Afraid of missing important security news during the week? We're here to help! Every week we put together a curated list of all important security news in one place, for your reading pleasure. Enjoy!
For the less technical
- Reddit will block the Internet Archive
- Securing the supply chain at scale: Starting with 71 important open source projects
- US embeds trackers in AI chip shipments to catch diversions to China, sources say
- Microsoft helping Israel spy on millions of Palestinians since 2021: Report
- Google confirms data breach exposed potential Google Ads customers' info
- The dark web economy for compromised government and police email accounts
- BtcTurk suspends operations amid alleged $49M hot wallet heist
- Pwnie Awards 2025: Documented keys, exploit chains and a SignalGate T-shirt
For the more technical
- A mouse move that crashed the system – stack buffer overflow in display driver on macOS
- August 2025 Patch Tuesday: One publicly disclosed zero-day and 13 critical vulnerabilities among 107 CVEs
- MadeYouReset technical details - how (and why) it works? + more information
- MadeYouReset: Turning HTTP/2 server against itself
- Malicious packages across open-source registries: Detection statistics and trends (Q2 2025)
- Persistent risk: XZ Utils backdoor still lurking in Docker images
- 60 malicious Ruby Gems used in targeted credential theft campaign
- Invitation is all you need: Invoking Gemini for workspace agents with a simple Google Calendar invite
- BadCam: Now weaponizing Linux webcams
- CrossC2 expanding Cobalt Strike Beacon to cross-platform attacks
- Update WinRAR tools now: RomCom and others exploiting zero-day vulnerability
- Malvertising campaign leads to PS1Bot, a multi-stage malware framework
- Fire in the woods – A new variant of FireWood
- Exposing PathWiper: A deep dive into DCOM abuse and network erasure with Trellix NDR
- VexTrio unmasked: A legacy of spam and homegrown scams
- Inside the robot: Deconstructing VexTrio’s affiliate advertising platform
- Rapid breach: Social engineering to remote access in 300 seconds
- New ransomware Charon uses Earth Baxia APT techniques to target enterprises
- Picture paints a thousand codes: Dissecting image-based steganography in a .NET (Quasar) RAT loader
- Ghost in the Zip: New PXA stealer and its Telegram-powered ecosystem
- From Hidden Bee to Rhadamanthys – the evolution of custom executable formats
- Odyssey stealer: ClickFix malware attacks macOS users for credentials and crypto wallet details
- Dissecting the CastleBot malware-as-a-service operation
- Unveiling a new variant of the DarkCloud campaign
- New infection chain and ConfuserEx-based obfuscation for DarkCloud stealer
- Unmasking SocGholish: Silent push untangles the malware web behind the “pioneer of fake updates” and its operator, TA569
- Tracking Candiru’s DevilsTongue spyware in multiple countries
- Revisiting UNC3886 tactics to defend against present risk
- Curly COMrades: A new threat actor targeting geopolitical hotbeds
- The covert operator's playbook: Infiltration of global telecom networks
- GenAI used for phishing websites impersonating Brazil’s government
- Unmasking Interlock group's evolving malware arsenal
Did you enjoy this list? You can subscribe to one of our feeds on Twitter, Facebook or RSS.
Comments