Breaking News – Cyber Threats (last 6h)
Generated: 2025-11-27 12:00 PST
- Bloody Wolf Expands Java-based NetSupport RAT Attacks in Kyrgyzstan and Uzbekistan
The Hacker News • 2025-11-27 10:13 • thehackernews.com
The threat actor known as Bloody Wolf has been attributed to a cyber attack campaign that has targeted Kyrgyzstan since at least June 2025 with the goal of delivering NetSupport RAT.
As of October 2025, the activity has expanded to also single out Uzbekistan, Group-IB researchers Amirbek Kurbanov and Volen Kayo said in a report published in collaboration with Ukuk, a state enterprise under the
https://thehackernews.com/2025/11/bloody-wolf-expands-java-based.html - Microsoft to Block Unauthorized Scripts in Entra ID Logins with 2026 CSP Update
The Hacker News • 2025-11-27 07:37 • thehackernews.com
Microsoft has announced plans to improve the security of Entra ID authentication by blocking unauthorized script injection attacks starting a year from now.
The update to its Content Security Policy (CSP) aims to enhance the Entra ID sign-in experience at “login.microsoftonline[.]com” by only letting scripts from trusted Microsoft domains run.
“This update strengthens security and adds an extra
https://thehackernews.com/2025/11/microsoft-to-block-unauthorized-scripts.html - Webinar: Learn to Spot Risks and Patch Safely with Community-Maintained Tools
The Hacker News • 2025-11-27 06:59 • thehackernews.com
If you’re using community tools like Chocolatey or Winget to keep systems updated, you’re not alone. These platforms are fast, flexible, and easy to work with—making them favorites for IT teams. But there’s a catch…
The very tools that make your job easier might also be the reason your systems are at risk.
These tools are run by the community. That means anyone can add or update packages. Some
https://thehackernews.com/2025/11/webinar-learn-to-spot-risks-and-patch.html
Sources: BleepingComputer, The Hacker News, KrebsOnSecurity, SANS ISC, CISA.
