Curly COMrades are living up to their name, twisting their way into Georgian government, judicial bodies, and Moldovan energy firms with MucorAgent, a stealthy three-stage .NET backdoor. In another campaign, Minecraft fans are being targeted with NjRat malware hidden in the unofficial Eaglercraft 1.12 Offline clone, posing as a game installer to steal personal data. Separately, a Web3 interview scam involved cloning a GitHub repository and replacing a removed malicious package with [email protected], embedding obfuscated code for data theft. Keep reading for more cybersecurity news from the last 24 hours.
01
Curly COMrades, a cyber-espionage group, is targeting Georgian government and judicial bodies and Moldovan energy firms with MucorAgent, a three-stage .NET backdoor.
02
Researchers have identified a new cyber threat targeting Minecraft fans, where malware posing as a game installer steals personal data. The attack leverages an unofficial browser-based clone, Eaglercraft 1.12 Offline, to deliver the NjRat.
03
A new Telegram channel tied to Scattered Spider, ShinyHunters, and Lapsus$ is leaking data, selling breaches, and posting threats, with targets including Gucci, Chanel, Neiman Marcus, and government entities.
04
A phishing campaign is impersonating the UK Home Office to steal Sponsorship Management System (SMS) credentials from licensed sponsors of foreign workers and students, enabling immigration fraud and extortion.
05
Over 35 Linux images on Docker Hub still host the XZ-Utils backdoor, hidden in the liblzma.so library, allowing attackers to bypass SSH authentication and gain root access.
06
A Web3 interview scam cloned a GitHub repo, swapping a removed malicious package with [email protected], containing obfuscated code to steal sensitive data.
07
Microsoft’s August 2025 Patch Tuesday fixed 111 flaws, including the BadSuccessor Kerberos zero-day (CVE-2025-53779), enabling AD domain compromise, a CVSS 10.0 critical issue, and an NTLM hash disclosure bug (CVE-2025-50154) that exposes credentials without user interaction.
08
Adobe has released security patches for over 60 vulnerabilities across 13 software products as part of its August 2025 Patch Tuesday update, addressing critical issues, including arbitrary code execution, DoS, and privilege escalation.
09
GitLab patched high-severity flaws enabling account takeover, stored XSS (CVE-2025-6186, CVE-2025-7734, CVE-2025-7739, CVSS 8.7), and permission issues (CVE-2025-8094), allowing maintainers to manipulate CI/CD resources.
10
Diginex Limited has signed an MOU to acquire Findings, an automated supply chain risk monitoring company, for about $305 million.
