attacks and unauthorized access. In the past we've discussed an attack against rolling code security systems called RollJam, which works by jamming the o

Topics: attack code keyfob rolling works
Read More
Shop Amazon

Google discovered a new scam—and also fell victim to it

arstechnica.com Unknown 2025-12-04 02:05:34

In June, Google said it unearthed a campaign that was mass-compromising accounts belonging to customers of Salesforce. The means: an attacker pretending to be someone in the customer's IT department feigning some sort of problem that required immediate access to the account. Two months later, Google has disclosed that it, too, was a victim. The series of hacks are being carried out by financially motivated threat actors out to steal data in hopes of selling it back to the targets at sky-high pr

Topics: access attackers campaign data salesforce
Read More
Shop Amazon

Data breach at French telecom giant Bouygues affects millions of customers

techcrunch.com Zack Whittaker 2025-12-05 11:45:12

Bouygues Telecom, the third-largest phone carrier in France, has confirmed a cyberattack and data breach affecting millions of its customers. In a statement posted to its website, the telecommunications giant said the hack allowed the intruders to access the personal information on 6.4 million customer accounts. Bouygues said it detected the cyberattack on August 4, but did not give a timeframe for when the breach was remediated. In a separate page dedicated to victims of the cyberattack, Bouy

Topics: bouygues customers cyberattack data said
Read More
Shop Amazon

Here’s how deepfake vishing attacks work, and why they can be hard to detect

arstechnica.com Unknown 2025-12-06 03:00:02

By now, you’ve likely heard of fraudulent calls that use AI to clone the voice of people the call recipient knows. Often, the result is what sounds like a grandchild, CEO, or work colleague you’ve known for years reporting an urgent matter requiring immediate action, saying wiring money, divulging login credentials, or visiting a malicious website. Researchers and government officials have been warning of the threat for years, with the Cybersecurity and Infrastructure Security Agency saying in

Topics: attacks group real time voice
Read More
Shop Amazon

A Single Poisoned Document Could Leak ‘Secret’ Data Via ChatGPT

wired.com Matt Burgess 2025-12-06 06:30:00

The latest generative AI models are not just stand-alone text-generating chatbots—instead, they can easily be hooked up to your data to give personalized answers to your questions. OpenAI’s ChatGPT can be linked to your Gmail inbox, allowed to inspect your GitHub code, or find appointments in your Microsoft calendar. But these connections have the potential to be abused—and researchers have shown it can take just a single “poisoned” document to do so. New findings from security researchers Mich

Topics: attack bargury connectors data openai
Read More
Shop Amazon

Akira ransomware abuses CPU tuning tool to disable Microsoft Defender

bleepingcomputer.com Unknown 2025-12-06 21:15:57

Akira ransomware is abusing a legitimate Intel CPU tuning driver to turn off Microsoft Defender in attacks from security tools and EDRs running on target machines. The abused driver is 'rwdrv.sys' (used by ThrottleStop), which the threat actors register as a service to gain kernel-level access. This driver is likely used to load a second driver, 'hlpdrv.sys,' a malicious tool that manipulates Windows Defender to turn off its protections. This is a 'Bring Your Own Vulnerable Driver' (BYOVD) at

Topics: akira attacks driver ransomware sys
Read More
Shop Amazon

Google suffers data breach in ongoing Salesforce data theft attacks

news.ycombinator.com Unknown 2025-12-08 02:04:13

Google is the latest company to suffer a data breach in an ongoing wave of Salesforce CRM data theft attacks conducted by the ShinyHunters extortion group. In June, Google warned that a threat actor they classify as 'UNC6040' is targeting companies' employees in voice phishing (vishing) social engineering attacks to breach Salesforce instances and download customer data. This data is then used to extort companies into paying a ransom to prevent the data from being leaked. In a brief update to

Topics: actor attacks data google threat
Read More
Shop Amazon

Google suffers data breach in ongoing Salesforce data theft attacks

bleepingcomputer.com Unknown 2025-12-08 06:51:14

Google is the latest company to suffer a data breach in an ongoing wave of Salesforce CRM data theft attacks conducted by the ShinyHunters extortion group. In June, Google warned that a threat actor they classify as 'UNC6040' is targeting companies' employees in voice phishing (vishing) social engineering attacks to breach Salesforce instances and download customer data. This data is then used to extort companies into paying a ransom to prevent the data from being leaked. In a brief update to

