Skip to content
September 28, 2025
  • Trump Demands Microsoft Fire Global Affairs Chief Lisa Monaco Over Security Concerns
  • Apple Devices Vulnerable to ASLR Bypass Through JSON Serialization Trick
  • Harrods Warns Customers of Data Breach Involving Third-Party Provider
  • PlugX and Bookworm Deployed via DLL Side‑Loading in Targeted Cyber Espionage Campaign

Security Pulse

newsubscription
Random News
  • Cyber Attacks
  • Vulnerabilities
  • Zero Days
  • Malware
  • IOT Security
  • Mobile Security
  • Web Security
  • AI
  • Bug Hunting
Headlines
  • Lisa Monaco speaking at a public event

    Trump Demands Microsoft Fire Global Affairs Chief Lisa Monaco Over Security Concerns

    7 hours ago7 hours ago
  • Apple logo over digital circuit background

    Apple Devices Vulnerable to ASLR Bypass Through JSON Serialization Trick

    8 hours ago8 hours ago
  • Harrods store exterior in London, photo by Cedric Weber

    Harrods Warns Customers of Data Breach Involving Third-Party Provider

    10 hours ago10 hours ago
  • Diagram illustrating DLL side‑loading delivering PlugX and Bookworm malware

    PlugX and Bookworm Deployed via DLL Side‑Loading in Targeted Cyber Espionage Campaign

    24 hours ago24 hours ago
  • Fake Microsoft Teams download page (teams‑install.icu) used to deliver Oyster backdoor

    Weaponized “Microsoft Teams” Installer Delivers Oyster Backdoor via Poisoned Search Results

    1 day ago1 day ago
  • LAMEHUG malware using AI to generate commands for Windows data theft

    LAMEHUG Malware Uses AI to Generate Commands and Steal Data

    2 days ago2 days ago
Lisa Monaco speaking at a public event
  • LATEST
7 hours ago7 hours ago

Trump Demands Microsoft Fire Global Affairs Chief Lisa Monaco Over Security Concerns

Trump urged Microsoft to fire Lisa Monaco, its head of global affairs, raising concerns over her revoked security clearance and history in DOJ investigations.

Apple logo over digital circuit background
  • Bypass
  • LATEST
8 hours ago8 hours ago

Apple Devices Vulnerable to ASLR Bypass Through JSON Serialization Trick

Google’s Project Zero team uncovered a method to bypass ASLR on Apple devices by exploiting NSDictionary’s JSON serialization behavior, potentially weakening memory protections.

Harrods store exterior in London, photo by Cedric Weber
  • Data Breaches
  • LATEST
10 hours ago10 hours ago

Harrods Warns Customers of Data Breach Involving Third-Party Provider

Harrods informed loyalty program members of a data breach tied to a third-party provider. The luxury retailer is investigating and urging customer caution.

Diagram illustrating DLL side‑loading delivering PlugX and Bookworm malware
  • LATEST
  • Malware
24 hours ago24 hours ago

PlugX and Bookworm Deployed via DLL Side‑Loading in Targeted Cyber Espionage Campaign

A sophisticated cyber campaign used DLL side‑loading to deliver a hybrid PlugX variant and the Bookworm backdoor to telecom and ASEAN networks, revealing renewed tactics by China‑linked threat actors.

CISA Confirms Federal Agency Breached via Critical GeoServer Flaw
  • Data Breaches
  • LATEST

CISA Confirms Federal Agency Breached via Critical GeoServer Flaw

Rhysida Hackers Claim Attack on Maryland Department of Transportation
  • Malware
  • National Security

Rhysida Hackers Claim Attack on Maryland Department of Transportation

TikTok Algorithm Faces U.S. Control Data, Politics, and Security Concerns
  • LATEST
  • National Security

TikTok Algorithm Faces U.S. Control Data, Politics, and Security Concerns

NPM Package Malware Uses Steganographic QR Codes to Steal Data
  • Data Breaches
  • Malware

NPM Package Malware Uses Steganographic QR Codes to Steal Data

Lisa Monaco speaking at a public event
  • LATEST

Trump Demands Microsoft Fire Global Affairs Chief Lisa Monaco Over Security Concerns

yohanmanuja7 hours ago7 hours ago04 mins mins

Trump urged Microsoft to fire Lisa Monaco, its head of global affairs, raising concerns over her revoked security clearance and history in DOJ investigations.

Read More
Apple logo over digital circuit background
  • Bypass
  • LATEST
  • Zeroday

Apple Devices Vulnerable to ASLR Bypass Through JSON Serialization Trick

yohanmanuja8 hours ago8 hours ago04 mins mins

Google’s Project Zero team uncovered a method to bypass ASLR on Apple devices by exploiting NSDictionary’s JSON serialization behavior, potentially weakening memory protections.

Read More
Harrods store exterior in London, photo by Cedric Weber
  • Data Breaches
  • LATEST

Harrods Warns Customers of Data Breach Involving Third-Party Provider

yohanmanuja10 hours ago10 hours ago03 mins mins

Harrods informed loyalty program members of a data breach tied to a third-party provider. The luxury retailer is investigating and urging customer caution.

