Lithos | CyberSec News Aggregator

Age in hrs

Parents of a college student trapped in a burning Tesla file a lawsuit - Elon Musk’s Tesla was sued on Thursday by the parents of two college students who were killed in a car crash last year, claiming the vehicle’s design made it nearly impossible for their children to get out of the burning car.

Trump admin faces lawsuit over $100,000 H-1B visa corporate pricetag

Hack The Box introduces Threat Range for cyber incident simulation

Extortion Emails Sent to Executives by Self-Proclaimed Clop Gang Member - The initial investigation shows early signs of links with the FIN11 and Clop cyber extortion groups

Confucius Shifts from Document Stealers to Python Backdoors

Free VPN Apps Found Riddled With Security Flaws

US Government Shutdown to Slash Federal Cybersecurity Staff

CometJacking: One Click Can Turn Perplexity's Comet AI Browser Into a Data Thief - Cybersecurity researchers have disclosed details of a new attack called CometJacking targeting Perplexity's agentic AI browser Comet by embedding malicious prompts within a seemingly innocuous link to siphon sensitive data, including from connected services, like email and calendar. The sneaky prompt...

Scanning Activity on Palo Alto Networks Portals Jump 500% in One Day

Intelliloan mortgage breach exposes customer PII, Social Security numbers, driver's licenses - California mortgage lender Intelliloan has finally begun sending out breach notification letters to its customers about a previous March hack that exposed reams of sensitive data.

Chinese-Speaking Cybercrime Group Hijacks IIS Servers for SEO Fraud - Cisco Talos has identified a Chinese-speaking cybercrime group that targets high-value Internet Information Services (IIS) for SEO fraud

Hackers Target Unpatched Flaws in Oracle E-Business Suite

WestJet Data Breach Impacts 1.2 Million Customers

Israel's 4th largest hospital, Shamir Medical Center, hit by ransomware on Yom Kippur - Israel’s Shamir Medical Center was allegedly hacked by the Qilin ransomware group on Thursday. The seasoned hackers boasted of access to the hospital’s entire IT system and hordes of sensitive patient data.

Detour Dog Caught Running DNS-Powered Malware Factory for Strela Stealer - A threat actor named Detour Dog has been outed as powering campaigns distributing an information stealer known as Strela Stealer. That's according to findings from Infoblox, which found the threat actor to maintain control of domains hosting the first stage of the stealer, a backdoor called StarFish....

Product Walkthrough: How Passwork 7 Addresses Complexity of Enterprise Security

New "Cavalry Werewolf" Attack Hits Russian Agencies with FoalShell and StallionRAT

CISA Flags Meteobridge CVE-2025-4008 Flaw as Actively Exploited in the Wild

Rhadamanthys Stealer Evolves: Adds Device Fingerprinting, PNG Steganography Payloads

Researchers Warn of Self-Spreading WhatsApp Malware Named SORVEPOTEL

Japan running dry: Ransomware attack leaves nation days away from Asahi beer shortage - Beer lovers will be sobbing into their pints at the news that a ransomware attack has brought Japan's largest brewer to its knees and left the country days away from running out of its most popular beverage. Read more in my article on the Hot for Security blog.