Topics: actor attacks data google threat
Read More
Shop Amazon

Pandora confirms data breach amid ongoing Salesforce data theft attacks

bleepingcomputer.com Unknown 2025-12-09 06:16:39

Danish jewelry giant Pandora has disclosed a data breach after its customer information was stolen in the ongoing Salesforce data theft attacks. Pandora is one of the largest jewellery brands in the world, with 2,700 locations and over 37,000 employees. "We are writing to inform you that your contact information was accessed by an unauthorized party through a third-party platform we use," reads a Pandora data breach notification sent to customers. "We stopped the access and have further stren

Topics: attacks companies data pandora salesforce
Read More
Shop Amazon

Voice phishers strike again, this time hitting Cisco

arstechnica.com Unknown 2025-12-10 02:28:10

Cisco said that one of its representatives fell victim to a voice phishing attack that allowed threat actors to download profile information belonging to users of a third-party customer relationship management system. “Our investigation has determined that the exported data primarily consisted of basic account profile information of individuals who registered for a user account on Cisco.com,” the company disclosed. Information included names, organization names, addresses, Cisco assigned user I

Topics: account actors attacks cisco information
Read More
Shop Amazon

SonicWall urges admins to disable SSLVPN amid rising attacks

bleepingcomputer.com Unknown 2025-12-11 17:28:38

SonicWall has warned customers to disable SSLVPN services due to ransomware gangs potentially exploiting an unknown security vulnerability in SonicWall Gen 7 firewalls to breach networks over the past few weeks. The warning comes after Arctic Wolf Labs reported on Friday that it had observed multiple Akira ransomware attacks, likely using a SonicWall zero-day vulnerability, since July 15th. "The initial access methods have not yet been confirmed in this campaign," the Arctic Wolf Labs research

Topics: attacks day sonicwall vpn vulnerability
Read More
Shop Amazon

Fashion giant Chanel hit in wave of Salesforce data theft attacks

bleepingcomputer.com Unknown 2025-12-12 11:54:17

French fashion giant Chanel is the latest company to suffer a data breach in an ongoing wave of Salesforce data theft attacks. Chanel says the breach was first detected on July 25th after threat actors gained access to a Chanel database hosted at a third-party service provider, as first reported by WWD. The breach only impacted customers in the United States and exposed personal contact information. "Based on the findings of the investigation, the data obtained by the unauthorized external pa

Topics: attacks chanel customers data salesforce
Read More
Shop Amazon

Margot Robbie May Be Our New Attacking 50 Foot Woman

gizmodo.com Justin Carter 2025-12-11 11:00:43

In 2024, we learned Tim Burton was being eyed to direct a remake of Attack of the 50 Foot Woman for Warner Bros. from a script by Gillian Flynn. Now, the director may have found his lead in fellow WB alum Margot Robbie. Per Variety, the Barbie actress is in “early conversations” to headline the film, which tells the story of a wealthy heiress who becomes giant-sized after meeting an alien. Her next move, upon realizing her new stature, is to enact some payback on her cheating husband. Should sh

Topics: 50 attack remake robbie woman
Read More
Shop Amazon

SonicWall firewall devices hit in surge of Akira ransomware attacks

bleepingcomputer.com Unknown 2025-12-15 11:28:20

SonicWall firewall devices have been increasingly targeted since late July in a surge of Akira ransomware attacks, potentially exploiting a previously unknown security vulnerability, according to cybersecurity company Arctic Wolf. Akira emerged in March 2023 and quickly claimed many victims worldwide across various industries. Over the last two years, Akira has added over 300 organizations to its dark web leak portal and claimed responsibility for multiple high-profile victims, including Nissan

Topics: arctic attacks sonicwall vulnerability wolf
Read More
Shop Amazon

St. Paul, MN, was hacked so badly that the National Guard has been deployed

arstechnica.com Unknown 2025-12-18 11:47:37

Hacking attacks—many using ransomware—now hit US cities every few days. They are expensive to mitigate and extremely disruptive. Abilene, Texas, for instance, had 477 GB of data stolen this spring. The city refused to pay the requested ransom and instead decided to replace every server, desktop, laptop, desk telephone, and storage device. This has required a "temporary return to pen-and-paper systems" while the entire city network is rebuilt, but at least Abilene was insured against such an atta

