Fortinet has released security updates to address two critical vulnerabilities in FortiOS, FortiWeb, FortiProxy, and FortiSwitchManager that could allow attackers to bypass FortiCloud SSO authentication. Threat actors can exploit the two security flaws tracked as CVE-2025-59718 (FortiOS, FortiProxy, FortiSwitchManager) and CVE-2025-59719 (FortiWeb) by abusing improper verification of cryptographi

CVE Number CVE Title CVE-2025-66476 Vim for Windows Uncontrolled Search Path Element Remote Code Execution Vulnerability CVE-2025-66293 LIBPNG has an out-of-bounds read in png_image_read_composite CVE-2025-66221 Werkzeug safe_join() allows Windows special device names CVE-2025-66200 Apache HTTP Server: mod_userdir+suexec bypass via AllowOverride FileInfo CVE-2025-65637 A denial-of-service vulnera

The National Police in Spain have arrested a suspected 19-year-old hacker in Barcelona, for allegedly stealing and attempting to sell 64 million records obtained from breaches at nine companies. The teen now faces charges related to involvement in cybercrime, unauthorized access and disclosure of private data, and privacy violations. “The cybercriminal accessed nine different companies where he o

SEO isn’t dead. But the job has changed. Traditional SEO is about earning rankings and clicks. Generative Engine Optimization (GEO) is about being the source an AI system trusts, summarizes, and cites—even when the user never lands on your site. If you’re still treating GEO like “SEO with a few […] The post appeared first on .

Threat actors with ties to North Korea have likely become the latest to exploit the recently disclosed critical security React2Shell flaw in React Server Components (RSC) to deliver a previously undocumented remote access trojan dubbed EtherRAT. “EtherRAT leverages Ethereum smart contracts for command-and-control (C2) resolution, deploys five independent Linux persistence mechanisms, and

A massive, years-long international police operation has successfully taken down a huge cryptocurrency fraud and money laundering network in Europe. The entire investigation was a joint effort involving multiple national authorities, with key support from Europol and Eurojust. According to Europol’s press release, what started as a probe into a single fraudulent platform grew into an incredibly c

Four distinct threat activity clusters have been observed leveraging a malware loader known as CastleLoader, strengthening the previous assessment that the tool is offered to other threat actors under a malware-as-a-service (MaaS) model. The threat actor behind CastleLoader has been assigned the name GrayBravo by Recorded Future’s Insikt Group, which was previously tracking it as TAG-150.

A major security flaw, dubbed GeminiJack, was recently discovered by cybersecurity firm Noma Security in Google’s Gemini Enterprise and the company’s Vertex AI Search tool, possibly allowing attackers to secretly steal confidential corporate information. This vulnerability was unique because it required no clicks from the targeted employee and left behind no traditional warning signs. Noma Securi

The threat actor known as Storm-0249 is likely shifting from its role as an initial access broker to adopt a combination of more advanced tactics like domain spoofing, DLL side-loading, and fileless PowerShell execution to facilitate ransomware attacks. “These methods allow them to bypass defenses, infiltrate networks, maintain persistence, and operate undetected, raising serious concerns for

Canadian organizations have emerged as the focus of a targeted cyber campaign orchestrated by a threat activity cluster known as STAC6565 . Cybersecurity company Sophos said it investigated almost 40 intrusions linked to the threat actor between February 2024 and August 2025. The campaign is assessed with high confidence to share overlaps with a hacking group known as Gold Blade , which is also t

SimpleX Chat, a privacy-first messaging platform known for avoiding user identifiers and emphasising metadata protection, confirmed that its official X (formerly Twitter) account was compromised in a coordinated attack designed to trick users into connecting their cryptocurrency wallets to a fake website which mimicked the SimpleX Chat interface. The Incident According to SimpleX, the attackers e

Adding a store locator to your WordPress site usually means navigating API key registration, billing setup, and technical configuration before displaying a single map. My Progus Store Locator discovery takes a first look at a plugin that removes these barriers straight after activation and requires no external API credentials. The post ” ” first appeared on WP Mayor .

