Attacks weaponizing the Cisco Adaptive Security Appliance vulnerabilities, tracked as CVE-2025-20333 and CVE-2025-20362, were reported by the Cybersecurity and Infrastructure Security Agency to have successfully compromised a federal civilian executive branch agency with the FIRESTARTER malware in September, according to The Record, a news site by cybersecurity firm Recorded Future.
ESET research revealed GopherWhisper's tactics, which include deploying multiple Go-based backdoors like LaxGopher and RatGopher, along with a C++ backdoor named SSLORDoor.
China-linked hacking group Mustang Panda has broadened its cyber espionage operations, now targeting India's financial sector and political circles in South Korea.
The Harvester group, believed to be state-sponsored, has been active since at least 2021, targeting telecommunications, government, and IT organizations in South Asia with custom tools.
GBHackers News reports that ordinary PNG images have been injected with portable executable payloads to facilitate the fileless execution of the PureRAT malware as part of a new multi-stage attack campaign.
Multiple web browsers, browser extensions, and cryptocurrency wallets could have their stored credentials and live session cookies compromised by a new AppleScript-based information-stealing malware spread in a macOS-targeted ClickFix campaign, reports The Register.
The latest NGate variant injects malicious code into a trojanized version of HandyPay, a Google Play app available since 2021 that facilitates NFC data transmissions.
Fast Five
Selected by the SC Media Editorial team every Tuesday.
Sign up now for the top five issues cybersecurity pros need to know this week.
