Author: RedSecNinja
-
Microsoft’s August 2025 Patch Tuesday fixes 111 flaws, including Kerberos ‘BadSuccessor’ zero day
Microsoft’s August 2025 Patch Tuesday addresses 111 vulnerabilities—16 critical and one Kerberos zero‑day called BadSuccessor. Discover what’s patched and why it matters.
-
77 malicious Android apps with 19 million downloads removed from Google Play
Zscaler researchers discovered 77 malicious apps on Google Play with more than 19 million downloads. These apps delivered Joker, Harly and Anatsa malware. Learn what they do and how to stay safe.
-
CISA adds Citrix and Git vulnerabilities to Known Exploited Vulnerabilities (KEV) catalog
CISA has added three vulnerabilities—two affecting Citrix Session Recording and one in Git—to its Known Exploited Vulnerabilities catalog. Learn why these flaws matter and how to patch them.
-
Allianz Life data breach exposes information of 1.1 million customers
A Salesforce-targeted attack by the ShinyHunters group led to the theft of personal data belonging to 1.1 million Allianz Life customers. Read about what happened and how to protect yourself.
-
Critical Docker Desktop vulnerability allows host hijacking (CVE-2025-9074)
A severe SSRF flaw in Docker Desktop for Windows and macOS (CVE-2025-9074) lets malicious containers hijack the host. Learn how the bug works, who discovered it and how to patch your systems.
-
Android’s August 2025 update patches actively exploited Qualcomm flaws
Google’s August 2025 Android update fixes six vulnerabilities, including two Qualcomm GPU bugs exploited in the wild (CVE‑2025‑21479, CVE‑2025‑27038). Find out what’s fixed and how to protect your device.
-
AI‑Driven Malware PoC Shows How Reinforcement Learning Can Outsmart Microsoft Defender
Introduction Security researchers have long warned that large language models (LLMs) could enable the mass automation of malware development. Until recently those fears were hypothetical, because AI chatbots could only generate simple code or phishing emails【183109028965074†L173-L178】. At the 2025 Black Hat conference, Kyle Avery of Outflank unveiled a proof‑of‑concept (PoC) model that takes those concerns a…
-
Lumma Stealer Takedown: Law‑Enforcement Disrupts a Global Credential‑Stealing Empire
Overview Lumma Stealer (also known as LummaC2) is a commercial malware‑as‑a‑service platform that rents out credential‑stealing code to cybercriminals. The malware specializes in harvesting browser data, autofill information, login credentials and even cryptocurrency wallet seed phrases【823560596664728†L169-L189】. Attackers use it in ransomware campaigns, business email compromise and other online scams by renting the tool on a…
-
Emerging AI-Driven Cyber Threats: Deepfake Impersonations, Adaptive Malware, and LLM-Powered Social Engineering
Introduction As artificial intelligence (AI) technologies such as large language models (LLMs) and generative AI continue to accelerate, cybercriminals are weaponizing these tools to launch increasingly sophisticated attacks. Deepfake impersonations, adaptive malware that learns from defenses, AI crafted phishing, and automated vulnerability discovery are reshaping the threat landscape. Understanding these emerging AI driven threats is vital for…
-
Back to School Cybersecurity: Protecting K-12 Networks Amid Resource Constraints
Introduction As students return to classrooms, K‑K‑2 schools face growing cyber risks. Most districts rely on Chromebooks and Google accounts to support remote and blended learning, but limited IT staffing and budgets make defending these networks difficult. Attackers know this and increasingly target schools with ransomware, account takeovers and data theft【388377501043756†L190-L333】. Unique Challenges Attack Vectors…
redsec.ninja 