Does Your Organization Need Deepfake Defenses?  - Picture this: you're scrolling through your company's social media feed, and suddenly a video shows your CEO endorsing a competitor's product. It looks real. The voice, the gestures, the background—it's all perfect. Or that same CEO calling you to urgently approve a strange payment. But you know, deep...

 GUEST ESSAY: Why IoT security must start at the module—a blueprint for scaling IoT security  - A few years ago, a casino was breached via a smart fish tank thermometer.

 Stop Remote Ransomware Attacks with Falcon Endpoint Security  - Ransomware is a rapidly evolving threat, with attackers increasingly turning to remote techniques that target network shares. To help defend against these tactics, CrowdStrike Falcon® Prevent endpoint[…]

+1 from  crowdstrike

 Interlock Ransomware Unleashes New RAT in Widespread Campaign  - Interlock ransomware continues to develop custom tooling and a new RAT has been detected by researchers

+2 from  infosecurity-magazine

 North Korean Actors Expand Contagious Interview Campaign with New Malware Loader  - Socket has identified a new malware loader called XORIndex incorporated into malicious packages published to the npm registry, with over 9000 downloads so far

+3 from  infosecurity-magazine

 Hyper-Volumetric DDoS Attacks Reach Record 7.3 Tbps, Targeting Key Global Sectors  - Cloudflare on Tuesday said it mitigated 7.3 million distributed denial-of-service (DDoS) attacks in the second quarter of 2025, a significant drop from 20.5 million DDoS attacks it fended off the previous quarter. "Overall, in Q2 2025, hyper-volumetric DDoS attacks skyrocketed," Omer Yoachimik and Jorge...

+1 from  thehackernews

 JD Vance’s Disneyland vacation sparks outrage, mockery  - Users took to X to mock the United States Vice President JD Vance in a recent viral video of him at Disneyland. His vacation sparked outrage due to ongoing ICE raids and the mass deportation crisis in the US.

+1 from  cybernews

 中央网信办部署开展“清朗·2025 暑期未成 人网络环境整治”专项行动

 CISA Adds One Known Exploited Vulnerability to Catalog

 Epstein-obsessed users feel “betrayed” by Trump, while “raw” prison video fuels new conspiracies  - The community that bolstered President Donald Trump during his election campaign feels betrayed after the release of Epstein’s client list turned out to be an empty promise.

+2 from  cybernews

 Retail Ransomware Attacks Jump 58% Globally in Q2 2025  - BlackFog found that publicly disclosed ransomware attacks on retail grew significantly in Q2 compared to Q1, with UK firms heavily targeted

+3 from  infosecurity-magazine

 Securing Core Cloud Identity Infrastructure: Addressing Advanced Threats through Public-Private Collaboration

 Police Arrest Four Linked To M&S, Co-op Attacks  - Police arrest three males and one woman in connection with cyber-attacks earlier this year that disrupted M&S and Co-op operations

+2 from  silicon.co.uk

 NCSC Launches Vulnerability Research Institute to Boost UK Resilience  - The NCSC’s new Vulnerability Research Institute will help it develop outreach with the external cybersecurity community

+1 from  infosecurity-magazine

 OpenAI's ChatGPT-powered browser is codenamed 'Aura'  - OpenAI is following Perplexity and is working on its own AI-powered browser codenamed "Aura."

+3 from  bleepingcomputer

 SIM scammer’s sentence increased to 12 years, after failing to pay back victim $20 million  - Read more in my article on the Hot for Security blog.

+2 from  grahamcluley

 How to Win DLP Buy-In and Influence Stakeholders

 Gigabyte motherboards vulnerable to UEFI malware bypassing Secure Boot  - Dozens of Gigabyte motherboard models run on UEFI firmware vulnerable to security issues that allow planting bootkit malware that is invisible to the operating system and can survive reinstalls.

+2 from  bleepingcomputer

 CBI Shuts Down £390K U.K. Tech Support Scam, Arrests Key Operatives in Noida Call Center  - India's Central Bureau of Investigation (CBI) has announced that it has taken steps to dismantle what it said was a transnational cybercrime syndicate that carried out "sophisticated" tech support scams targeting citizens of Australia and the United Kingdom. The fraudulent scheme is estimated to have...

+4 from  thehackernews

 Grok 4 benchmark results: Tops math, ranks second in coding  - Grok 4 is a huge leap from Grok 3, but how good is it compared to other models in the market, such as Gemini 2.5 Pro? We now have answers, thanks to new independent benchmarks.

+1 from  bleepingcomputer

 New Konfety Malware Variant Evades Detection by Manipulating APKs and Dynamic Code  - Cybersecurity researchers have discovered a new, sophisticated variant of a known Android malware referred to as Konfety that leverages the evil twin technique to enable ad fraud. The sneaky approach essentially involves a scenario wherein two variants of an application share the same package name: A...

+5 from  thehackernews

 Grok-4 Jailbroken Two Days After Release Using Combined Attack  - Grok-4 was jailbroken 48 hours post-launch using Echo Chamber and Crescendo attack methods

+3 from  infosecurity-magazine

 国家互联网信息办公室开展2025 个人信息保护网络问卷调查

 OpenAI's image model gets built-in style feature on ChatGPT  - OpenAI's image gen model, which is available via ChatGPT for free, now lets you easily create AI images even if you're not familiar with trends or prompt engineering.

+2 from  bleepingcomputer

 ABB RMC-100

+3 from  cisa

 AsyncRAT's Open-Source Code Sparks Surge in Dangerous Malware Variants Across the Globe  - Cybersecurity researchers have charted the evolution of a widely used remote access trojan called AsyncRAT , which was first released on GitHub in January 2019 and has since served as the foundation for several other variants. "AsyncRAT has cemented its place as a cornerstone of modern malware and as...

+3 from  thehackernews

 DOGE Denizen Marko Elez Leaked API Key for xAI  - Marko Elez , a 25-year-old employee at Elon Musk’s Department of Government Efficiency (DOGE), has been granted access to sensitive databases at the U.S. Social Security Administration, the Treasury and Justice departments, and the Department of Homeland Security. So it should fill all Americans with...

 Elmo has been hacked, claims Trump is in Epstein files, calls for Jews to be exterminated  - Over the weekend, Sesame Street star Elmo's verified account was apparently hijacked and used to post a string of profane messages, including one describing Donald Trump as a “child f****r” and referencing Jeffrey Epstein.