Topics: abilene attack carter city mitigate
Read More
Shop Amazon

ShinyHunters behind Salesforce data theft attacks at Qantas, Allianz Life, and LVMH

bleepingcomputer.com Unknown 2025-12-20 10:52:39

A wave of data breaches impacting companies like Qantas, Allianz Life, LVMH, and Adidas has been linked to the ShinyHunters extortion group, which has been using voice phishing attacks to steal data from Salesforce CRM instances. In June, Google's Threat Intelligence Group (GTIG) warned that threat actors tracked as UNC6040 were targeting Salesforce customers in social engineering attacks. In these attacks, the threat actors impersonated IT support staff in phone calls to targeted employees, a

Topics: attacks bleepingcomputer data salesforce threat
Read More
Shop Amazon

St. Paul, MN was hacked so badly that the National Guard has been deployed

arstechnica.com Unknown 2025-12-20 11:47:37

Hacking attacks—many using ransomware—now hit US cities every few days. They are expensive to mitigate and extremely disruptive. Abilene, Texas, for instance, had 477 GB of data stolen this spring. The city refused to pay the requested ransom and instead decided to replace every server, desktop, laptop, desk telephone, and storage device. This has required a "temporary return to pen-and-paper systems" while the entire city network is rebuilt, but at least Abilene was insured against such an atta

Topics: abilene attack carter city mitigate
Read More
Shop Amazon

Hackers plant 4G Raspberry Pi on bank network in failed ATM heist

bleepingcomputer.com Unknown 2025-12-21 06:47:52

The UNC2891 hacking group, also known as LightBasin, used a 4G-equipped Raspberry Pi hidden in a bank's network to bypass security defenses in a newly discovered attack. The single-board computer was physically connected to the ATM network switch, creating an invisible channel into the bank's internal network, allowing the attackers to move laterally and deploy backdoors. According to Group-IB, which discovered the intrusion while investigating suspicious activity on the network, the goal of t

Topics: attack bank lightbasin network raspberry
Read More
Shop Amazon

Pro-Ukrainian hackers take credit for attack that snarls Russian flight travel

arstechnica.com Unknown 2025-12-20 17:15:25

Russia’s biggest airline cancelled dozens of flights on Monday following a failure of the state-owned company’s IT systems and, according to a Russian lawmaker and pro-Ukrainian hackers, was the result of a cyberattack, it was widely reported. The airline, Aeroflot, said it cancelled about 40 flights following a “technical failure.” An online departure board for Sheremetyevo airport showed dozens of others were delayed. The cancellations and delays hobbled traffic throughout Russia and left tra

Topics: airline cyberattack russia russian said
Read More
Shop Amazon

Telecom giant Orange warns of disruption amid ongoing cyberattack

techcrunch.com Lorenzo Franceschi-Bicchierai 2025-12-24 06:00:28

Orange, a French telecommunications giant and one of the largest phone providers in the world, announced on Monday that it was the victim of an unspecified cyberattack. In the announcement, the company said that it detected a cyberattack “on one of its information systems” on July 25, and that it proceeded to “isolate potentially affected services and minimize any impact.” The move to isolate affected systems, Orange added, caused disruptions to some of the company’s platforms, as well as busi

Topics: affected company cyberattack data orange
Read More
Shop Amazon

French telecom giant Orange discloses cyberattack

bleepingcomputer.com Unknown 2025-12-24 11:28:08

Orange, a French telecommunications company and one of the world's largest telecom operators, revealed that it detected a breached system on its network on Friday. The compromised system was discovered and isolated from the rest of the network by Orange Cyberdefense, the company's cybersecurity business unit, on July 25. This has led to some operational disruptions, primarily affecting French customers, which are expected to be gradually resolved by Wednesday morning, July 30. "On Friday, July

Topics: company cyberattack orange services telecom
Read More
Shop Amazon

How attackers are still phishing "phishing-resistant" authentication

bleepingcomputer.com Unknown 2025-12-24 16:50:59

As awareness grows around many MFA methods being “phishable” (i.e. not phishing resistant), passwordless, FIDO2-based authentication methods (aka. passkeys) like YubiKeys, Okta FastPass, and Windows Hello are being increasingly advocated. This is a good thing. The most commonly used MFA factors (like SMS codes, push notifications, and app-based OTP) are routinely bypassed, with modern reverse-proxy “Attacker-in-the-Middle” phishing kits the most common method (and the standard choice for phishi

