Cybersecurity

GOLD SALEM’s Warlock operation joins busy ransomware landscape

Counter Threat Unit™ (CTU) researchers are monitoring a threat group that refers to itself as Warlock Group. The group, which CTU™ researchers track as GOLD SALEM, has compromised networks and deployed its Warlock ransomware since March 2025. Microsoft refers to this threat group as Storm-2603 and characterizes it “with moderate confidence to be a China-based…

Introducing HybridPetya: Petya/NotPetya copycat with UEFI Secure Boot bypass

ellonjohns3 weeks ago030 mins

ESET Research has discovered HybridPetya, on the VirusTotal sample sharing platform. It is a copycat of the infamous Petya/NotPetya malware, adding the capability of compromising UEFI-based systems and weaponizing CVE‑2024‑7344 to bypass UEFI Secure Boot on outdated systems. Key points of this blogpost: New ransomware samples, which we named HybridPetya, resembling the infamous Petya/NotPetya malware,…

40 npm Packages Compromised in Supply Chain Attack Using bundle.js to Steal Credentials

ellonjohns3 weeks ago08 mins

Cybersecurity researchers have flagged a fresh software supply chain attack targeting the npm registry that has affected more than 40 packages that belong to multiple maintainers. “The compromised versions include a function (NpmModule.updatePackage) that downloads a package tarball, modifies package.json, injects a local script (bundle.js), repacks the archive, and republishes it, enabling automatic trojanization of…

Bulletproof Host Stark Industries Evades EU Sanctions – Krebs on Security

ellonjohns3 weeks ago010 mins

In May 2025, the European Union levied financial sanctions on the owners of Stark Industries Solutions Ltd., a bulletproof hosting provider that materialized two weeks before Russia invaded Ukraine and quickly became a top source of Kremlin-linked cyberattacks and disinformation campaigns. But new findings show those sanctions have done little to stop Stark from simply rebranding…

9 unverzichtbare Open-Source-Security-Tools

ellonjohns3 weeks ago012 mins

Diese Open-Source-Tools adressieren spezifische Security-Probleme – mit minimalem Footprint. Foto: N Universe | shutterstock.com Cybersicherheitsexperten verlassen sich in diversen Bereichen auf Open-Source-Lösungen – nicht zuletzt weil diese im Regelfall von einer lebendigen und nutzwertigen Community gestützt werden. Aber auch weil es inzwischen Hunderte qualitativ hochwertiger, quelloffener Optionen gibt, um Breaches und Datenlecks auf allen Ebenen…

Positive vs. negative security: Choosing an AppSec model | TechTarget

ellonjohns4 weeks ago09 mins

An effective application security model is essential to protecting apps from threats and vulnerabilities. Two common models are positive security and negative security. While both approaches secure applications, they do so in different ways. In general, positive security models only allow approved traffic and actions and deny other requests, and negative security models block…

Your heartbeat could reveal your identity, even in anonymized datasets – Help Net Security

ellonjohns4 weeks ago011 mins

A new study has found that electrocardiogram (ECG) signals, often shared publicly for medical research, can be linked back to individuals. Researchers were able to re-identify people in anonymous datasets with surprising accuracy, raising questions about how health data is protected and shared. Linking ECG data to real people The research team tested how an…

In Other News: 0k for XSS Bugs, HybridPetya Malware, Burger King Censors Research

In Other News: $900k for XSS Bugs, HybridPetya Malware, Burger King Censors Research

ellonjohns4 weeks ago09 mins

SecurityWeek’s cybersecurity news roundup provides a concise compilation of noteworthy stories that might have slipped under the radar. We provide a valuable summary of stories that may not warrant an entire article, but are nonetheless important for a comprehensive understanding of the cybersecurity landscape. Each week, we curate and present a collection of noteworthy developments,…

September Patch Tuesday handles 81 CVEs

ellonjohns4 weeks ago036 mins

.Microsoft on Tuesday announced 81 patches affecting 15 product families. Nine of the addressed issues are considered by Microsoft to be of Critical severity, and nine have a CVSS base score of 8.0 or higher — though, to be clear, they’re not the same nine issues. None are known to be under active exploit in the…

Preventing business disruption and building cyber-resilience with MDR

ellonjohns4 weeks ago010 mins

Given the serious financial and reputational risks of incidents that grind business to a halt, organizations need to prioritize a prevention-first cybersecurity strategy 09 Sep 2025 • , 4 min. read Threat actors are on a roll. They’ve optimized supply chains. Their ranks are growing thanks to pre-packaged services that lower the barriers to entry…

Highlights

The 59 best Amazon Prime Day deals under $50 from Anker, Ring, Lego, Roku and others

OpenAI’s Nick Turley on transforming ChatGPT into an operating system | TechCrunch

OpenAI Finds Growing Exploitation of AI Tools by Foreign Threat Groups

Nvidia is turning GPUs into capital, but questions exist around sustainability — AI companies are financing hardware like debt, as bank warns of ‘sharp market correction’

Category Collection