Latest Tech News

Stay updated with the latest in technology, AI, cybersecurity, and more

Filtered by: attack Clear Filter

Supply-chain attacks on open source software are getting out of hand

arstechnica.com Unknown 2025-12-24 17:50:37

It has been a busy week for supply-chain attacks targeting open source software available in public repositories, with successful breaches of multiple developer accounts that resulted in malicious packages being pushed to unsuspecting users. The latest target, according to security firm Socket, is JavaScript code available on repository npm. A total of 10 packages available from the npm page belonging to global talent agency Toptal contained malware and were downloaded by roughly 5,000 users be

Topics: attack github npm packages publishing
Read More
Shop Amazon

Open source repositories are seeing a rash of supply-chain attacks

arstechnica.com Unknown 2025-12-24 23:50:37

It has been a busy week for supply-chain attacks targeting open source software available in public repositories, with successful breaches of multiple developer accounts that resulted in malicious packages being pushed to unsuspecting users. The latest target, according to security firm Socket, is JavaScript code available on repository npm. A total of 10 packages available from the npm page belonging to global talent agency Toptal contained malware and were downloaded by roughly 5,000 users be

Topics: attack github npm packages socket
Read More
Shop Amazon

Google spoofed via DKIM replay attack: A technical breakdown

news.ycombinator.com Gerasim Hovhannisyan 2025-12-25 23:28:40

This morning started with a call from a friend – clearly shaken. He had just received an alarming email that looked strikingly legitimate. Unsure whether it was safe or a scam, he reached out to me for help verifying its authenticity. What followed was a deep dive into the message to determine whether it was a genuine communication or a cleverly crafted phishing attempt. The email was convincing enough to create real concern, and that’s what makes this story worth sharing. This was the email:

Topics: attacker com dkim email google
Read More
Shop Amazon

Microsoft: SharePoint flaws exploited in Warlock ransomware attacks

bleepingcomputer.com Unknown 2025-12-26 23:53:14

A China-based hacking group is deploying Warlock ransomware on Microsoft SharePoint servers vulnerable to widespread attacks targeting the recently patched ToolShell zero-day exploit chain. Non-profit security organization Shadowserver is currently tracking over 420 SharePoint servers that are exposed online and remain vulnerable to these ongoing attacks. "Although Microsoft has observed this threat actor deploying Warlock and Lockbit ransomware in the past, Microsoft is currently unable to co

Topics: attacks department microsoft ransomware security
Read More
Shop Amazon

Shattering the rotation illusion: The attacker view and AWSKeyLockdown (2024)

news.ycombinator.com Unknown 2025-12-27 20:07:17

PDF Report Shattering the Rotation Illusion: How Quickly Leaked AWS Keys are Exploited Download Now -> Through the Attacker’s Eyes: A New Era of NHI Security This final installment in our blog series brings together everything we’ve uncovered about leaked AWS Access Keys—how attackers exploit them, why traditional security measures fall short, and what organizations can do to protect themselves. Over the series, we explored real-world scenarios across various platforms: GitHub and GitLab, Pac

Topics: access attackers aws exposed keys
Read More
Shop Amazon

Microsoft: SharePoint servers also targeted in ransomware attacks

bleepingcomputer.com Unknown 2025-12-28 17:53:14

A China-based hacking group is deploying Warlock ransomware on Microsoft SharePoint servers vulnerable to widespread attacks targeting the recently patched ToolShell zero-day exploit chain. Non-profit security organization Shadowserver is currently tracking over 420 SharePoint servers that are exposed online and remain vulnerable to these ongoing attacks. "Although Microsoft has observed this threat actor deploying Warlock and Lockbit ransomware in the past, Microsoft is currently unable to co

