Deeba Ahmed – Page 42 – WindowsTechs.com

Shadow Escape 0-Click Attack in AI Assistants Puts Trillions of Records at Risk

Posted on October 23, 2025 by Deeba Ahmed

Operant AI reveals Shadow Escape, a zero-click attack using the MCP flaw in ChatGPT, Gemini, and Claude to secretly steal trillions of SSNs and financial data. Traditional security is blind to this new AI threat. Continue reading Shadow Escape 0-Click Attack in AI Assistants Puts Trillions of Records at Risk→

183 Million Synthient Stealer Credentials Added to Have I Been Pwned

Posted on October 23, 2025 by Deeba Ahmed

Massive Synthient Stealer Log leak adds 183 million stolen usernames and passwords to Have I Been Pwned, exposing new victims worldwide. Continue reading 183 Million Synthient Stealer Credentials Added to Have I Been Pwned→

PhantomCaptcha RAT Attack Targets Aid Groups Supporting Ukraine

Posted on October 23, 2025 by Deeba Ahmed

SentinelLABS’ research reveals PhantomCaptcha, a highly coordinated, one-day cyber operation on Oct 8, 2025, targeting the International Red Cross, UNICEF, and Ukraine government groups using fake emails and a Remote Access Trojan (RAT) linked to Russi… Continue reading PhantomCaptcha RAT Attack Targets Aid Groups Supporting Ukraine→

Bitter APT Exploiting Old WinRAR Vulnerability in New Backdoor Attacks

Posted on October 22, 2025 by Deeba Ahmed

South Asian hacking group Bitter (APT-Q-37) is deploying a C# backdoor using two new methods: a WinRAR flaw and malicious Office XLAM files, targeting government and military sectors. Continue reading Bitter APT Exploiting Old WinRAR Vulnerability in New Backdoor Attacks→

Rival Hackers Dox Alleged Operators of Lumma Stealer

Posted on October 22, 2025 by Deeba Ahmed

Rival hackers expose the alleged operators behind Lumma Stealer, a major data-theft malware, causing leaks and internal chaos that have slowed its growth. Continue reading Rival Hackers Dox Alleged Operators of Lumma Stealer→

SocGholish Malware Using Compromised Sites to Deliver Ransomware

Posted on October 22, 2025 by Deeba Ahmed

New research on SocGholish (FakeUpdates) reveals how this MaaS platform is used by threat actors like Evil Corp and RansomHub to compromise websites, steal data, and launch high-impact attacks on healthcare and businesses worldwide. Continue reading SocGholish Malware Using Compromised Sites to Deliver Ransomware→

Salt Typhoon APT Targets Global Telecom and Energy Sectors, Says Darktrace

Posted on October 21, 2025 by Deeba Ahmed

The China-linked Salt Typhoon APT group attacked a European telecom via a Citrix NetScaler vulnerability in July 2025, Darktrace reports. This follows past US Army and telecom breaches. Continue reading Salt Typhoon APT Targets Global Telecom and Energy Sectors, Says Darktrace→

Envoy Air (American Airlines) Confirms Oracle EBS 0-Day Breach Linked to Cl0p

Posted on October 21, 2025 by Deeba Ahmed

Envoy Air (American Airlines) confirms a breach by CL0P after they exploited the critical CVE-2025-61882 zero-day flaw in Oracle E-Business Suite. Continue reading Envoy Air (American Airlines) Confirms Oracle EBS 0-Day Breach Linked to Cl0p→

New Phishing Emails Pretend to Offer Jobs to Steal Facebook Logins

Posted on October 21, 2025 by Deeba Ahmed

Sublime Security warns of a massive credential phishing scam using fake job offers from brands like KFC and Red Bull to steal Facebook login details. Don’t fall for the trap. Continue reading New Phishing Emails Pretend to Offer Jobs to Steal Facebook Logins→

NK’s Famous Chollima Use BeaverTail and OtterCookie Malware in Job Scam

Posted on October 16, 2025 by Deeba Ahmed

North Korea’s Famous Chollima is back, merging BeaverTail and OtterCookie malware to target job seekers. Cisco Talos details the new threat. Keylogging, screen recording, and cryptocurrency wallet theft detected in an attack. Continue reading NK’s Famous Chollima Use BeaverTail and OtterCookie Malware in Job Scam→