Phishing attack abuses QR codes to bypass FIDO keysLaura FrenchJuly 17, 2025A man-in-the-middle attack relays a cross-device sign-in mechanism via a fake login site.
MalwareMicrosoft Teams phishing spreads updated Matanbuchus malware loaderMatanbuchus 3.0 adds greater stealth and execution capabilities, and could lead to ransomware.
Network SecurityChina-linked Salt Typhoon infiltrated state National Guard networkSecurity officials touted victory over a second China-linked group on critical infrastructure networks.
DevOps67 malicious npm packages, novel loader spread North Korean malwarePackages that load BeaverTail malware were downloaded more than 17,000 times.
Supply chainWordPress plugin Gravity Forms targeted in supply chain attackCertain versions of the legitimate plugin contained malware for a brief time period.
DevOpsFake Visual Studio Code extension for Cursor led to $500K theftThe spoofed “Solidity” extension was installed from the Open VSX registry in Cursor.
Network SecurityChina-based hacker to face charges in US after arrest in ItalyMan believed to be a member of group that stole research and intellectual property from the U.S.
Vulnerability ManagementAI tool predicts 17% increase in CVE disclosures in 2025CVEForecast leverages historical CVE data to train predictive machine learning models.
MalwareNordDragonScan infostealer targets Windows with LOTL methodsThe campaign distracts victims from its malicious nature using benign decoy documents.
RansomwareDragonForce ransomware variant tied to emerging DEVMAN threat actorThe ransomware sample contained “oddities” including encryption of its own ransom note.
Critical Infrastructure SecurityUS security agencies warn of Iranian cyberattacks on infrastructureIran may be battered, but they are not defeated and could lash out against U.S. bases worldwide and at businesses here at home.