No malware alert pops up when it’s hiding behind a trusted name. Vidar Stealer is now being distributed by bundling itself with a legitimate Microsoft Sysinternals tool used widely in enterprise environments. Spyware strains MOONSHINE and BADBAZAAR are being deployed in campaigns aimed at Uyghur, Tibetan, and Taiwanese individuals, as well as civil society organizations connected to them. Clicking the top result might be the worst move you make this tax season. Cybercriminals are purchasing Google Ads that link to fake QuickBooks login portals, hoping to snare stressed users searching for tax tools. Here are the top 10 highlights from the past 24 hours.
01
Vidar Stealer has evolved to use new distribution methods, including disguising itself within trusted tools like BGInfo.exe, a legitimate Microsoft Sysinternals tool.
02
The NCSC and international partners identified two forms of spyware, MOONSHINE and BADBAZAAR, being used to target Uyghur, Tibetan, and Taiwanese individuals and civil society organizations.
03
A Russian nation-state threat actor, UNC5837, exploited lesser-known features of Microsoft Windows RDP to target European government and military organizations for espionage.
04
Microsoft has discovered an actively exploited zero-day vulnerability, CVE-2025-29824, in the Windows CLFS driver, which is an elevation of privilege flaw.
05
Adobe has released security updates to address 30 flaws in ColdFusion versions 2025, 2023, and 2021, with 11 of these vulnerabilities rated as critical, which could lead to arbitrary file read and code execution.
06
Cybercriminals are exploiting the tax filing deadline rush by creating fake QuickBooks login pages through prominent Google Ads, aiming to steal sensitive information.
07
The U.K government has launched a new Cyber Governance Code of Practice to improve cyber-resilience in medium and large organizations, providing guidance for boards to manage cyber-risk effectively.
08
A security vulnerability, identified as CVE-2025-30401, was discovered in WhatsApp for Windows, which could have allowed hackers to send malicious attachments to users.
09
Zero trust network access firm Tailscale raised $160 million in a Series C funding round led by Accel, bringing the company’s valuation to $1.5 billion.
10
AI-native security company Aurascape raised $50 million in new funding from Mayfield Fund, Menlo Ventures, Celesta Capital, and others.
