Cybersecurity

638 articles in this category (Page 19 of 27)

AI NewsCybersecurityThreat Intelligence

Amazon Exposes Years-Long GRU Cyber Campaign Targeting Energy and Cloud Infrastructure

Amazon details a 2021–2025 GRU-linked campaign (APT44) targeting critical infrastructure via misconfigured network devices, highlighting a shift from exploit-driven attacks.

Dec 16, 2025

AI NewsCloud SecurityCybersecurity

Compromised IAM Credentials Power a Large AWS Crypto Mining Campaign

Amazon reports a new AWS crypto mining campaign abusing IAM credentials, ECS, EC2, and termination protection for persistence.

Dec 16, 2025

AI NewsCybersecurityData Privacy

Google to Shut Down Dark Web Monitoring Tool in February 2026

Google will discontinue its Dark Web Report on February 16, 2026, impacting users who relied on breach scans.

Dec 16, 2025

AI NewsCybersecurityVulnerability

React2Shell Vulnerability Actively Exploited to Deploy Linux Backdoors

React2Shell vulnerability CVE-2025-55182 is actively exploited to deploy Linux malware, resulting in the compromise of over 59,000 servers.

Dec 16, 2025

AI NewsCybersecuritySoftware Supply Chain

Rogue NuGet Package Mimics Tracer.Fody, Steals Crypto Wallet Data

A malicious NuGet package disguised as Tracer.Fody remained undetected for six years, stealing Stratis wallet files and passwords from over 2,000 downloads.

Dec 16, 2025

AI NewsCybersecurityData Privacy

Data security and privacy need to start in code to address rising AI and data risks

HoundDog.ai detects and prevents sensitive data and AI privacy risks in source code, offering a proactive solution to a growing problem.

Dec 16, 2025

AI NewsCybersecuritySoftware Vulnerability

FreePBX Vulnerabilities Allow RCE via SQL Injection, File Upload, and Auth Bypass

FreePBX patched 2025 flaws allowing SQL injection, file upload attacks, and an auth bypass, potentially leading to remote code execution.

Dec 15, 2025

AI NewsCybersecurityMalware

VolkLocker Ransomware Exposed by Hard-Coded Master Key Allowing Free Decryption

The VolkLocker ransomware, used by the CyberVolk hacktivist group, has a critical flaw: a hard-coded master key enabling free decryption of encrypted files.

Dec 15, 2025

AI NewsCybersecuritySoftware Vulnerabilities

Weekly Recap: Apple 0-Days, WinRAR Exploit, LastPass Fines, .NET RCE, OAuth Scams & More

From million-dollar privacy fines to active attacks on everyday software. Catch up on the top cybersecurity threats of the week and how to fix them.

Dec 15, 2025

AI NewsCybersecuritySoftware Updates

Apple Issues Security Updates After Two WebKit Flaws Found Exploited in the Wild

Apple patched two actively exploited WebKit vulnerabilities (CVE-2025-43529 and CVE-2025-14174) across its platforms.

Dec 13, 2025

AI NewsCybersecurityIoT Security

CISA Adds Actively Exploited Sierra Wireless Router Flaw Enabling RCE Attacks

CISA warns of active exploitation of Sierra Wireless router flaw allowing remote code execution via unrestricted file upload.

Dec 13, 2025

AI NewsCybersecurityVulnerability Management

CISA Flags Actively Exploited GeoServer XXE Flaw in Updated KEV Catalog

CISA added CVE-2025-58360, an actively exploited XXE flaw in GeoServer, to its KEV catalog, mandating fixes by January 1, 2026 for FCEB agencies.

Dec 12, 2025

AI NewsCybersecurityPhishing

New AI-Powered Phishing Kits Bypass MFA and Target Major Services

Researchers reveal four new phishing kits – BlackForce, GhostFrame, InboxPrime AI, and Spiderman – capable of stealing credentials, bypassing MFA, and scaling attacks.

Dec 12, 2025

AI NewsCybersecurityVulnerability

React2Shell Exploitation Escalates into Large-Scale Global Attacks

CISA urgently warns of widespread exploitation of the React2Shell CVE-2025-55182 flaw, impacting over 137,200 internet-exposed systems.

Dec 12, 2025

AI NewsCybersecurityData Security

Securing GenAI in the Browser: Policy, Isolation, and Data Controls That Actually Work

Enterprises are increasingly reliant on browser-based GenAI, demanding strict policies, isolation, and monitoring to mitigate data-exposure risks.

Dec 12, 2025

AI NewsCybersecurityMalware

NANOREMOTE Malware Leverages Google Drive API for Covert Windows Control

NANOREMOTE, a new Windows backdoor, utilizes the Google Drive API for command-and-control, enabling stealthy data theft and payload delivery.

Dec 11, 2025

AI NewsCybersecuritySoftware Vulnerability

.NET SOAPwn Flaw Opens Door for File Writes and Remote Code Execution via Rogue WSDL

New research reveals a .NET flaw, SOAPwn, enables file writes and remote code execution (RCE) through manipulated WSDL files in products like Barracuda and Ivanti.

Dec 11, 2025

AI NewsCybersecurityVulnerability

React2Shell Exploitation Delivers Crypto Miners and New Malware Across Multiple Sectors

Critical React Server Components flaw (CVE-2025-55182) fuels automated attacks dropping miners and multiple new Linux malware families.

Dec 11, 2025

AI NewsCybersecurityIAM

The Impact of Robotic Process Automation (RPA) on Identity and Access Management

RPA is changing IAM by introducing new security challenges for enterprises; bots may soon outnumber human employees.

Dec 11, 2025

AI NewsCybersecurityThreat Intelligence

ThreatsDay Bulletin: Spyware Alerts, Mirai Strikes, Docker Leaks, ValleyRAT Rootkit — and 20 More Stories

This week’s ThreatsDay Bulletin highlights a surge in cyber threats, including 193 arrests in a crackdown on Violence-as-a-Service (VaaS).

Dec 11, 2025

AI NewsCybersecuritySoftware Vulnerability

Gogs Zero-Day Exploited in 700+ Instances

An unpatched Gogs flaw (CVE-2025-8110) is actively exploited, resulting in over 700 confirmed compromises via file overwrite and code execution.

Dec 11, 2025

AI NewsCybersecurityAPT

WIRTE APT Leverages AshenLoader Sideloading for AshTag Espionage Campaign

WIRTE expands AshTag espionage operations, targeting Middle Eastern governments and diplomatic entities, resulting in persistent intelligence-gathering attacks.

Dec 11, 2025

AI NewsCybersecuritySoftware Updates

Fortinet, Ivanti, and SAP Address Critical Security Vulnerabilities

Three major vendors released urgent patches to address critical flaws enabling authentication bypass and remote code execution, impacting a wide range of enterprise systems.

Dec 10, 2025

AI NewsCybersecurityWindows

Microsoft Patches 56 Flaws, Including Actively Exploited Privilege Escalation Bug

Microsoft addressed 56 Windows security vulnerabilities in December 2025, including an actively exploited privilege escalation flaw (CVE-2025-62221) with a CVSS score of 7.8.

Dec 10, 2025