Kerberoasting in 2025: How to protect your service accounts

Kerberoasting attacks let hackers steal service account passwords and escalate to domain admin, often without triggering ...
CSO Online

Rogue MCP servers can take over Cursor’s built-in browser

A new proof-of-concept attack shows that malicious Model Context Protocol servers can inject JavaScript into Cursor’s browser ...

Police disrupts Rhadamanthys, VenomRAT, and Elysium malware operations

Law enforcement authorities from 9 countries have taken down 1,025 servers used by the Rhadamanthys infolstealer, VenomRAT, ...
Cryptopolitan on MSN

Europol, Eurojust joint operation takes down over 1,025 servers used by malware operations

Europol, alongside Eurojust, has taken down over 1,025 servers used by three malware families: Rhadamanthys infostealer, ...
SecurityWeek

Tens of Thousands of Malicious NPM Packages Distribute Self-Replicating Worm

A threat actor has published tens of thousands of malicious NPM packages that contain a self-replicating worm, security researchers warn.
Infosecurity Magazine

“IndonesianFoods” npm Worm Publishes 44,000 Malicious Packages

“After GlassWorm showed how quickly a malicious package could self-replicate across npm, and the chalk/debug hijacking ...
PCMag on MSN

Europol Goes After Orgs Behind 3 Malware Strains, Takes Down 1,000+ Servers

Law enforcement dismantles the servers behind Rhadamanthys, VenomRAT, and Elysium, three malware strains that were fueling ...