Secure IT

Legacy Python Bootstrap Scripts Create Domain-Takeover Risk in Multiple PyPI Packages

Legacy Python Bootstrap Scripts Create Domain-Takeover Risk in Multiple PyPI Packages

[email protected] The Hacker News November 28, 2025

Nov 28, 2025Ravie LakshmananMalware / Vulnerability Cybersecurity researchers have discovered vulnerable code in legacy Python packages that...

North Korean Hackers Deploy 197 npm Packages to Spread Updated OtterCookie Malware

[email protected] The Hacker News November 28, 2025

Nov 28, 2025Ravie LakshmananSupply Chain Attack / Malware The North Korean threat actors behind the Contagious Interview...

Why Organizations Are Turning to RPAM

Why Organizations Are Turning to RPAM

[email protected] The Hacker News November 28, 2025

Nov 28, 2025The Hacker NewsEnterprise Security / Threat Detection As IT environments become increasingly distributed and organizations...

MS Teams Guest Access Can Remove Defender Protection When Users Join External Tenants

[email protected] The Hacker News November 28, 2025

Nov 28, 2025Ravie LakshmananEmail Security / Enterprise Security Cybersecurity researchers have shed light on a cross-tenant blind...

Bloody Wolf Expands Java-based NetSupport RAT Attacks in Kyrgyzstan and Uzbekistan

[email protected] The Hacker News November 27, 2025

Nov 27, 2025Ravie LakshmananMalware / Social Engineering The threat actor known as Bloody Wolf has been attributed...

Microsoft to Block Unauthorized Scripts in Entra ID Logins with 2026 CSP Update

[email protected] The Hacker News November 27, 2025

Nov 27, 2025Ravie LakshmananWeb Security / Zero Trust Microsoft has announced plans to improve the security of...

ThreatsDay Bulletin: AI Malware, Voice Bot Flaws, Crypto Laundering, IoT Attacks — and 20 More Stories

[email protected] The Hacker News November 27, 2025

Nov 27, 2025Ravie LakshmananCybersecurity / Hacking News Hackers have been busy again this week. From fake voice...

Gainsight Expands Impacted Customer List Following Salesforce Security Alert

[email protected] The Hacker News November 27, 2025

Nov 27, 2025Ravie LakshmananRansomware / Cloud Security Gainsight has disclosed that the recent suspicious activity targeting its...

Meet Rey, the Admin of ‘Scattered Lapsus$ Hunters’

Sean November 26, 2025

A prolific cybercriminal group that calls itself “Scattered LAPSUS$ Hunters” has dominated headlines this year by regularly...

Shai-Hulud v2 Campaign Spreads From npm to Maven, Exposing Thousands of Secrets

[email protected] The Hacker News November 26, 2025

The second wave of the Shai-Hulud supply chain attack has spilled over to the Maven ecosystem after...

Secure IT

Legacy Python Bootstrap Scripts Create Domain-Takeover Risk in Multiple PyPI Packages

North Korean Hackers Deploy 197 npm Packages to Spread Updated OtterCookie Malware

Why Organizations Are Turning to RPAM

MS Teams Guest Access Can Remove Defender Protection When Users Join External Tenants

Bloody Wolf Expands Java-based NetSupport RAT Attacks in Kyrgyzstan and Uzbekistan

Microsoft to Block Unauthorized Scripts in Entra ID Logins with 2026 CSP Update

ThreatsDay Bulletin: AI Malware, Voice Bot Flaws, Crypto Laundering, IoT Attacks — and 20 More Stories

Gainsight Expands Impacted Customer List Following Salesforce Security Alert

Meet Rey, the Admin of ‘Scattered Lapsus$ Hunters’

Shai-Hulud v2 Campaign Spreads From npm to Maven, Exposing Thousands of Secrets

You may have missed

$13.74M Hack Shuts Down Sanctioned Grinex Exchange After Intelligence Claims

Mirai Variant Nexcorium Exploits CVE-2024-3721 to Hijack TBK DVRs for DDoS Botnet

Three Microsoft Defender Zero-Days Actively Exploited; Two Still Unpatched

Google Blocks 8.3B Policy-Violating Ads in 2025, Launches Android 17 Privacy Overhaul