Emerging FunkSec Ransomware Developed Using AI
Developed with the help of AI, the emerging FunkSec ransomware claimed over 80 victims in December 2024.
The post Emerging FunkSec Ransomware Developed Using AI appeared first on SecurityWeek.
Similar Posts
Scattered Spider Hacking Suspect Extradited to US From Spain
Bys sMargi Murphy reports: An alleged member of the notorious Scattered Spider cybercrime group was extradited from Spain to the US on Wednesday, according to a Department of Justice official. Tyler Buchanan, a 23-year-old from Scotland, was arrested last year over his alleged involvement in the theft of sensitive data about American consumers and tens of…
CISA Warns of Active Exploitation in Trimble Cityworks Vulnerability Leading to IIS RCE
Bys sThe U.S. Cybersecurity and Infrastructure Security Agency (CISA) has warned that a security flaw impacting Trimble Cityworks GIS-centric asset management software has come under active exploitation in the wild. The vulnerability in question is CVE-2025-0994 (CVSS v4 score: 8.6), a deserialization of untrusted data bug that could permit an attacker to conduct remote code execution….
Phantom Taurus: New China-Linked Hacker Group Hits Governments With Stealth Malware
Bys sGovernment and telecommunications organizations across Africa, the Middle East, and Asia have emerged as the target of a previously undocumented China-aligned nation-state actor dubbed Phantom Taurus over the past two-and-a-half years. “Phantom Taurus’ main focus areas include ministries of foreign affairs, embassies, geopolitical events, and military operations,” Palo Alto Networks Unit 42
Hackers Exploit Metro4Shell RCE Flaw in React Native CLI npm Package
Bys sThreat actors have been observed exploiting a critical security flaw impacting the Metro Development Server in the popular “@react-native-community/cli” npm package. Cybersecurity company VulnCheck said it first observed exploitation of CVE-2025-11953 (aka Metro4Shell) on December 21, 2025. With a CVSS score of 9.8, the vulnerability allows remote unauthenticated attackers to execute arbitrary
Cybersecurity incident at Central Point School District 6
Bys sAnother day, another school district hit. KDRV in Oregon reports: Central Point School District 6 is addressing a cybersecurity incident that impacted its digital systems. According to the district, unauthorized access was detected on Wednesday, leading to immediate activation of cybersecurity protocols. The affected systems were isolated to prevent further issues. Cybersecurity experts and law…
Iranian Hackers Exploit 100+ Embassy Email Accounts in Global Phishing Targeting Diplomats
Bys sAn Iran-nexus group has been linked to a “coordinated” and “multi-wave” spear-phishing campaign targeting the embassies and consulates in Europe and other regions across the world. The activity has been attributed by Israeli cybersecurity company Dream to Iranian-aligned operators connected to broader offensive cyber activity undertaken by a group known as Homeland Justice. “Emails were…