⚡ THN Weekly Recap: Router Hacks, PyPI Attacks, New Ransomware Decryptor, and More

17/03/2025 0 Comments 0 tags

From sophisticated nation-state campaigns to stealthy malware lurking in unexpected places, this week’s cybersecurity landscape is a reminder that attackers are always evolving. Advanced threat groups are exploiting outdated hardware,

GitHub Action Compromise Puts CI/CD Secrets at Risk in Over 23,000 Repositories

17/03/2025 0 Comments 0 tags

Cybersecurity researchers are calling attention to an incident in which the popular GitHub Action tj-actions/changed-files was compromised to leak secrets from repositories using the continuous integration and continuous delivery (CI/CD)

Malicious PyPI Packages Stole Cloud Tokens—Over 14,100 Downloads Before Removal

15/03/2025 0 Comments 0 tags

Cybersecurity researchers have warned of a malicious campaign targeting users of the Python Package Index (PyPI) repository with bogus libraries masquerading as “time” related utilities, but harboring hidden functionality to

GSMA Confirms End-to-End Encryption for RCS, Enabling Secure Cross-Platform Messaging

14/03/2025 0 Comments 0 tags

The GSM Association (GSMA) has formally announced support for end-to-end encryption (E2EE) for securing messages sent via the Rich Communications Services (RCS) protocol, bringing much-needed security protections to cross-platform messages

Alleged Israeli LockBit Developer Rostislav Panev Extradited to U.S. for Cybercrime Charges

14/03/2025 0 Comments 0 tags

A 51-year-old dual Russian and Israeli national who is alleged to be a developer of the LockBit ransomware group has been extradited to the United States, nearly three months after

Why Most Microsegmentation Projects Fail—And How Andelyn Biosciences Got It Right

14/03/2025 0 Comments 0 tags

Most microsegmentation projects fail before they even get off the ground—too complex, too slow, too disruptive. But Andelyn Biosciences proved it doesn’t have to be that way.  Microsegmentation: The Missing

Live Ransomware Demo: See How Hackers Breach Networks and Demand a Ransom

14/03/2025 0 Comments 0 tags

Cyber threats evolve daily. In this live webinar, learn exactly how ransomware attacks unfold—from the initial breach to the moment hackers demand payment. Join Joseph Carson, Delinea’s Chief Security Scientist

OBSCURE#BAT Malware Uses Fake CAPTCHA Pages to Deploy Rootkit r77 and Evade Detection

14/03/2025 0 Comments 0 tags

A new malware campaign has been observed leveraging social engineering tactics to deliver an open-source rootkit called r77. The activity, condemned OBSCURE#BAT by Securonix, enables threat actors to establish persistence

New MassJacker Malware Targets Piracy Users, Hijacking Cryptocurrency Transactions

14/03/2025 0 Comments 0 tags

Users searching for pirated software are the target of a new malware campaign that delivers a previously undocumented clipper malware called MassJacker, according to findings from CyberArk. Clipper malware is

Microsoft Warns of ClickFix Phishing Campaign Targeting Hospitality Sector via Fake Booking[.]com Emails

13/03/2025 0 Comments 0 tags

Microsoft has shed light on an ongoing phishing campaign that targeted the hospitality sector by impersonating online travel agency Booking.com using an increasingly popular social engineering technique called ClickFix to