Cyber Security News

Cisco has disclosed a critical security vulnerability in its Secure Firewall Management Center (FMC) Software that could allow unauthenticated attackers to execute arbitrary shell commands with high-level privileges remotely. The vulnerability, tracked as CVE-2025-20265 and assigned the maximum CVSS score of 10.0, represents one of the most severe security flaws discovered in enterprise firewall infrastructure […]

The post Cisco Secure Firewall Vulnerability Allows Hackers to Inject Remote Shell Command Injection appeared first on Cyber Security News.

Cybercriminals are increasingly leveraging personalization tactics to enhance the effectiveness of their malware-delivery phishing campaigns, with threat actors customizing subject lines, attachment names, and embedded links to create a false sense of authenticity and urgency. This sophisticated approach represents a significant evolution in social engineering techniques, as attackers craft emails that appear legitimate by incorporating […]

The post Threat Actors Personalize Phishing Attacks With Advanced Tactics for Malware Delivery appeared first on Cyber Security News.

The ransomware threat landscape witnessed a concerning surge in July 2025, with the Qilin ransomware group maintaining its dominant position for the third time in four months. The group successfully claimed 73 victims on its data leak site, representing 17.3% of the month’s total 423 ransomware incidents. This marks a significant consolidation of criminal operations […]

The post Qilin Ransomware Leads The Attack Landscape With 70+ Claimed Victims in July appeared first on Cyber Security News.

A sophisticated new variant of the FireWood backdoor has emerged, targeting Linux systems with enhanced evasion capabilities and streamlined command execution functionality. This latest iteration represents a significant evolution of the malware family first discovered by ESET’s research team, which has been linked to the long-running “Project Wood” malware lineage dating back to at least […]

The post New FireWood Malware Attacking Linux Systems to Execute Commands and Exfiltrate Sensitive Data appeared first on Cyber Security News.

The cyberthreat landscape continues to evolve as malicious actors develop increasingly sophisticated attack methods, with the EncryptHub threat group emerging as a particularly concerning adversary. This emerging threat actor, also known as LARVA-208 and Water Gamayun, has been making headlines for its aggressive campaigns targeting Web3 developers and abusing legitimate platforms to deliver malicious payloads. […]

The post New EncryptHub Campaign Leverages Brave Support Platform to Deliver Malicious Payloads via MMC Vulnerability appeared first on Cyber Security News.

Cybercriminals have escalated their proxyjacking campaigns by exploiting legitimate user behavior around YouTube video downloads, according to a recent security analysis. The attack leverages fake YouTube download sites to distribute proxyware malware, specifically targeting users seeking free video conversion services. This sophisticated campaign represents a significant evolution in bandwidth theft attacks, where threat actors monetize […]

The post Threat Actors Weaponizing YouTube Video Download Site to Download Proxyware Malware appeared first on Cyber Security News.

The cybersecurity landscape is witnessing a fundamental transformation as artificial intelligence becomes the newest weapon in cybercriminals’ arsenals, revolutionizing traditional phishing and scam operations. Unlike conventional phishing campaigns that were often riddled with grammatical errors and obvious tells, modern AI-powered attacks present a sophisticated threat that challenges even the most vigilant users. These advanced techniques […]

The post New Trends in Phishing Attacks Emerges as AI Reshaping the Tool Used by Cybercriminals appeared first on Cyber Security News.

Google has achieved a significant milestone in mobile security with the announcement that Android’s protected KVM (pKVM) hypervisor has officially received SESIP Level 5 certification, marking it as the first software security system designed for large-scale consumer electronics deployment to reach this prestigious assurance level. This groundbreaking achievement positions Android at the forefront of secure […]

The post Google Announces That Android’s pKVM Framework Achieves SESIP Level 5 Certification appeared first on Cyber Security News.

A cyberattack hit the Canadian House of Commons on August 9, 2025, when threat actors exploited a recently disclosed Microsoft vulnerability to gain unauthorized access to sensitive employee information. The breach underscores the growing cybersecurity challenges facing Canada’s government institutions amid an escalating threat landscape. According to an internal email obtained by CBC News, House […]

The post Canada’s House of Commons Hit by Cyberattack Exploiting Recent Microsoft vulnerability appeared first on Cyber Security News.

A critical security vulnerability in Apache Tomcat’s HTTP/2 implementation has been discovered, enabling attackers to launch devastating denial-of-service (DoS) attacks against web servers.  The vulnerability, designated as CVE-2025-48989 and dubbed the “Made You Reset” attack, affects multiple versions of the popular Java servlet container and poses significant risks to web applications worldwide. The security flaw, […]

The post Apache Tomcat Vulnerabilities Let Attackers Trigger Dos Attack appeared first on Cyber Security News.