Tired of losing clients because your booking system is clunky, costly, or confusing? Often, it’s because the booking form felt overwhelming, or your scheduling tool sent customers off-site to finish the booking — breaking the flow and costing you conversions. Now imagine an appointment booking plugin that handles everything right within WordPress. That means you can manage time slots, payments, r

Zero Trust helps organizations shrink their attack surface and respond to threats faster, but many still struggle to implement it because their security tools don’t share signals reliably. 88% of organizations admit they’ve suffered significant challenges in trying to implement such approaches, according to Accenture. When products can’t communicate, real-time access decisions break down. The

Google on Monday announced a set of new security features in Chrome, following the company’s addition of agentic artificial intelligence (AI) capabilities to the web browser. To that end, the tech giant said it has implemented layered defenses to make it harder for bad actors to exploit indirect prompt injections that arise as a result of exposure to untrusted web content and inflict harm. Chief

If you are struggling to get the word out, if customer traction is elusive, if you are always hustling for a little bit of attention, if it feels like you need to spend more money on promotion… It might be that you skipped the important part. Marketing isn’t hype. Marketing is making a product or service that matters. If you’re struggling selling the thing you made, it’s worth reconsidering the a

A newly identified trojan called ChrimeraWire is being used to manipulate search engine rankings by simulating real user activity through Google Chrome. The malware was detailed today by researchers at Doctor Web, who discovered it while analysing affiliate-linked malware distribution campaigns. ChrimeraWire, instead of stealing passwords or encrypting files, is focused on boosting the visibility

Cybersecurity researchers are calling attention to a new campaign dubbed JS#SMUGGLER that has been observed leveraging compromised websites as a distribution vector for a remote access trojan named NetSupport RAT . The attack chain, analyzed by Securonix, involves three main moving parts: An obfuscated JavaScript loader injected into a website, an HTML Application (HTA) that runs encrypted PowerS

Pierluigi Paganini December 08, 2025 The FBI warns of criminals altering images shared on social media and using them as fake proof of life photos in virtual kidnapping ransom scams. The FBI warns that criminals are altering publicly available photos to create fake “proof-of-life” images used in virtual kidnapping scams, posing as kidnappers and demanding ransom. “The Federal Bureau of Investiga

The police in Poland arrested three Ukrainian nationals for allegedly attempting to damage IT systems in the country using hacking equipment and for obtaining “computer data of particular importance to national defense.” The three men, aged between 39 and 43, could not explain why they were carrying the electronic devices. They now face charges of fraud, computer fraud, and possession of devices

Security analytics and operations management platform Securonix recently published details on a tricky new malware campaign they named JS#SMUGGLER. This attack delivers a powerful tool known as NetSupport RAT , giving hackers complete, secret control over victims’ computers. Securonix’s Threat Research team, including analysts Akshay Gaikwad, Shikha Sangwan, and Aaron Beardslee, conducted the ana

Cybersecurity researchers are calling attention to a new campaign dubbed JS#SMUGGLER that has been observed leveraging compromised websites as a distribution vector for a remote access trojan named NetSupport RAT. The attack chain, analyzed by Securonix, involves three main moving parts: An obfuscated JavaScript loader injected into a website, an HTML Application (HTA) that runs encrypted

It’s nearly the end of 2025, and half of the US and the UK now require you to upload your ID or scan your face to watch “sexual content.” A handful of states and Australia now have various requirements to verify your age before you can create a social media account. Age-verification laws may sound straightforward to some: protect young people online by making everyone prove their age. But in real

It’s been a week of chaos in code and calm in headlines. A bug that broke the internet’s favorite framework, hackers chasing AI tools, fake apps stealing cash, and record-breaking cyberattacks — all within days. If you blink, you’ll miss how fast the threat map is changing. New flaws are being found, published, and exploited in hours instead of weeks. AI-powered tools meant to help developers

The holiday season compresses risk into a short, high-stakes window. Systems run hot, teams run lean, and attackers time automated campaigns to get maximum return. Multiple industry threat reports show that bot-driven fraud, credential stuffing and account takeover attempts intensify around peak shopping events, especially the weeks around Black Friday and Christmas. Why holiday peaks

Negative Google reviews can be stressful, especially when they’re fake, unfair, or harming your business’s reputation. These reviews don’t just influence customer trust. They can also impact where your business appears in the Google search results. The truth is that you usually can’t delete reviews left by others. But there are ways to deal with them so that they don’t have an impact on your bott

A new report from security firm Infoblox reveals that at least 18 American universities have been hit by a prolonged, coordinated phishing attack over a period of many months. According to Infoblox’s blog post, shared with Hackread.com, this campaign ran from April to November 2025 and aimed to steal student and staff account details, even when Multi-Factor Authentication ( MFA ) was turned on. T