Topics: attacks department microsoft ransomware security
Read More
Shop Amazon

SonicWall urges admins to patch critical RCE flaw in SMA 100 devices

bleepingcomputer.com Unknown 2025-12-28 20:17:39

SonicWall urges customers to patch SMA 100 series appliances against a critical authenticated arbitrary file upload vulnerability that can let attackers gain remote code execution. The security flaw (tracked as CVE-2025-40599) is caused by an unrestricted file upload weakness in the devices' web management interfaces, which can allow remote threat actors with administrative privileges to upload arbitrary files to the system. "SonicWall strongly recommends that users of the SMA 100 series produ

Topics: 2025 attacks cve sma sonicwall
Read More
Shop Amazon

Shattering the Rotation Illusion: The Attacker View & AWSKeyLockdown

news.ycombinator.com Unknown 2025-12-28 20:07:17

PDF Report Shattering the Rotation Illusion: How Quickly Leaked AWS Keys are Exploited Download Now -> Through the Attacker’s Eyes: A New Era of NHI Security This final installment in our blog series brings together everything we’ve uncovered about leaked AWS Access Keys—how attackers exploit them, why traditional security measures fall short, and what organizations can do to protect themselves. Over the series, we explored real-world scenarios across various platforms: GitHub and GitLab, Pac

Topics: access attackers aws exposed keys
Read More
Shop Amazon

US nuclear weapons agency hacked in Microsoft SharePoint attacks

bleepingcomputer.com Unknown 2025-12-30 08:14:25

Unknown threat actors have breached the National Nuclear Security Administration's network in attacks exploiting a recently patched Microsoft SharePoint zero-day vulnerability chain. NNSA is a semi-autonomous U.S. government agency part of the Energy Department that maintains the country's nuclear weapons stockpile and is also tasked with responding to nuclear and radiological emergencies within the United States and abroad. A Department of Energy spokesperson confirmed in a statement that hac

Topics: attacks day department energy microsoft
Read More
Shop Amazon

US nuclear weapons agency reportedly hacked in SharePoint attacks

bleepingcomputer.com Unknown 2025-12-30 14:14:25

Unknown threat actors have reportedly breached the National Nuclear Security Administration's network in attacks exploiting a recently patched Microsoft SharePoint zero-day vulnerability chain. NNSA is a semi-autonomous U.S. government agency part of the Energy Department that maintains the country's nuclear weapons stockpile and is also tasked with responding to nuclear and radiological emergencies within the United States and abroad. A Department of Energy spokesperson confirmed in a stateme

Topics: attacks compromised day department microsoft
Read More
Shop Amazon

NPM package ‘is’ with 2.8M weekly downloads infected devs with malware

bleepingcomputer.com Unknown 2025-12-30 14:57:06

The popular NPM package 'is' has been compromised in a supply chain attack that injected backdoor malware, giving attackers full access to compromised devices. This occurred after maintainer accounts were hijacked via phishing, followed by unauthorized owner changes that went unnoticed for several hours, potentially compromising many developers who downloaded the new releases. The 'is' package is a lightweight JavaScript utility library that provides a wide variety of type checking and value v

Topics: attack compromised malware npm package
Read More
Shop Amazon

New UK law would ban ransomware payments by publicly funded orgs

engadget.com Unknown 2026-01-01 04:08:51

The British government has announced plans to move forward with a law that would bar public organizations from paying off ransomware attackers. The proposed legislation would add schools, town councils, National Health Service (NHS) hospitals and critical infrastructure managers to a ban which already applies to the national government. The logic behind banning payments is simple. If cybercriminals know a ransomware attack against a UK school or hospital won't get them paid, they'll look somewh

Topics: attacks ban government ransom ransomware
Read More
Shop Amazon

Apple alerted Iranians to iPhone spyware attacks, say researchers

techcrunch.com Lorenzo Franceschi-Bicchierai 2026-01-01 09:57:48

Apple notified more than a dozen Iranians in recent months that their iPhones had been targeted with government spyware, according to security researchers. Miian Group, a digital rights organization that focuses on Iran, and Hamid Kashfi, an Iranian cybersecurity researcher who lives in Sweden, said they spoke with several Iranians who received the notifications in the last year. Bloomberg first wrote about these spyware notifications. Miaan Group published a report on Tuesday on the state of

