Black Hat USA 2025 is where cybersecurity’s sharpest minds gather to showcase the next generation of offensive and defensive tools and this year, the demos didn’t disappoint. Held at the Mandalay Bay in Las Vegas, the event featured hundreds of Briefings, open-source Arsenal tools, and hands-on hacking labs. But not every demo makes an impact … Continued
A major new cyberattack campaign has been uncovered, and this time it’s targeting developers through one of their most trusted tools, npm. Security researchers have found that North Korean hackers are behind a new wave of malicious npm packages, which are being used to infect systems with malware under the radar. This campaign is part … Continued
A new security bug has been found in Google Gemini for Workspace, and it’s raising serious concerns. This flaw allows attackers to plant hidden messages inside emails that can trick the Gemini AI into generating fake, dangerous summaries. What’s worse is that these messages are completely invisible to the person reading the email. The problem … Continued
In a major breakthrough, the Central Bureau of Investigation (CBI) in India has busted a fake tech support call center in Noida that was scamming people in the United Kingdom and Australia. The center posed as Microsoft support and tricked victims into paying for fake help with made-up computer problems. The raid happened on July … Continued
A new security flaw in eSIM technology is making headlines across the cybersecurity world. This vulnerability, found in Kigen’s eUICC cards, has put billions of smartphones, wearables, and IoT devices at risk of being attacked, cloned, or remotely accessed. The flaw lies in the Java Card virtual machine, which is the software platform inside these … Continued
A serious security flaw has been discovered in the eSIM technology used by millions of smartphones around the world. This bug could allow hackers to spy on users, take over their phones remotely, and even clone their identities. The vulnerability affects a wide range of devices and could have long-term consequences for how we think … Continued
A new Citrix vulnerability CVE-2025-5777 has officially made it to CISA’s Known Exploited Vulnerabilities (KEV) Catalog. That means it’s not just a theoretical bug anymore, hackers are already using it to break into real-world systems, and the threat is very much active right now. The flaw affects NetScaler ADC and Gateway appliances, especially when they’re … Continued
A new cyberattack campaign targeting China has been uncovered, and what makes it stand out is that the group behind it is believed to be based in North America. This group, named NightEagle or APT-Q-95, is a previously unknown advanced persistent threat (APT) actor. Researchers say it has been carrying out espionage operations against high-value … Continued
Black Hat USA 2025 takes over Mandalay Bay, Las Vegas from August 2 to 7, 2025. The six‑day stack includes four days of intense training (Aug 2–5), a full Summit Day (Aug 5), and two days of marquee Briefings, Business Hall, Arsenal, and networking (Aug 6–7). How to Plan Your Schedule for Maximum Value 1. … Continued
A new AI-based malware experiment has raised serious concerns in the cybersecurity world. A researcher named Avery has developed a proof-of-concept (PoC) that uses artificial intelligence to create malware that can bypass Microsoft Defender for Endpoint, one of the most widely used antivirus tools in the world. What makes this more alarming is that the … Continued
