BleepingComputer.com
"60 malicious Ruby gems downloaded 275,000 times steal credentials."
Views expressed in this cybersecurity, cyber crime update are those of the reporters and correspondents. Accessed on 09 August 2025, 1437 UTC.
Content and Source: "BleepingComputer.com."
URL-- https://www.bleepingcomputer.com/
Please check URL or scroll down to read your selections. Thanks for joining us today.
Russ Roberts (https://www.hawaiicybersecurityjournal.net).
60 malicious Ruby gems downloaded 275,000 times steal credentials
Sixty malicious Ruby gems containing credential-stealing code have been downloaded over 275,000 times since March 2023, targeting developer accounts.
- August 09, 2025
- 10:11 AM
0
Learn ChatGPT and automation skills with this 12 course deal
If AI and automation aren't part of your workflow yet, you're missing opportunities to save time, improve output, and stay competitive. The ChatGPT & Automation E‑Degree delivers hands‑on, real‑world training for using ChatGPT and over 20 AI tools to solve business, marketing, and coding challenges.
- August 09, 2025
- 08:12 AM
- 0
Identity attacks have changed — have your IR playbooks?
Identity detection and response used to focus on on-prem Active Directory compromises. Today, identity attacks extend beyond the network, targeting cloud identities created, used, and exploited in the browser.
Join Push Security to learn about how identity attacks have evolved — and how IR playbooks need to adapt.
OpenAI to fix GPT-5 issues, double rate limits for paid users after outrage
OpenAI's CEO, Sam Altman, overpromised on GPT-5, and real-life results are underwhelming, but it looks like a new update is rolling out that might address some of the concerns.
- August 08, 2025
- 05:23 PM
- 0
WinRAR zero-day exploited to plant malware on archive extraction
A recently fixed WinRAR vulnerability tracked as CVE-2025-8088 was exploited as a zero-day in phishing attacks to install the RomCom malware.
- August 08, 2025
- 04:42 PM
- 0
FTC: older adults lost record $700 million to scammers in 2024
Americans aged 60 and older lost a staggering $700 million to online scams in 2024, marking a sharp rise in fraud targeting seniors, according to the Federal Trade Commission.
- August 08, 2025
- 01:55 PM
- 0
U.S. Judiciary confirms breach of court electronic records service
The U.S. Federal Judiciary confirms that it suffered a cyberattack on its electronic case management systems hosting confidential court documents and is strengthening cybersecurity measures.
- August 08, 2025
- 11:30 AM
- 1
Retouch, enhance, erase — all in one with $20 Luminar app deal
The Luminar Mobile app brings smart, powerful photo editing tools to your phone in a way that's—finally—actually fun to use. For a one-time payment of just $19.99 (yep, no ongoing subscription fees), you get lifetime access to an advanced mobile photo editors.
- August 08, 2025
- 07:12 AM
- 0
Microsoft 365 apps to soon block file access via FPRPC by default
Microsoft has announced that the Microsoft 365 apps for Windows will start blocking access to files via the insecure FPRPC legacy authentication protocol by default starting late August.
- August 08, 2025
- 06:52 AM
- 0
Microsoft will kill the Lens PDF scanner app for iOS, Android
Microsoft announced that it will phase out the Microsoft Lens PDF scanner app for Android and iOS devices starting September 15, 2025.
- August 08, 2025
- 05:59 AM
- 0
Columbia University data breach impacts nearly 870,000 individuals
An unknown threat actor has stolen the sensitive personal, financial, and health information of nearly 870,000 Columbia University current and former students and employees after breaching the university's network in May.
- August 08, 2025
- 04:43 AM
- 2
Royal and BlackSuit ransomware gangs hit over 450 US companies
The U.S. Department of Homeland Security (DHS) says the cybercrime gang behind the Royal and BlackSuit ransomware operations had breached hundreds of U.S. companies before their infrastructure was dismantled last month.
- August 08, 2025
- 03:36 AM
- 0
Fake WhatsApp developer libraries hide destructive data-wiping code
Two malicious NPM packages posing as WhatsApp development tools have been discovered deploying destructive data-wiping code that recursively deletes files on a developer's computers.
- August 07, 2025
- 05:42 PM
- 0
CISA orders fed agencies to patch new Exchange flaw by Monday
CISA has issued an emergency directive ordering all Federal Civilian Executive Branch (FCEB) agencies to mitigate a critical Microsoft Exchange hybrid vulnerability tracked as CVE-2025-53786 by Monday morning at 9:00 AM ET.
- August 07, 2025
- 04:14 PM
- 0
ChatGPT's GPT-5 models released: everything you need to know
After a long wait, GPT-5 is finally rolling out. It's available for free, Plus, Pro and Team users today. This means everyone gets to try GPT-5 today, but paid users get higher limits.
- August 07, 2025
- 03:03 PM
- 0
Don’t miss 15 multi-lesson coding courses for just $40 in this deal
If you've ever Googled "how to learn to code" and immediately felt overwhelmed—congrats, you're not alone. But here's the good news: For a one-time payment of $39.97, you get lifetime access to 15 courses, totaling over 213 hours of beginner-friendly and career-focused coding content.
- August 07, 2025
- 02:05 PM
- 0
New EDR killer tool used by eight different ransomware groups
A new Endpoint Detection and Response (EDR) killer that is considered to be the evolution of 'EDRKillShifter,' developed by RansomHub, has been observed in attacks by eight different ransomware gangs.
- August 07, 2025
- 01:58 PM
- 0
Bouygues Telecom confirms data breach impacting 6.4 million customers
Bouygues Telecom warns it suffered a data breach after the personal information of 6.4 million customers was exposed in a cyberattack.
- August 07, 2025
- 01:23 PM
- 0
SonicWall finds no SSLVPN zero-day, links ransomware attacks to 2024 flaw
SonicWall says that recent Akira ransomware attacks exploiting Gen 7 firewalls with SSLVPN enabled are exploiting an older vulnerability rather than a zero-day flaw.
- August 07, 2025
- 11:27 AM
- 0
Wave of 150 crypto-draining extensions hits Firefox add-on store
A malicious campaign dubbed 'GreedyBear' has snuck onto the Mozilla add-ons store, targeting Firefox users with 150 malicious extensions and stealing an estimated $1,000,000 from unsuspecting victims.
- August 07, 2025
- 10:00 AM
- 0
Cryptomixer founders pled guilty to laundering money for cybercriminals
The founders of the Samourai Wallet (Samourai) cryptocurrency mixer have pleaded guilty to laundering over $200 million for criminals.
- August 07, 2025
- 07:45 AM
- 0
Comments
Post a Comment
Please leave a comment about our recent post.