Topics: access attacker attacks mfa phishing
Read More
Shop Amazon

CISA flags PaperCut RCE bug as exploited in attacks, patch now

bleepingcomputer.com Unknown 2025-12-26 21:59:36

CISA warns that threat actors are exploiting a high-severity vulnerability in PaperCut NG/MF print management software, which can allow them to gain remote code execution in cross-site request forgery (CSRF) attacks. The software developer says that more than 100 million users use its products across over 70,000 organizations worldwide. The security flaw (tracked as CVE-2023-2533 and patched in June 2023) can allow an attacker to alter security settings or execute arbitrary code if the target

Topics: 2023 attacks cisa cve papercut
Read More
Shop Amazon

Flights grounded as Russia’s largest airline Aeroflot hacked and systems ‘destroyed’

techcrunch.com Zack Whittaker 2025-12-27 05:33:35

In Brief Flights across Russia have been grounded after a cyberattack hit the country’s largest airline, Aeroflot, on Monday. Details of the cyberattack remain limited, but a pro-Ukrainian hacker group known for targeting Russian organizations called Silent Crow took credit for the cyberattack alongside Belarusian hackers, citing Russia’s occupation of Ukraine. The group said in a Telegram post, seen by TechCrunch, that it had taken control of Aeroflot’s critical systems, including terabytes

Topics: aeroflot cyberattack flights group russian
Read More
Shop Amazon

Flights grounded as Russia’s largest airline Aeroflot hit by cyberattack

techcrunch.com Zack Whittaker 2025-12-27 11:33:35

In Brief Flights across Russia have been grounded after a cyberattack hit the country’s largest airline, Aeroflot, on Monday. Details of the cyberattack remain limited, but a pro-Ukrainian hacker group known for targeting Russian organizations called Silent Crow took credit for the cyberattack alongside Belarusian hackers, citing Russia’s occupation of Ukraine. The group said in a Telegram post, seen by TechCrunch, that it had taken control of Aeroflot’s critical systems, including terabytes

Topics: aeroflot cyberattack flights group russian
Read More
Shop Amazon

Scattered Spider is running a VMware ESXi hacking spree

bleepingcomputer.com Unknown 2025-12-27 03:05:50

Scattered Spider hackers have been aggressively targeting virtualized environments by attacking VMware ESXi hypervisors at U.S. companies in the retail, airline, transportation, and insurance sectors. According to the Google Threat Intelligence Group (GITG), the attackers keep employing their usual tactics that do not include vulnerability exploits but rely on perfectly executed social engineering "to bypass even mature security programs." A Scattered Spider attack The researchers say that th

Topics: access attack scattered spider threat
Read More
Shop Amazon

7 Things Wuchang Fallen Feathers Doesn't Tell You

cnet.com See Full Bio 2025-12-27 11:00:00

Wuchang: Fallen Feathers isn't a revolutionary Soulslike title that aims to change the subgenre, but it's catching the attention of many players right now, in part because it's available on day 1 on Xbox Game Pass. Wuchang, however, does have some issues with underexplaining certain mechanics, which is giving players a little trouble. Wuchang makes some changes to the Soulslike formula established by FromSoftware, the developers of Demon's Souls and Dark Souls. Those changes aren't laid out so

Topics: attacks game like weapon wuchang
Read More
Shop Amazon
Trending Topics
Hot Now
ai 3669 apple 3041 new 2417 google 2036 content 1735
Popular
like 1506 company 1432 pro 1338 iphone 1179 app 1133 zdnet 1115 said 1072 data 1053 does 910 reviews 895
Emerging
editorial 874 amazon 860 game 811 samsung 778 phone 768 pixel 761 android 743 just 723 users 689 available 686
About GoKawiil

GoKawiil is a project by nerdhub.co that curates technology news from trusted sources. We built this site to provide a cleaner, more mobile-friendly experience without intrusive ads or heavy JavaScript.

Privacy

Your privacy matters. GoKawiil doesn't use Google Analytics or Facebook Pixel. The only tracking occurs through affiliate links to Amazon.

Advertising

Interested in advertising? Contact us at [email protected]