Adobe has released a comprehensive security update addressing 60 critical vulnerabilities across 13 of its flagship products as part of its August 2025 Patch Tuesday initiative. The massive security bulletin, published on August 12, 2025, represents one of the most significant coordinated vulnerability disclosure events in Adobe’s recent history, affecting everything from Creative Cloud applications […]

The post Adobe’s August 2025 Patch Tuesday – 60 Vulnerabilities Patches Across Multiple Products appeared first on Cyber Security News.

The cybersecurity landscape witnessed a sophisticated and ongoing attack campaign throughout 2025 that has successfully compromised major corporations, including Google, Adidas, Louis Vuitton, and numerous other high-profile organizations. This comprehensive technical analysis reveals how the notorious cybercriminal group ShinyHunters, in apparent collaboration with Scattered Spider, has executed one of the most successful social engineering campaigns […]

The post How ShinyHunters Breached Google, Adidas, Louis Vuitton and More in Ongoing Salesforce Attack Campaign appeared first on Cyber Security News.

A sophisticated new threat vector has emerged that could undermine one of the most trusted authentication methods in cybersecurity. FIDO-based passkeys, long considered the gold standard for phishing-resistant authentication, are now facing a potentially devastating attack technique that forces users to downgrade to less secure authentication methods. The attack exploits a critical vulnerability in FIDO […]

The post Hackers Using Dedicated Phishlet to Launch FIDO Authentication Downgrade Attacks appeared first on Cyber Security News.

Critical vulnerabilities in Xerox FreeFlow Core, a widely-used print orchestration platform, allow unauthenticated remote attackers to execute malicious code on vulnerable systems.  The flaws, tracked as CVE-2025-8355 and CVE-2025-8356, affect the JMF Client service and have been patched in FreeFlow Core version 8.0.5.  Key Takeaways1. Two critical vulnerabilities in Xerox FreeFlow Core allow remote code […]

The post Xerox FreeFlow Core Vulnerability Let Remote Attackers Execute Malicious Code – PoC Released appeared first on Cyber Security News.

A detailed security guide released by Splunk to help cybersecurity teams detect and prevent ransomware attacks targeting ESXi infrastructure before they can cause catastrophic damage.  The guide comes as a response to increasing threats against VMware’s ESXi hypervisor systems, which have become prime targets for cybercriminals due to their centralized nature and often inadequate monitoring.  […]

The post Splunk Release Guide for Defenders to Detect Suspicious Activity Before ESXi Ransomware Attack appeared first on Cyber Security News.

A critical security vulnerability has been discovered in the popular “Database for Contact Form 7, WPforms, Elementor forms” WordPress plugin, potentially exposing over 70,000 websites to remote code execution attacks.  The vulnerability, tracked as CVE-2025-7384 with a maximum CVSS score of 9.8, affects all versions up to and including 1.4.3 and was publicly disclosed on […]

The post Critical WordPress Plugin Vulnerability Exposes 70,000+ Sites to RCE Attacks appeared first on Cyber Security News.

CISA has issued urgent warnings regarding two critical security vulnerabilities in N-able N-Central remote monitoring and management (RMM) software that threat actors are actively exploiting.  The vulnerabilities, identified as CVE-2025-8875 and CVE-2025-8876, pose significant risks to organizations using this widely-deployed IT management platform. Key Takeaways1. Two critical N-able N-Central vulnerabilities were actively exploited for remote […]

The post CISA Warns of N-able N-Central Deserialization and Injection Vulnerability Exploited in Attacks appeared first on Cyber Security News.

The notorious ShinyHunters cybercriminal group has emerged from a year-long hiatus with a sophisticated new wave of attacks targeting Salesforce platforms across major organizations, including high-profile victims like Google. This resurgence marks a significant tactical evolution for the financially motivated threat actors, who have traditionally focused on database exploitation and credential theft rather than the […]

The post ShinyHunters Possibly Collaborates With Scattered Spider in Salesforce Attack Campaigns appeared first on Cyber Security News.

Artificial intelligence coding assistants, designed to boost developer productivity, are inadvertently causing massive system destruction.  Researchers report a significant spike in what they term “AI-induced destruction” incidents, where helpful AI tools become accidental weapons against the very systems they’re meant to improve. Key Takeaways1. AI assistants accidentally destroy systems when given vague commands with excessive […]

The post “AI-Induced Destruction” – New Attack Vector Where Helpful Tools Become Accidental Weapons appeared first on Cyber Security News.

The cybersecurity landscape experienced an unprecedented escalation in digital threats during the first half of 2025, with Web Distributed Denial of Service (DDoS) attacks surging by 39% compared to the second half of 2024. The second quarter alone witnessed a staggering 54% quarter-over-quarter spike in attack activity, marking the highest levels on record and signaling […]

The post Web DDoS, App Exploitation Attacks Saw a Huge Surge in First Half of 2025 appeared first on Cyber Security News.