Cybersecurity News

Daily Briefing
N2K logo
3 hours ago
Romanian police arrest 13 suspects tied to UK's phishing investigation.
Prompt injection flaw can force Google's Gemini to present phishing messages. Louis Vuitton UK discloses breach.
Research Saturday
N2K logo
Jul 12, 2025
Click here to steal.
Today we are joined by ⁠Selena Larson⁠, Threat Researcher at ⁠Proofpoint⁠, and co-host of ⁠Only Malware in the Building⁠, as she discusses their work on "Amatera Stealer - Rebranded ACR Stealer With Improved Evasion, Sophistication." Proofpoint researchers have identified Amatera Stealer, a rebranded and actively developed malware-as-a-service (MaaS) variant of the former ACR Stealer, featuring advanced evasion techniques like NTSockets for stealthy C2 communication and WoW64 Syscalls to bypass user-mode defenses. Distributed via ClearFake web injects and the ClickFix technique, Amatera leverages multilayered PowerShell loaders, blockchain-based hosting, and creative social engineering to compromise victims. With enhanced capabilities to steal browser data, crypto wallets, and other sensitive files, Amatera poses a growing threat in the wake of disruptions to competing stealers like Lumma.
Week that Was
N2K logo
Jul 12, 2025
CISA warns of CitrixBleed 2 exploitation.
UK police arrest four suspects over retail cyberattacks. Qantas data breach affects 5.7 million customers.
CyberWire Daily
N2K logo
Jul 11, 2025
Behind the firewall, trouble brews.
Fortinet patches a critical flaw in its FortiWeb web application firewall. Hackers are exploiting a critical vulnerability in Wing FTP Server. U.S. Cyber Command’s fiscal 2026 budget includes a new AI project. Czechia’s cybersecurity agency has issued a formal warning about Chinese AI company DeepSeek. The DoNot APT group targets Italy’s Ministry of Foreign Affairs. Mexico’s former president is under investigation for alleged bribes to secure spyware contracts. The FBI seizes a major Nintendo Switch piracy site. CISA releases 13 ICS advisories. A retired US Army lieutenant colonel pleads guilty to oversharing classified information on a dating app. Our guest is Catherine Woneis, VP of Product at Fingerprint, to discuss how bots are being used to facilitate music royalty fraud. A federal judge is not impressed with a crypto-thief’s lack of restitution.
Press
N2K logo
Jul 11, 2025
N2K Networks, a global leader in cybersecurity certification readiness and performance-driven study solutions, today announced a new partnership with The Technology Advancement Center (TAC), a nonprofit cybersecurity innovation hub and premier training provider serving the public and private sectors, including the U.S. armed forces and intelligence community. Committed to advancing both workforce development and technology to address critical cybersecurity challenges, TAC will integrate N2K’s library of over 100 industry-leading certification practice tests and adaptive study aids to further expand its robust training catalog. Together, N2K and TAC will leverage their expertise to strengthen the cybersecurity workforce and help close the industry’s critical talent gaps.
Daily Briefing
N2K logo
Jul 11, 2025
Fortinet patches critical SQL injection flaw.
India-aligned espionage campaign targets the Italian government. Russian pro basketball player arrested for alleged ties to ransomware operations.
The FAIK Files
N2K logo
Jul 11, 2025
Climbing Through the Context Window
In this week's episode: Meet Claude, Small Business Owner; Tricking AI – two different ways; Shifting Policies Around AI Content; and Dumpster Fire of the week: Grok goes full Nazi.
CyberWire Daily
N2K logo
Jul 10, 2025
Cybercrime has a hefty price tag.
UK police make multiple arrests in the retail cyberattack case. French authorities arrest a Russian basketball player at the request of the U.S. A German court declares open season on Meta’s tracking pixels. The European Union unveils new rules to regulate artificial intelligence. London’s Iran International news confirms cyberattacks from Banished Kitten. Treasury sanctions a North Korean hacker over fake IT worker schemes. Microsoft confirms a widespread issue preventing organizations from deploying the latest Windows updates. Agreements over AI help end a year-long Hollywood strike. Researchers take an in-depth look at ClickFix. I’m joined by Ben Yelin and Ethan Cook for a look at Congress’ recent attempt to limit AI regulation through preemption. Password insecurity with a side of fries.
Caveat
N2K logo
Jul 10, 2025
SEC is establishing crypto ETF governance.
Appeals court strikes down click-to-cancel rule.
Daily Briefing
N2K logo
Jul 10, 2025
UK arrests four suspects over retail cyberattacks.
Qantas data breach affects 5.7 million customers. US Treasury sanctions North Korean for alleged IT worker scheme.
Threat Vector
N2K logo
Jul 10, 2025
Reach for What You Preach: Bridging UX and Cybersecurity
In this episode of Threat Vector, ⁠David Moulton⁠ talks with ⁠Dimitry Shvartsman⁠, Co-Founder and Chief Product Officer of ⁠Prime Security⁠, about transforming security into a proactive business enabler. Drawing on decades of experience, Dimitry explains why integrating security at the design stage—not after deployment—is key to reducing risk and improving outcomes. The conversation highlights the challenges of scaling secure development and the role of automation in modern application security. If you're interested in aligning product, design, and security teams to build more resilient software, this episode delivers clear insight and practical advice.
story
N2K logo
Jul 10, 2025
Policy Deep Dive: Preemption
In this special policy series, the Caveat team is taking a deep dive into key topic areas that are likely to generate notable conversations and political actions throughout the next administration.
Load More
Gain instant access to our exclusive podcast and briefing content, the Pro Academy, live events and more by subscribing to N2K Pro.
Subscribe Now