The announcement of the planned Netflix acquisition of Warner Bros, one of the last remaining major studios, is shedding light on a key issue we often overlook when thinking about culture, creativity and creation. Carriage is the term for the method that books, movies, TV shows and other media get from the producers to the public. It’s about who controls user access to the medium. Until recently,

Cybersecurity researchers have disclosed details of two new Android malware families dubbed FvncBot and SeedSnatcher, as another upgraded version of ClayRat has been spotted in the wild. The findings come from Intel 471, CYFIRMA, and Zimperium, respectively. FvncBot, which masquerades as a security app developed by mBank, targets mobile banking users in Poland. What’s notable about the malware

A critical security flaw in the Sneeit Framework plugin for WordPress is being actively exploited in the wild, per data from Wordfence. The remote code execution vulnerability in question is CVE-2025-6389 (CVSS score: 9.8), which affects all versions of the plugin prior to and including 8.3. It has been patched in version 8.4, released on August 5, 2025. The plugin has more than 1,700 active

The Iranian hacking group known as MuddyWater has been observed leveraging a new backdoor dubbed UDPGangster that uses the User Datagram Protocol (UDP) for command-and-control (C2) purposes. The cyber espionage activity targeted users in Turkey, Israel, and Azerbaijan, according to a report from Fortinet FortiGuard Labs. “This malware enables remote control of compromised systems by allowing

Portugal has modified its cybercrime law to establish a legal safe harbor for good-faith security research and to make hacking non-punishable under certain strict conditions. First spotted by Daniel Cuthbert , a new provision in Article 8.o-A , titled “Acts not punishable due to public interest in cybersecurity,” provides a legal exemption for actions that previously were classified as illegal sy

. The aerialist spins into the air. Sequins sparkle in the warm light of a followspot, and my weird little brain wonders: “ What does marketing look like for a travelling circus where every other week brings a totally new market? ” When I went searching for the answer, I found, instead, one of the most genuinely profound and heartfelt conversations I’ve had in a long time.

Organizations and cultures are build on affiliation and organized by status. And that status never stays stable. There’s a status loop in some suburbs in how the front lawn looks. A nicely kept yard gets a nod of approval from a neighbor and might be rewarded with a higher resale price. And so one nice lawn might become three or four, and then rakes come out and the cycle continues. The same coul

Pierluigi Paganini December 06, 2025 A hacking campaign is targeting GlobalProtect logins and scannig SonicWall APIs since December 2, 2025. A campaign began on December 2 targeting Palo Alto GlobalProtect portals with login attempts and scanning SonicWall SonicOS API endpoints. The activity came from over 7,000 IPs tied to German hosting provider 3xK GmbH, which operates its own BGP network

Barts Health NHS Trust has confirmed that the Cl0p ransomware group stole files from one of its invoice databases after exploiting a vulnerability in Oracle E-Business Suite. The breach exposed data linked to payments for treatment and services, with some records going back several years. Hackread.com first reported on the Cl0p activity in November twenty twenty five, noting the group had leaked

Over 30 security vulnerabilities have been disclosed in various artificial intelligence (AI)-powered Integrated Development Environments (IDEs) that combine prompt injection primitives with legitimate features to achieve data exfiltration and remote code execution. The security shortcomings have been collectively named IDEsaster by security researcher Ari Marzouk (MaccariTA). They affect popular

A sprawling academic cheating network turbocharged by Google Ads that has generated nearly $25 million in revenue has curious connections to a Kremlin-connected oligarch whose Russian university builds drones for Russia’s war against Ukraine. The Nerdify homepage. The link between essay mills and Russian attack drones might seem improbable, but understanding it begins with a simple question: How

Major security agencies from the US and Canada have issued a serious alert about BRICKSTORM, a new cybersecurity threat believed to be used by hackers sponsored by the People’s Republic of China (PRC). The Cybersecurity and Infrastructure Security Agency (CISA), the National Security Agency (NSA) from the US, and the Canadian Centre for Cyber Security (Cyber Centre) say these hackers are using th

The U.S. Cybersecurity and Infrastructure Security Agency (CISA) on Friday formally added a critical security flaw impacting React Server Components (RSC) to its Known Exploited Vulnerabilities (KEV) catalog following reports of active exploitation in the wild. The vulnerability, CVE-2025-55182 (CVSS score: 10.0), relates to a case of remote code execution that could be triggered by an

It’s tempting to believe that our actions follow our beliefs. That’s what we do, it seems, and so others must as well. In fact, just about always, our beliefs arise as a result of our actions. If you want to change what people believe, change how they act.