Topics: apple attacks notifications said spyware
Read More
Shop Amazon

CISA and FBI warn of escalating Interlock ransomware attacks

bleepingcomputer.com Unknown 2026-01-01 23:36:42

CISA and the FBI warned on Tuesday of increased Interlock ransomware activity targeting businesses and critical infrastructure organizations in double extortion attacks. Today's advisory was jointly authored with the Department of Health and Human Services (HHS) and the Multi-State Information Sharing and Analysis Center (MS-ISAC) and it provides network defenders with indicators of compromise (IOCs) collected during investigations of incidents as recent as June 2025, along with mitigation meas

Topics: access attacks interlock networks ransomware
Read More
Shop Amazon

Report: Apple alerted Iranians to spyware attacks in lead-up to war with Israel

9to5mac.com Ryan Christoffel 2026-01-02 14:24:44

You may have never heard of them, but Apple sends “threat notifications” to users when it believes they’re being targeted by cyber attacks. Earlier this year that happened with several Iranians in the lead-up to the Iran-Israel war, per a new Bloomberg report. Here are the details. Apple threat notifications were sent to over a dozen Iranian cyberattack victims Patrick Howell O’Neill writes at Bloomberg: More than a dozen Iranians’ mobile phones were targeted with spyware in the months prior

Topics: apple attacks notifications threat users
Read More
Shop Amazon

MakeShift: Security Analysis of Shimano Di2 Wireless Gear Shifting in Bicycles

news.ycombinator.com Maryam Motallebighomi 2025-12-29 21:08:40

The bicycle industry is increasingly adopting wireless gear-shifting technology for its advantages in performance and design. In this paper, we explore the security of these systems, focusing on Shimano's Di2 technology, a market leader in the space. Through a blackbox analysis of Shimano's proprietary wireless protocol, we uncovered the following critical vulnerabilities: (1) A lack of mechanisms to prevent replay attacks that allows an attacker to capture and retransmit gear shifting commands;

Topics: attacker attacks bike gear shifting
Read More
Shop Amazon

Over 1,000 CrushFTP servers exposed to ongoing hijack attacks

bleepingcomputer.com Unknown 2026-01-06 05:34:21

Over 1,000 CrushFTP instances currently exposed online are vulnerable to hijack attacks that exploit a critical security bug, providing admin access to the web interface. The security vulnerability (CVE-2025-54309) is due to mishandled AS2 validation and impacts all CrushFTP versions below 10.8.5 and 11.3.4_23. The vendor tagged the flaw as actively exploited in the wild on July 19th, noting that attacks may have begun earlier, although it has yet to find evidence to confirm this. "July 18th,

Topics: 2025 attacks crushftp cve data
Read More
Shop Amazon

Phishers have found a way to downgrade—not bypass—FIDO MFA

arstechnica.com Unknown 2026-01-06 06:07:21

Researchers recently reported encountering a phishing attack in the wild that bypasses a multifactor authentication scheme based on FIDO (Fast Identity Online), the industry-wide standard being adopted by thousands of sites and enterprises. If true, the attack, reported in a blog post Thursday by security firm Expel, would be huge news, since FIDO is widely regarded as being immune to credential phishing attacks. After analyzing the Expel write-up, I’m confident that the attack doesn’t bypass F

Topics: attack device expel fido security
Read More
Shop Amazon

A surveillance vendor was caught exploiting a new SS7 attack to track people’s phone locations

techcrunch.com Zack Whittaker 2026-01-06 23:45:07

Security researchers say they have caught a surveillance company in the Middle East exploiting a new attack capable of tricking phone operators into disclosing a cell subscriber’s location. The attack relies on bypassing security protections that carriers have put in place to protect intruders from accessing SS7, or Signaling System 7, a private set of protocols used by the global phone carriers to route subscribers’ calls and text messages around the world. SS7 also allows the carriers to req

