Hacking
Iranian MuddyWater hackers use compromised mailboxes in phishing scams
The Iranian hacking group known as MuddyWater has been using compromised email mailboxes to conduct global phishing campaigns. Their attacks aim to infect victims through malicious Word macros. The campaign was reported by TechRadar on October 23, 2025.
Framework Linux systems shipped with Secure Boot bypass vulnerability
AI에 의해 보고됨
Firmware security firm Eclypsium has discovered that about 200,000 Linux systems from Framework include signed UEFI components vulnerable to Secure Boot bypass. These components allow attackers to install persistent bootkits by exploiting a memory modification command. Framework is addressing the issue with updates for affected models.
Hackaday Links for September 14, 2025
Hackaday's weekly links roundup for September 14, 2025, features innovative tech projects, hacks, and engineering news. The compilation includes DIY electronics, open-source software, and hardware modifications. It serves as a resource for makers and engineers seeking inspiration.
Swedish power grid confirms hacker attack
Svenska kraftnät has confirmed a data breach after hacker group Everest claimed to have stolen large amounts of data. The group is now demanding money to avoid leaking the information and has been linked to Russian cyber groups. The authority is investigating the scope without impact on the power system.
F5 breach creates imminent threat to thousands of networks
Networking software firm F5 disclosed a long-term breach of its systems this week, prompting a federal warning about risks to thousands of networks. A nation-state hacking group is believed to be behind the intrusion, which involved stealing source code. The US government highlighted dangers to its own operations and Fortune 500 companies.