Cybersecurity
New gentlemen's raas advertised on underground forums
Lisa Kern Larawang ginawa ng AI
Threat actor zeta88 is promoting a new ransomware-as-a-service operation called The Gentlemen's RaaS on hacking forums, targeting Windows, Linux, and ESXi systems. The platform offers affiliates 90 percent of ransom payments and features cross-platform encryption tools developed in Go and C. This development highlights the ongoing commercialization of sophisticated ransomware targeting enterprise environments.
Qilin ransomware uses WSL to run Linux encryptors on Windows
Cybersecurity researchers have uncovered a tactic by the Qilin ransomware group that exploits Microsoft's Windows Subsystem for Linux (WSL) to execute Linux-based encryption tools on Windows machines. This method allows attackers to bypass many endpoint detection and response (EDR) systems by operating in a Linux sandbox environment that traditional tools often overlook. The technique highlights the growing sophistication of ransomware operations blending operating systems.
Amazon web services outage disrupts wide swaths of the web
Amazon Web Services suffered DNS resolution issues on Monday, causing cascading outages that affected numerous websites. The incident highlighted the internet's heavy dependence on major cloud providers like AWS. Amazon has explained the root causes behind the widespread disruption.
SquareX exposes spoofing vulnerability in AI browsers
October 29, 2025 06:51Malicious packages overwhelm NPM with over 86,000 downloads
October 29, 2025 04:54Surfshark launches email scam checker to fight phishing
October 28, 2025 17:25Kali Linux 2025.3 release introduces new tools and updates
October 28, 2025 00:38Qilin ransomware uses WSL to run Linux encryptors on Windows
October 27, 2025 10:24Scam targets LastPass users with fake death certificate claims
October 27, 2025 09:05Experts warn of OAuth token theft in Microsoft Copilot Studio
October 25, 2025 07:53Millions of UK people reuse one password across accounts
October 24, 2025 13:39Amazon outage caused by single failure in AWS network
October 24, 2025 09:38Thousands of YouTube videos disguised as cheat codes removed for spreading malware
Malicious npm packages steal developer credentials on multiple platforms
Lisa Kern Larawang ginawa ng AI
Ten typosquatted npm packages, uploaded on July 4, 2025, have been found downloading an infostealer that targets sensitive data across Windows, Linux, and macOS systems. These packages, mimicking popular libraries, evaded detection through multiple obfuscation layers and amassed nearly 10,000 downloads. Cybersecurity firm Socket reported the threat, noting the packages remain available in the registry.
Gunra ransomware exploits Windows and Linux with encryption vulnerabilities
The Gunra ransomware group, active since April 2025, targets both Windows and Linux systems worldwide through platform-specific malware variants. While the Windows version employs secure encryption, the Linux variant suffers from critical weaknesses that allow brute-force decryption. Organizations in regions like South Korea have reported infections, highlighting the group's expanding operations.
Qilin ransomware deploys Linux binaries against Windows systems
The Qilin ransomware group, also known as Agenda, has developed a hybrid attack using Linux payloads on Windows hosts to evade detection. By abusing legitimate remote management tools and exploiting vulnerable drivers, attackers disable defenses and target backups. This cross-platform tactic highlights evolving ransomware sophistication.
Report claims fewer firms paying ransomware demands
A new report suggests that ransomware attacks are becoming less successful for cybercriminals, with the number of firms paying ransoms plummeting. This indicates a potential shift in the cybersecurity landscape. The findings highlight that ransomware is not always as effective as it appears.