Read More
Diagram illustrating DLL side‑loading delivering PlugX and Bookworm malware
  • LATEST
  • Malware
  • National Security

PlugX and Bookworm Deployed via DLL Side‑Loading in Targeted Cyber Espionage Campaign

yohanmanuja24 hours ago24 hours ago03 mins mins

A sophisticated cyber campaign used DLL side‑loading to deliver a hybrid PlugX variant and the Bookworm backdoor to telecom and ASEAN networks, revealing renewed tactics by China‑linked threat actors.

Read More
Fake Microsoft Teams download page (teams‑install.icu) used to deliver Oyster backdoor
  • LATEST
  • Malware

Weaponized “Microsoft Teams” Installer Delivers Oyster Backdoor via Poisoned Search Results

yohanmanuja1 day ago1 day ago04 mins mins

A targeted malvertising campaign redirected users from Bing to a fake Teams download site, where a signed MSTeamsSetup.exe installed the Oyster backdoor — blocked just in time by Microsoft Defender ASR.

Read More
LAMEHUG malware using AI to generate commands for Windows data theft
  • AI
  • Malware

LAMEHUG Malware Uses AI to Generate Commands and Steal Data

yohanmanuja2 days ago2 days ago03 mins mins

The new LAMEHUG malware uses AI models from Hugging Face to generate Windows commands dynamically. It spreads through phishing, disguises itself as AI apps, and steals system data, documents, and credentials while adapting to different environments.

Read More
New macOS XCSSET malware variant targets Firefox and cryptocurrency wallets
  • Malware

New XCSSET macOS Malware Variant Targets Firefox with Clipper Module

yohanmanuja2 days ago02 mins mins

A new XCSSET malware variant for macOS introduces a clipboard hijacker to steal cryptocurrency and expands to Firefox browser data theft. Security researchers warn developers to inspect Xcode projects and apply strong defenses against this evolving threat.

Read More
Australia considers GitHub age restriction for child safety
  • Github
  • LATEST

Australia May Restrict GitHub for Kids Under 16

yohanmanuja2 days ago2 days ago03 mins mins

Australia’s eSafety Commissioner may classify GitHub as a social network and ban kids under 16 from using it. Officials argue GitHub’s social features resemble TikTok and Discord, but critics say the move could block young coders from learning and accessing open-source tools

Read More
CISA confirms federal agency hacked via critical GeoServer flaw
  • Data Breaches
  • LATEST

CISA Confirms Federal Agency Breached via Critical GeoServer Flaw

yohanmanuja2 days ago2 days ago02 mins mins

CISA has confirmed hackers breached a U.S. federal agency by exploiting CVE-2024-36401, a critical flaw in GeoServer. Attackers used web shells, brute force, and lateral movement to persist in the network. CISA warns agencies to patch quickly and strengthen defenses.

Read More
Rhysida ransomware gang claims Maryland transportation hack
  • Malware
  • National Security
  • Ransomware

Rhysida Hackers Claim Attack on Maryland Department of Transportation

yohanmanuja3 days ago3 days ago03 mins mins

The Rhysida ransomware gang claims to have breached Maryland’s Department of Transportation, leaking personal data and demanding a $3.3 million ransom. Officials confirmed data loss affecting Maryland Transit Administration systems but said core services remain operational.

Read More
  • 1
  • 2

You May Have Missed

Lisa Monaco speaking at a public event
  • LATEST

Trump Demands Microsoft Fire Global Affairs Chief Lisa Monaco Over Security Concerns

yohanmanuja 7 hours ago7 hours ago
  • Aviation Security

Drone Sightings Halt Flights in Copenhagen and Oslo, Aviation Security on Alert

yohanmanuja 5 days ago4 days ago
AI psychosis concept - glowing brain illustration representing risks of prolonged chatbot use
  • AI
  • LATEST

Google Warns of ‘AI Psychosis’ in New Safety Report

yohanmanuja 4 days ago4 days ago
LAMEHUG malware using AI to generate commands for Windows data theft
  • AI
  • Malware

LAMEHUG Malware Uses AI to Generate Commands and Steal Data

yohanmanuja 2 days ago2 days ago
  • LATEST
  • National Security

TikTok Algorithm Faces U.S. Control Data, Politics, and Security Concerns

yohanmanuja 4 days ago4 days ago
QR code cybersecurity risk - malware hidden in steganographic QR codes inside npm package
  • Data Breaches
  • Malware

NPM Package Malware Uses Steganographic QR Codes to Steal Data

yohanmanuja 4 days ago4 days ago
CISA confirms federal agency hacked via critical GeoServer flaw
  • Data Breaches
  • LATEST

CISA Confirms Federal Agency Breached via Critical GeoServer Flaw

yohanmanuja 2 days ago2 days ago
  • LATEST
  • Malware

Exposed Docker Daemons Fuel ShadowV2 Botnet Attacks

yohanmanuja 4 days ago4 days ago
Newsmatic - News WordPress Theme 2025. Powered By BlazeThemes.
  • Cyber Attacks
  • Vulnerabilities
  • Zero Days
  • Malware
  • IOT Security
  • Mobile Security
  • Web Security
  • AI
  • Bug Hunting
EnglishEnglish (United States)
EnglishEnglish (UK)