Cisco has addressed a critical vulnerability with a CVSS score of 10, which allowed attackers to execute commands with root privileges on vulnerable Ultra-Reliable Wireless Backhaul (URWB) access points used in industrial automation networks....
The Israeli cybersecurity company Hunters has detected activity from the cyber group VEILDrive, which utilizes legitimate Microsoft services — Teams, SharePoint, Quick Assist, and OneDrive — to launch phishing attacks and distribute malware. Specialists...
The new malicious package, SteelFox, is disseminated through forums and torrent trackers, offering users illicit activation of software such as Foxit PDF Editor, JetBrains, and AutoCAD. SteelFox not only mines Monero cryptocurrency but also...
This summer, cyber spies from the Volt Typhoon group, allegedly backed by the Chinese government, breached Singapore’s telecommunications company Singtel. Bloomberg sources reported that the incident occurred in June and that this breach may...
Seven years after the emergence of the Ngioweb botnet, it remains one of the foremost cybersecurity threats. This proxy server is actively exploited by cybercriminals to seek out vulnerable devices, such as routers and...
DocuSign has found itself at the center of a new type of cyberattack: cybercriminals exploit its API to distribute counterfeit invoices that appear authentic. Unlike traditional phishing attacks involving fake links and emails, these...
Securonix specialists have uncovered an unusual cyberattack named CRON#TRAP. The hackers employ a malicious shortcut which, when executed, initiates a concealed customized version of Linux through the QEMU program. This mechanism enables attackers to...
Recently, the U.S. Department of Justice charged two Sudanese citizens with orchestrating cyberattacks and announced measures to dismantle the group Anonymous Sudan, also known as LameDuck. According to Cloudflare, this group has launched thousands...
A new keylogger associated with the North Korean group Andariel was recently uncovered through analysis on the Hybrid Analysis platform. Also known as APT45, Silent Chollima, or Onyx Sleet, Andariel is believed to target...
Cybersecurity researchers report that the notorious malware framework Winos4.0, previously observed in various cyberattacks, is now being distributed through gamer applications, including installation, acceleration, and optimization tools for games. According to Fortinet, Winos4.0 is...
The United Kingdom’s National Cyber Security Centre (NCSC) has released a report on the malware “Pygmy Goat,” designed to breach Sophos XG firewall network devices. This malware has been used in attacks attributed to...
A man suspected of orchestrating a major wave of Snowflake breaches has been arrested in Canada. The hacker, known by the aliases “Judische” and “Waifu,” is linked to over 165 data leaks, including breaches...
