US and Dutch Police dismantle VerifTools fake ID marketplace US and Dutch authorities shut down VerifTools, a major fake ID marketplace selling documents to bypass KYC checks and access accounts. Law enforcement in the US and the Netherlands dismantled VerifTools, a major fake ID marketplace selling ID documents to bypass KYC checks and gain unauthorized … Ler mais
WhatsApp has patched a security vulnerability in its iOS and macOS messaging clients that was exploited in targeted zero-day attacks. The company says this zero-click flaw (tracked as CVE-2025-55177) affects WhatsApp for iOS prior to version 2.25.21.73, WhatsApp Business for iOS v2.25.21.78, and WhatsApp for Mac v2.25.21.78. “Incomplete authorization of linked device synchronization messages in … Ler mais
Starting in October, Microsoft will enforce multi-factor authentication (MFA) for all Azure resource management actions to protect Azure clients from unauthorized access attempts. This change is part of the company’s Secure Future Initiative (SFI), will be applied gradually across tenants worldwide, and it requires users to enable MFA on Azure CLI, PowerShell, SDKs, and APIs … Ler mais
A large-scale spear-phishing campaign targeting South Korean government and intelligence staff has exploited a national intelligence newsletter to lure victims. In a new report published on August 29, cybersecurity firm Seqrite revealed that APT37, a nation-state hacking group believed to be backed by North Korea, was behind a large-scale spear phishing campaign. The effort, dubbed … Ler mais
Microsoft has found no link between theAugust 2025 KB5063878 security update and customer reports of failure and data corruption issues affecting solid-state drives (SSDs) and hard disk drives (HDDs). Redmond first told BleepingComputer last week that it is aware of users reporting SSD failures after installing this month’s Windows 11 24H2 security update. In a … Ler mais
Uma campanha clandestina na qual os atores de ameaças estão armar um documento de PDF de aparência legítima, intitulada “국가정보연구회 소식지 (52 호)” (Newsletter da National Intelligence Research Society-Edição 52), juntamente com um arquivo de atalho de janelas malicioso (LNK) chamado 국가정보연구회 (52 호) .pdf.lnk. Os atacantes distribuem os dois arquivos juntos – no mesmo … Ler mais
Uma vulnerabilidade recentemente descoberta no mercado do Visual Studio Code (VS Code) permitiu que atores maliciosos sequestrassem nomes de extensão descontinuados e deslizassem malware passado desenvolvedores desavisados. Em junho, pesquisadores de reversor (RL) descoberto Uma nova extensão maliciosa, ahbanc.shiba, que tinha o mesmo identificador “shiba” que uma extensão compatível com ransomware removida em março-apesar da … Ler mais
Um backdoor sofisticado no editor do AppSuite PDF que permite que os atores da ameaça executem comandos arbitrários em sistemas Windows comprometidos. Inicialmente sinalizada como um programa potencialmente indesejado devido ao seu comportamento agressivo de instalação, a verdadeira natureza da Appsuite era revelado Quando seus componentes maliciosos foram desbotados e analisados. Os atores de ameaças … Ler mais
Experts warn of actively exploited FreePBX zero-day Sangoma warns of an actively exploited FreePBX zero-day affecting systems with publicly exposed admin control panels. The Sangoma FreePBX Security Team addressed an actively exploited FreePBX zero-day vulnerability, tracked as CVE-2025-57819 (CVSS score of 10.0), impacting systems with an internet-facing administrator control panel (ACP). FreePBXis an open-source telephony … Ler mais
A threat actor released malicious updates on the npm package repository for components of a tool popular among developers intending to steal cryptocurrencies and key developer data. According to a report by StepSecurity, the attack started in the morning of August 26, when version 21.5.0 of Nx was released to the npm registry. Nx is … Ler mais
