- Microsoft pins GoAnywhere zero-day attacks to ransomware affiliate Storm-1175
by Matt Kapko on October 7, 2025 at 8:44 pmMultiple researchers and CISA have confirmed active exploitation of the maximum-severity defect. Fortra, the company behind the file-transfer service, remains silent. The post Microsoft pins GoAnywhere zero-day attacks to ransomware affiliate Storm-1175 appeared first on CyberScoop.
- OpenAI: Threat actors use us to be efficient, not make new toolsby djohnson on October 7, 2025 at 7:56 pm
A new report from the leader in the generative AI boom says AI is being used in existing workflows, instead of to create new ones dedicated to malicious hacking. The post OpenAI: Threat actors use us to be efficient, not make new tools appeared first on CyberScoop.
- Oracle zero-day defect amplifies panic over Clopâs data theft attack spreeby Matt Kapko on October 6, 2025 at 9:34 pm
The notorious ransomware group exploited multiple vulnerabilities, including a zero-day, for at least eight weeks before alleged victims received extortion demands. The post Oracle zero-day defect amplifies panic over Clopâs data theft attack spree appeared first on CyberScoop.
- House Dems seek info about ICE spyware contract, wary of potential abusesby Tim Starks on October 6, 2025 at 6:27 pm
The three lawmakers said the reported lifting of a stop-work order on a $2 million Paragon Solutions contract threatens Americansâ fundamental rights. The post House Dems seek info about ICE spyware contract, wary of potential abuses appeared first on CyberScoop.
- Potential EU law sparks global concerns over end-to-end encryption for messaging appsÂby djohnson on October 6, 2025 at 6:25 pm
The EU will vote Oct. 14 on a proposal that would use AI or humans to detect child sexual abuse material on their devices.  The post Potential EU law sparks global concerns over end-to-end encryption for messaging apps appeared first on CyberScoop.
- Security leaders at Okta and Zscaler share lessons from Salesloft Drift attacksby Matt Kapko on October 6, 2025 at 10:00 am
Okta thwarted the supply-chain attack with security controls it had in place. Zscaler did not. Their experiences provide insights into the root of a much broader problem. The post Security leaders at Okta and Zscaler share lessons from Salesloft Drift attacks appeared first on CyberScoop.
- Federal judiciary touts cybersecurity work in wake of latest major breachby Tim Starks on October 3, 2025 at 6:25 pm
The Administrative Office of the United States Courts denied ignoring expert advice in a letter to Sen. Ron Wyden, D-Ore., who blasted Chief Justice Roberts in a response statement. The post Federal judiciary touts cybersecurity work in wake of latest major breach appeared first on CyberScoop.
- Researchers say Israeli government likely behind AI-generated disinfo campaign in Iran
by djohnson on October 3, 2025 at 5:15 pmThe group leveraged dozens of social media accounts and âroutinely usedâ AI-generated imagery and video to stoke unrest among Iranâs population, according to Citizen Lab. The post Researchers say Israeli government likely behind AI-generated disinfo campaign in Iran appeared first on CyberScoop.
- Red Hat confirms breach of GitLab instance, which stored companyâs consulting databy Matt Kapko on October 2, 2025 at 9:35 pm
The open-source software company said exposure is limited to consulting engagements, adding that it hasnât found evidence of personal or sensitive data theft. The post Red Hat confirms breach of GitLab instance, which stored companyâs consulting data appeared first on CyberScoop.
- Here is the email Clop attackers sent to Oracle customersby Matt Kapko on October 2, 2025 at 7:36 pm
The emails, which are littered with broken English, aim to instill fear, apply pressure, threaten public exposure and seek negotiation for a ransom payment. The post Here is the email Clop attackers sent to Oracle customers appeared first on CyberScoop.
CyberScoop
We are an ethical website cyber security team and we perform security assessments to protect our clients.