Topics: attack carriers phone ss7 surveillance
Read More
Shop Amazon

Hacker steals $27 million in BigONE exchange crypto breach

bleepingcomputer.com Unknown 2026-01-10 04:54:26

Cryptocurrency exchange BigONE disclosed that hackers stole various digital assets valued at $27 million in an attack yesterday. The platform announced that private keys and user data remain unaffected by the intrusion and any customers that incurred losses will be reimbursed from available reserves. “In the early hours of July 16, BigONE detected abnormal movements involving a portion of the platform’s assets,” reads the announcement. “Upon investigation, it was confirmed to be the result of

Topics: assets attack bigone stolen year
Read More
Shop Amazon

Co-op confirms data of 6.5 million members stolen in cyberattack

bleepingcomputer.com Unknown 2026-01-11 18:29:27

UK retailer Co-op has confirmed that personal data of 6.5 million members was stolen in the massive cyberattack in April that shut down systems and caused food shortages in its grocery stores. Co-op (short for the Co-operative Group) is one of the United Kingdom's largest consumer co-operatives, operating food stores, funeral services, insurance, and legal services. It is owned by millions of members who receive discounts on services and share in the company's governance. Co-op's CEO, Shirine

Topics: actors attack data members op
Read More
Shop Amazon

Europol disrupts pro-Russian NoName057(16) DDoS hacktivist group

bleepingcomputer.com Unknown 2026-01-13 09:07:30

An international law enforcement operation dubbed "Operation Eastwood" has targeted the infrastructure and members of the pro-Russian hacktivist group NoName057(16), responsible for distributed denial-of-service (DDoS) attacks across Europe, Israel, and Ukraine. Operation Eastwood was led by Europol and Eurojust with support from 12 countries. It took place on July 15, 2025, and targeted the systems and individuals behind the group's activities. NoName057(16) is a pro-Russian hacking group tha

Topics: attacks germany group noname057 operation
Read More
Shop Amazon

Co-op boss says sorry to 6.5m people who had data stolen in hack

feeds.bbci.co.uk Unknown 2026-01-14 06:46:18

Co-op boss says sorry to 6.5m people who had data stolen in hack 15 minutes ago Share Save Joe Tidy Cyber correspondent, BBC World Service Imran Rahman-Jones Technology reporter Share Save Getty Images The chief executive of Co-op has confirmed all 6.5 million of its members had their data stolen in a cyber-attack on the retailer in April. "I'm devastated that information was taken. I'm also devastated by the impact that it took on our colleagues as well as they tried to contain all of this,"

Topics: attack bbc data haq information
Read More
Shop Amazon

Interlock ransomware adopts new FileFix attack to push malware

bleepingcomputer.com Unknown 2026-01-15 10:36:30

Hackers have adopted the new technique called 'FileFix' in Interlock ransomware attacks to drop a remote access trojan (RAT) on targeted systems. Interlock ransomware operations have increased over the past months as the threat actor started using the KongTuke web injector (aka 'LandUpdate808') to deliver payloads through compromised websites. This shift in modus operandi was observed by researchers at The DFIR Report and Proofpoint since May. Back then, visitors of compromised sites were prom

Topics: attack file filefix interlock rat
Read More
Shop Amazon

Interlock ransomware adopts FileFix method to deliver malware

bleepingcomputer.com Unknown 2026-01-18 04:36:30

Hackers have adopted the new technique called 'FileFix' in Interlock ransomware attacks to drop a remote access trojan (RAT) on targeted systems. Interlock ransomware operations have increased over the past months as the threat actor started using the KongTuke web injector (aka 'LandUpdate808') to deliver payloads through compromised websites. This shift in modus operandi was observed by researchers at The DFIR Report and Proofpoint since May. Back then, visitors of compromised sites were prom

