- Iran’s APT42 hackers are now targeting defense officials and their families.

They send fake WhatsApp invites that install a PowerShell backdoor called TAMECAT using Cloudflare, Discord, and Telegram.

It’s active and still spreading.

- China’s hackers used Anthropic’s AI to run cyber attacks — almost fully on its own.

They turned Claude into a self-running hacking tool that hit tech, finance, and government targets.

AI did about 90% of the work by itself.

- ⚠️ Hackers are actively exploiting a Fortinet FortiWeb bug that lets them skip login and make admin accounts.

Fortinet quietly fixed it in v8.0.2 — no CVE, no warning.

If you haven’t patched yet, your device might already be hit.

- Hackers made 4,300+ fake hotel websites copying Booking[.]com, Airbnb, and Expedia.

Each fake page looks real, changes based on your booking link, and steals your card details.

- Google sued a Chinese hacker group that runs a phishing service called Lighthouse.

It tricked over 1 million people in 120 countries and made more than $1 billion using fake Google and USPS pages.

They sold the phishing kits — $88 a week to $1,588 a year.

- Active Directory is the single point of failure for most enterprises.

One bad password or missed update can give attackers full control. They know it. Most teams don’t act on it.

- Wild find from Microsoft.

Even when your AI chats are encrypted, someone watching the network can still guess what you’re talking about.

They call it "Whisper Leak" side-channel attack.

And in tests, models like OpenAI and Mistral gave away topics with 98% accuracy.

- Two Android trojans are silently draining accounts.

🔹 One pretends to be a government ID app.
🔹 The other hides as a food delivery tracker.

They even mute your phone — so you never hear it happen.

Learn more about BankBot-YNRK & DeliveryRAT ↓ thehackernews.com/2025/11/rese...

- China is testing robot dogs for firefighting

They can crawl into places that are hard for firefighters to access inside burning buildings. The robots also collect data on toxic gases and temperature.

- GOOGLE MAPS just unveiled AI-powered Live Lane Guidance that uses a car’s front camera to analyze real-time road conditions and guide drivers through complex interchanges.
The feature rolls out first to Polestar 4 vehicles in the U.S. in the coming months and will expand to more automakers.

- over 400 Cisco routers hacked across Australia!

A new implant called BADCANDY is exploiting CVE-2023-20198 — even after patches.

Rebooting won’t help. Hackers just come back.

- OpenAI just launched an AI #cybersecurity researcher.

It finds bugs, proves they’re real, and patches them — all by itself.

Powered by GPT-5, it’s already discovered 10 vulnerabilities

- PHP servers are under attack.

Mirai, Mozi, and Gafgyt botnets are exploiting old CVEs to hijack WordPress and Craft CMS sites.

Some break-ins start from leftover PhpStorm debug sessions still running in production

- SideWinder hackers strike again.

A European embassy in New Delhi was hit using fake Adobe Reader updates and signed apps to sneak in StealerBot malware — stealing passwords, screenshots, and files.

Other targets: Sri Lanka, Pakistan, and Bangladesh

- Apple reportedly plans to launch a new type of iPhone every year through 2028 including two foldable models and a 20th anniversary model

- 🚨 194,000 fake sites. $1B stolen.

The Smishing Triad is posing as USPS, banks, and toll services — all hosted on U.S. clouds to stay invisible.

Next target: brokerage accounts.

Full report ↓ thehackernews.com/2025/10/smis...