- Russian Group EncryptHub Exploits MSC EvilTwin Vulnerability to Deploy Fickle Stealer Malwareby info@thehackernews.com (The Hacker News) on 16/08/2025 at 05:34
The threat actor known as EncryptHub is continuing to exploit a now-patched security flaw impacting Microsoft Windows to deliver malicious payloads. Trustwave SpiderLabs said it recently observed an EncryptHub campaign that brings together social engineering and the exploitation of a vulnerability in the Microsoft Management Console (MMC) framework (CVE-2025-26633, aka MSC EvilTwin) to trigger
- Taiwan Web Servers Breached by UAT-7237 Using Customized Open-Source Hacking Toolsby info@thehackernews.com (The Hacker News) on 15/08/2025 at 16:20
A Chinese-speaking advanced persistent threat (APT) actor has been observed targeting web infrastructure entities in Taiwan using customized versions of open-sourced tools with an aim to establish long-term access within high-value victim environments. The activity has been attributed by Cisco Talos to an activity cluster it tracks as UAT-7237, which is believed to be active since at least 2022.
- U.S. Sanctions Garantex and Grinex Over $100M in Ransomware-Linked Illicit Crypto Transactionsby info@thehackernews.com (The Hacker News) on 15/08/2025 at 11:27
The U.S. Department of the Treasury's Office of Foreign Assets Control (OFAC) on Thursday renewed sanctions against Russian cryptocurrency exchange platform Garantex for facilitating ransomware actors and other cybercriminals by processing more than $100 million in transactions linked to illicit activities since 2019. The Treasury said it's also imposing sanctions on Garantex's successor, Grinex
- Zero Trust + AI: Privacy in the Age of Agentic AIby info@thehackernews.com (The Hacker News) on 15/08/2025 at 11:00
We used to think of privacy as a perimeter problem: about walls and locks, permissions, and policies. But in a world where artificial agents are becoming autonomous actors — interacting with data, systems, and humans without constant oversight — privacy is no longer about control. It’s about trust. And trust, by definition, is about what happens when you’re not looking. Agentic AI — AI that
- Cisco Warns of CVSS 10.0 FMC RADIUS Flaw Allowing Remote Code Executionby info@thehackernews.com (The Hacker News) on 15/08/2025 at 06:49
Cisco has released security updates to address a maximum-severity security flaw in Secure Firewall Management Center (FMC) Software that could allow an attacker to execute arbitrary code on affected systems. The vulnerability, assigned the CVE identifier CVE-2025-20265 (CVSS score: 10.0), affects the RADIUS subsystem implementation that could permit an unauthenticated, remote attacker to inject