Ryan Naraine – WindowsTechs.com

Predatory Sparrow Burns $90 Million on Iranian Crypto Exchange in Cyber Shadow War

Posted on June 19, 2025 by Ryan Naraine

Israel-linked Predatory Sparrow hackers torched more than $90 million at Iran’s largest cryptobank as Israel-Iran cyberwar escalates.
The post Predatory Sparrow Burns $90 Million on Iranian Crypto Exchange in Cyber Shadow War appeared first on Security… Continue reading Predatory Sparrow Burns $90 Million on Iranian Crypto Exchange in Cyber Shadow War→

Posted on June 18, 2025 by Ryan Naraine

Russian hackers posed as US State Department staff and convinced targets to generate and give up Google app-specific passwords.
The post Russian Hackers Bypass Gmail MFA with App Specific Password Ruse appeared first on SecurityWeek.
Continue reading Russian Hackers Bypass Gmail MFA with App Specific Password Ruse→

Posted on June 12, 2025 by Ryan Naraine

Citizen Lab publishes forensic proof that spyware maker Paragon can compromise up-to-date iPhones. Journalists in Europe among victims.
The post Paragon ‘Graphite’ Spyware Linked to Zero-Click Hacks on Newest iPhones appeared first on SecurityWeek.
Continue reading Paragon ‘Graphite’ Spyware Linked to Zero-Click Hacks on Newest iPhones→

Posted on June 10, 2025 by Ryan Naraine

Patch Tuesday: Adobe documents hundreds of bugs across multiple products and warns of code execution, feature bypass risks.
The post Code Execution Flaws Haunt Adobe Acrobat Reader, Adobe Commerce appeared first on SecurityWeek.
Continue reading Code Execution Flaws Haunt Adobe Acrobat Reader, Adobe Commerce→

Posted on June 10, 2025 by Ryan Naraine

Redmond warns that external control of a file name or path in WebDAV “allows an unauthorized attacker to execute code over a network.”
The post Microsoft Patch Tuesday Covers WebDAV Flaw Marked as ‘Already Exploited’ appeared first on Secur… Continue reading Microsoft Patch Tuesday Covers WebDAV Flaw Marked as ‘Already Exploited’→

Posted on June 9, 2025 by Ryan Naraine

Anti-malware vendor said it spent the past twelve months deflecting a stream of network reconnaissance probes from China-nexus threat actors
The post Chinese Espionage Crews Circle SentinelOne in Year-Long Reconnaissance Campaign appeared first on Secu… Continue reading Chinese Espionage Crews Circle SentinelOne in Year-Long Reconnaissance Campaign→

Posted on June 5, 2025 by Ryan Naraine

Censys researchers follow some clues and find hundreds of control-room dashboards for US water utilities on the public internet.
The post Misconfigured HMIs Expose US Water Systems to Anyone with a Browser appeared first on SecurityWeek.
Continue reading Misconfigured HMIs Expose US Water Systems to Anyone with a Browser→

Posted on June 2, 2025 by Ryan Naraine

Cryptocurrency mining operation hits exposed Consul dashboards, Docker Engine APIs and Gitea code-hosting instances to push Monero miner.
The post Cryptojackers Caught Mining Monero via Exposed DevOps Infrastructure appeared first on SecurityWeek.
Continue reading Cryptojackers Caught Mining Monero via Exposed DevOps Infrastructure→

Posted on June 2, 2025 by Ryan Naraine

Chipmaker says there are indications from Google Threat Analysis Group that a trio of flaws “may be under limited, targeted exploitation.”
The post Qualcomm Flags Exploitation of Adreno GPU Flaws, Urges OEMs to Patch Urgently appeared first on Security… Continue reading Qualcomm Flags Exploitation of Adreno GPU Flaws, Urges OEMs to Patch Urgently→

Posted on May 29, 2025 by Ryan Naraine

Professional hackers have built a network of ASUS routers that can survive firmware upgrades, factory reboots and most anti-malware scans.
The post GreyNoise Flags 9,000 ASUS Routers Backdoored Via Patched Vulnerability appeared first on SecurityWeek.
Continue reading GreyNoise Flags 9,000 ASUS Routers Backdoored Via Patched Vulnerability→