XSS.IS Admin Arrested in Ukraine
On July 22, 2025, Ukrainian law enforcement, working with French prosecutors and Europol, arrested the suspected administrator of XSS.is. The operation took place in Kyiv, [more…]
Starlink Network Hit by Global Internet Outage
On July 24, 2025, Starlink, Elon Musk’s satellite internet service run by SpaceX—suffered a global shutdown that left thousands of users offline for about 2.5 hours. What happened [more…]
SharePoint Zero-Day Exploits Hit Hundreds of Organizations as Chinese Hackers Deploy Ransomware
On‑premise Microsoft SharePoint servers are facing a serious security crisis. A new attack campaign, known as ToolShell, is exploiting critical flaws and is already active [more…]
BigONE Just Got Hacked for $27M
Crypto exchange BigONE was hit by a serious hack on July 16, 2025. The attacker stole about $27 million from its hot wallet. BigONE confirmed the loss [more…]
Over 40 Malicious Firefox Extensions Caught Stealing Crypto Wallet Data
Security researchers have uncovered a campaign of over 40 malicious Firefox extensions designed to steal cryptocurrency wallet credentials. Named “FoxyWallet”, this scheme impersonates legitimate wallet [more…]
SHELLTER – How a Red‑Team Kit Is Now Fueling Real‑World Attacks
Elastic Security Labs recently discovered that a full-featured commercial evasion tool—called SHELLTER—has been hijacked by cybercriminals to silence anti-malware tools, steal information and run undetected [more…]
Ransomware crew Hunters International shuts down, hands out keys to victims
Ransomware group Hunters International has quietly shut down its operations. In a surprising move, the gang deleted all stolen data from its leak site and [more…]
Houken: The Chinese Group Behind France’s Ivanti Breach
The French National Agency for the Security of Information Systems (ANSSI) has issued a detailed report that reveals how a Chinese-linked hacking group exploited zero-day [more…]
Red Hat fixes multiple security flaws in Ansible Automation Platform
Red Hat has released a security update this week for its Ansible Automation Platform 2.5. The patches fix multiple serious vulnerabilities, including two in the Event‑Driven [more…]
Critical Security Flaw in Debian’s zuluCrypt: CVE-2025-53391 Allows Full Root Takeover
A severe vulnerability (CVE-2025-53391) was discovered in Debian’s packaging of the disk encryption tool zuluCrypt enables local attackers to gain full root privileges. The flaw [more…]