Topics: attack file filefix interlock rat
Read More
Shop Amazon

Nvidia chips become the first GPUs to fall to Rowhammer bit-flip attacks

arstechnica.com Unknown 2026-01-18 04:25:36

Nvidia is recommending a mitigation for customers of one of its GPU product lines that will degrade performance by up to 10 percent in a bid to protect users from exploits that could let hackers sabotage work projects and possibly cause other compromises. The move comes in response to an attack a team of academic researchers demonstrated against Nvidia’s RTX A6000, a widely used GPU for high-performance computing that’s available from many cloud services. A vulnerability the researchers discove

Topics: attack gpu nvidia researchers rowhammer
Read More
Shop Amazon

Google Gemini flaw hijacks email summaries for phishing

bleepingcomputer.com Unknown 2026-01-19 12:38:00

Google Gemini for Workspace can be exploited to generate email summaries that appear legitimate but include malicious instructions or warnings that direct users to phishing sites without using attachments or direct links. Such an attack leverages indirect prompt injections that are hidden inside an email and obeyed by Gemini when generating the message summary. Despite similar prompt attacks being reported since 2024 and safeguards being implemented to block misleading responses, the technique

Topics: attacks email gemini google malicious
Read More
Shop Amazon

Four arrested in connection with M&S and Co-op cyber-attacks

feeds.bbci.co.uk Unknown 2026-01-25 00:44:30

Four arrested in connection with M&S and Co-op cyber-attacks 17 minutes ago Share Save Joe Tidy Cyber correspondent, BBC World Service Share Save Getty Images / PA Four people have been arrested by police investigating the cyber-attacks that have caused havoc at M&S and the Co-op. The National Crime Agency (NCA) says a 20-year-old woman was arrested in Staffordshire, and three males - aged between 17 and 19 - were detained in London and the West Midlands. They were apprehended on suspicion of

Topics: arrested attacks crime cyber op
Read More
Shop Amazon

Ingram Micro starts restoring systems after ransomware attack

bleepingcomputer.com Unknown 2026-01-26 18:13:50

Ingram Micro has begun restoring systems and business services after suffering a massive SafePay ransomware attack right before the July 4th holiday. Last Thursday, IT distributor and services giant Ingram Micro suffered a global outage, with their website and ordering systems taken offline, and employees told to work from home. Saturday morning, BleepingComputer exclusively reported that a SafePay ransomware attack was behind the outage, with the company confirming a ransomware attack later t

Topics: attack employees ingram micro orders
Read More
Shop Amazon

M&S confirms social engineering led to massive ransomware attack

bleepingcomputer.com Unknown 2026-01-28 14:39:53

M&S confirmed today that the retail outlet's network was initially breached in a "sophisticated impersonation attack" that ultimately led to a DragonForce ransomware attack. M&S chairman Archie Norman revealed this in a hearing with the UK Parliament's Business and Trade Sub-Committee on Economic Security regarding the recent attacks on the retail sector in the country. While Norman did not go into details, he stated that the threat actors impersonated one of the 50,000 people working with the

Topics: actors attack dragonforce ransomware threat
Read More
Shop Amazon
Trending Topics
Hot Now
ai 3619 apple 3000 new 2380 google 2017 content 1724
Popular
like 1486 company 1417 pro 1312 iphone 1144 app 1122 zdnet 1106 said 1057 data 1044 does 904 reviews 890
Emerging
editorial 869 amazon 855 game 806 samsung 772 phone 759 pixel 756 android 741 just 716 users 683 available 682
About GoKawiil

GoKawiil is a project by nerdhub.co that curates technology news from trusted sources. We built this site to provide a cleaner, more mobile-friendly experience without intrusive ads or heavy JavaScript.

Privacy

Your privacy matters. GoKawiil doesn't use Google Analytics or Facebook Pixel. The only tracking occurs through affiliate links to Amazon.

Advertising

Interested in advertising? Contact us at [email protected]