Kali Linux 2025.3 releases Gemini CLI for automated pentesting

October 07, 2025 An Ruwaito ta hanyar AI

The latest Kali Linux update, version 2025.3, introduces Gemini CLI, an open-source tool that integrates Google's Gemini AI into the terminal. This innovation automates penetration testing tasks like reconnaissance and vulnerability scanning using natural language prompts. Security professionals can now streamline workflows while maintaining control over assessments.

Microsoft warns of payroll pirate scam targeting university employees

October 11, 2025 An Ruwaito ta hanyar AI

Microsoft has alerted organizations to a phishing campaign dubbed 'Payroll Pirate' that compromises Workday accounts to divert employee paychecks. The scam, active since March 2025, has affected accounts at multiple universities. Attackers use sophisticated tactics to bypass multi-factor authentication and hide their changes.

GovWare 2025 Announced for Singapore

The GovWare Conference and Exhibition 2025 has been announced to take place from October 21 to 23 in Singapore, marking a decade of partnership with the Singapore International Cyber Week. This event will gather cybersecurity experts to address regional and global challenges.

Salesforce refuses extortion demand over 1 billion records breach

Salesforce has announced it will not pay a ransom demanded by a cybercrime group claiming to have stolen around 1 billion records from its customers. The group, known as Scattered LAPSUS$ Hunters, set a deadline of Friday for payment to avoid data leaks. This stance comes amid rising global ransomware incidents and expert warnings against funding criminals.

UK tribunal orders Apple to hand over iCloud data

October 04, 2025 An Ruwaito ta hanyar AI

A UK tribunal has ruled that Apple must provide access to iCloud data for law enforcement purposes, prompting strong disapproval from the company. The decision revives concerns over encryption backdoors and user privacy in the digital age. Apple has described the order as a significant setback for data protection.

Cl0p ransomware group claims breach of Oracle E-Business Suite

October 03, 2025 An Ruwaito ta hanyar AI

The Cl0p ransomware group has claimed responsibility for hacking Oracle's E-Business Suite, asserting that it stole sensitive data from companies using the application. The hackers are now notifying affected victims and demanding ransoms to prevent data leaks. Oracle has not yet confirmed the breach.

Red Hat Introduces Rekor Monitor for Artifact Signer

Red Hat has enabled Rekor Monitor for its Trusted Artifact Signer, enhancing software supply chain security through continuous verification. This update allows users to improve transparency log integrity.

Microsoft announces premium 365 features and security store

October 04, 2025 An Ruwaito ta hanyar AI

Microsoft has unveiled Microsoft 365 Premium, a new subscription tier with advanced AI capabilities, alongside the launch of the Microsoft Security Store, an online marketplace for security solutions. These announcements aim to enhance productivity and cybersecurity for businesses. The moves come as part of Microsoft's ongoing push into AI-integrated services.

Power plant in Karlskrona hit by cyberattack

October 04, 2025 An Ruwaito ta hanyar AI

A combined heat and power plant in Karlskrona, known as Mältan, suffered a cyberattack that disrupted operations overnight. Police are investigating the incident as a suspected IT crime. The plant supplies district heating and electricity to the area.

Android spyware disguises itself as signal or totok updates

Cybersecurity researchers have uncovered a new strain of Android spyware that masquerades as legitimate updates for popular messaging apps Signal and Totok. The malware aims to trick users into installing it, potentially compromising their devices and data. Experts urge Android users to verify app sources to avoid falling victim.