Aggregator

The decentralised finance (DeFi) ecosystem was rocked by a significant exploit targeting Balancer, one of the leading DeFi platforms. The breach specifically impacted Balancer’s V2 Composable Stable Pools, resulting in losses that reportedly exceed $100 million. This major incident highlights ongoing security challenges within the DeFi sector and underscores the importance of robust auditing and […]

The post Balancer DeFi Platform Hit by Major Exploit Resulting in $100M+ in Losses appeared first on GBHackers Security | #1 Globally Trusted Cyber Security News Platform.

Security researchers have identified a dangerous remote access trojan called SleepyDuck lurking in the Open VSX IDE extension marketplace, targeting developers who use code editors like Cursor and Windsurf. The malicious extension masqueraded as a legitimate Solidity programming language helper, squatting on the name of an established extension to evade detection. The compromised extension juan-bianco.solidity-vlang […]

The post ‘SleepyDuck’ Malware in Open VSX Lets Attackers Remotely Control Windows PCs appeared first on GBHackers Security | #1 Globally Trusted Cyber Security News Platform.

As October 2025 closes, Sonrai’s latest analysis of new AWS permissions reveals a continued trend: incremental privilege changes with outsized impact. This month’s additions span OpenSearch Ingestion, Aurora DSQL, QuickSight, Parallel Computing Service, ARC Region Switch, and RTB Fabric, touching critical areas of data analytics, compute orchestration, and real-time traffic systems. These updates introduce capabilities […]

The post Oct Recap: New AWS Privileged Permissions and Services appeared first on Security Boulevard.

Dohop cut bot traffic by 70% with DataDome, blocking millions of scrapers and protecting 75+ airline partners from API overload and downtime.

The post Dohop Uses DataDome to Block Millions of Scrapers & Protect 75+ Airline Partners appeared first on Security Boulevard.

An ongoing malicious advertising campaign is weaponizing legitimate software downloads to deploy OysterLoader malware, previously identified as Broomstick and CleanUpLoader. This sophisticated initial access tool enables cybercriminals to establish footholds in corporate networks, ultimately serving as a delivery mechanism for the notorious Rhysida ransomware gang. The Rhysida ransomware operation has targeted enterprises since emerging from […]

The post Weaponized Putty and Teams Ads Deliver Malware Allowing Hackers to Access Network appeared first on Cyber Security News.

You must login to view this content