Lifeboat News: The Blog – Safeguarding Humanity

Get the latest international news and world events from around the world.

Oct 14
2025

Two Black Holes Locked in a Death Spiral Imaged in Stunning First

The complex dance of two black holes locked in a doomed orbit has been revealed in a first-of-its-kind direct radio image.

It’s the first time astronomers have directly imaged the distinct jets of both black holes in a known binary – finally confirming the model of the double core of a galaxy called OJ 287.

In OJ 287, located some 3.5 billion light-years away, the intricate, extreme interplay between the two central supermassive black holes has been documented for decades. This is the first image to capture smoking-gun signatures of both objects, however.

Oct 14
2025

Microsoft Warns of ‘Payroll Pirates’ Hijacking HR SaaS Accounts to Steal Employee Salaries

Storm-2657 exploits phishing and weak MFA to hijack HR SaaS accounts and redirect payroll funds.

Oct 14
2025

Researchers Warn RondoDox Botnet is Weaponizing Over 50 Flaws Across 30+ Vendors

RondoDox expands to exploit 56 flaws across 30 vendors, fueling global IoT botnet attacks.

Oct 14
2025

Microsoft Locks Down IE Mode After Hackers Turned Legacy Feature Into Backdoor

Microsoft restricts IE Mode in Edge after threat actors exploited Chakra engine flaws for remote access.

Oct 14
2025

Astaroth Banking Trojan Abuses GitHub to Remain Operational After Takedowns

Cybersecurity researchers are calling attention to a new campaign that delivers the Astaroth banking trojan that employs GitHub as a backbone for its operations to stay resilient in the face of infrastructure takedowns.

“Instead of relying solely on traditional command-and-control (C2) servers that can be taken down, these attackers are leveraging GitHub repositories to host malware configurations,” McAfee Labs researchers Harshil Patel and Prabudh Chakravorty said in a report.

“When law enforcement or security researchers shut down their C2 infrastructure, Astaroth simply pulls fresh configurations from GitHub and keeps running.”

Oct 14
2025

New Rust-Based Malware “ChaosBot” Uses Discord Channels to Control Victims’ PCs

Rust-based ChaosBot exploits Discord and phishing to infiltrate networks, while Chaos-C++ adds data destruction.

Oct 14
2025

New Oracle E-Business Suite Bug Could Let Hackers Access Data Without Login

Oracle warns of CVE-2025–61884 flaw in E-Business Suite enabling unauthorized data access.

Oct 14
2025

Stealit Malware Abuses Node.js Single Executable Feature via Game and VPN Installers

Fortinet warns Stealit malware uses Node.js SEA and fake installers to deliver stealers, RATs, and persistence.

Oct 14
2025

Massive multi-country botnet targets RDP services in the US

A large-scale botnet is targeting Remote Desktop Protocol (RDP) services in the United States from more than 100,000 IP addresses.

The campaign started on October 8 and based on the source of the IPs, researchers believe the attacks are launched by a multi-country botnet.

RDP is a network protocol that enables remote connection and control of Windows systems. It is typically used by administrators, helpdesk staff, and remote workers.

Oct 14
2025

Google Chrome to revoke browser notifications for inactive sites

Google is updating the Chrome web browser to automatically revoke notification permissions for websites that haven’t been visited recently, to reduce alert overload.

While Google Chrome’s Safety Check tool already removes access to other permissions, such as location and camera, this new feature will extend this functionality to notifications on both desktop and Android versions of the browser.

The company said the new feature is designed to target sites that send frequent notifications that get little to no user interaction. According to Chrome product manager Archit Agarwal, although users receive a high volume of alerts, fewer than 1% of these notifications actually generate any engagement.