Cyber Security News

A critical vulnerability in SAP enterprise software, CVE-2025-31324, has been exploited by the Russian Ransomware-as-a-Service (RaaS) group Qilin nearly three weeks before its public disclosure, according to a recent investigation. The vulnerability, which received the highest possible CVSS score of 10.0, affects SAP NetWeaver Visual Composer, a component widely deployed in enterprise environments globally. The […]

The post Qilin Exploited SAP 0-Day Vulnerability Weeks Before its Public Disclosure appeared first on Cyber Security News.

Multiple high-severity vulnerabilities affecting VMware Cloud Foundation could allow malicious actors to access sensitive data and perform unauthorized actions. The vulnerabilities, assigned CVE IDs CVE-2025-41229, CVE-2025-41230, and CVE-2025-41231 with CVSS base scores ranging from 7.3 to 8.2, posing significant risks to organizations using affected versions of VMware Cloud Foundation.  Directory Traversal Vulnerability Exposes Internal Services […]

The post VMware Cloud Foundation Vulnerability Let Attackers Access Sensitive Data appeared first on Cyber Security News.

A critical security vulnerability discovered in the popular Motors WordPress theme has exposed approximately 22,000 websites to significant risk.  Security researchers have identified a privilege escalation vulnerability that allows unauthenticated attackers to take over administrative accounts, potentially compromising the entire website.  This vulnerability (CVE-2025-4322) carries a critical CVSS score of 9.8 and affects all versions […]

The post WordPress Plugin Vulnerability Exposes 22,000 Sites to Cyber Attacks appeared first on Cyber Security News.

Microsoft is introducing artificial intelligence capabilities directly into Windows 11’s File Explorer, allowing users to manipulate files without opening dedicated applications.  Announced in Windows 11 Insider Preview Build 26200.5603 (KB5058488) released to the Dev Channel on May 19, 2025, this integration represents a significant advancement in Microsoft’s AI strategy for its flagship operating system. AI […]

The post Microsoft to Integrate AI With Windows 11 File Explorer appeared first on Cyber Security News.

In an age where smartphones contain our most sensitive information, phishing attacks targeting iPhone users have surged dramatically. According to recent reports, phishing messages have increased by 202% in the second half of 2024, with credential-based phishing attacks skyrocketing by an alarming 703% during the same period. Understanding how to protect your iPhone has never […]

The post iPhone Security 101 – Protecting Your Device from Phishing Scams appeared first on Cyber Security News.

A sophisticated malware campaign leveraging search engine optimization (SEO) poisoning on Microsoft Bing has emerged, delivering the notorious Bumblebee malware to unsuspecting users. The campaign, identified in May 2025, specifically targets users searching for specialized software tools, demonstrating a concerning evolution in malware distribution tactics that exploits trusted search engine results. Bumblebee, a downloader malware […]

The post Threat Actors Deliver Bumblebee Malware Poisoning Bing SEO appeared first on Cyber Security News.

Adidas Korea has announced a security breach affecting customer data, marking the second major incident in the fashion industry targeting Korean consumers this month. The sportswear giant revealed that unauthorized access was gained through a third-party customer service provider, compromising customers’ personal information who had contacted their service centers. On May 16, Adidas disclosed on […]

The post Adidas Data Breach – Customers’ Personal Information Exposed appeared first on Cyber Security News.

The phishing attack landscape continues to evolve in 2025, with cybercriminals using more sophisticated techniques to bypass security measures, emphasizing the need for phishing attack prevention. Phishing remains one of the most prevalent and damaging cyber threats facing organizations worldwide. In the fourth quarter of 2024 alone, nearly a million phishing attacks were observed, showing […]

The post Phishing Attack Prevention – Best Practices for 2025 appeared first on Cyber Security News.

In today’s digital landscape, cybercrime has undergone a dramatic transformation. No longer limited to skilled hackers, cyberattacks are now available to anyone with internet access and cryptocurrency, thanks to the rise of Cybercrime-as-a-Service (CaaS). This model has democratized cybercrime, creating significant challenges for organizations of all sizes. The Commercialization of Cybercrime CaaS operates similarly to […]

The post Cybercrime-as-a-Service – Countering Accessible Hacking Tools appeared first on Cyber Security News.

Security researchers have discovered a new technique to bypass Kernel Address Space Layout Randomization (KASLR) in Windows 11, potentially weakening a critical security feature designed to prevent attackers from reliably locating kernel components in memory. KASLR works by loading the kernel at a randomized memory address each time the system boots, making it difficult for […]

The post Windows 11 KASLR Bypassed Using Cache Timing Techniques to Obtain The Kernel Base appeared first on Cyber Security News.

A sophisticated malware campaign utilizing multiple layers of AutoIT code has been discovered targeting Windows systems. The attack begins with a seemingly innocent executable file named “1. Project” that initiates a complex infection chain designed to deploy a Remote Access Trojan (RAT). This campaign represents a concerning evolution in threat actors’ tactics, leveraging the flexibility […]

The post Hackers Leverage AutoIT Code to Deliver Malware Attacking Windows System appeared first on Cyber Security News.

A newly identified phishing campaign deploys the Remcos Remote Access Trojan (RAT) using DBatLoader, leveraging a User Account Control (UAC) bypass technique involving mock trusted directories to evade security controls.  The attack chain employs obfuscated .cmd scripts, Windows Living Off the Land Binaries (LOLBAS) techniques, and sophisticated persistence mechanisms. At the time of analysis on […]

The post Hackers Exploits Windows Via UAC Bypass Technique to Deploy Remcos RAT appeared first on Cyber Security News.

Cyber attacks continue to plague organizations worldwide, with a staggering 67% of businesses reporting they faced at least one attack in the past year, according to the newly released Hiscox Cyber Readiness Report 2024. This marks the fourth consecutive annual increase in attack frequency, rising from 53% in the previous report and highlighting the escalating […]

The post 67% of Organizations Faces Cyber Attack in The Past 12 Months – New Report appeared first on Cyber Security News.

Ivanti has disclosed two zero-day vulnerabilities in its Endpoint Manager Mobile (EPMM) solution. When chained together, these vulnerabilities allow attackers to execute unauthenticated remote code.  Security researchers have confirmed active exploitation in the wild, with the Shadowserver Foundation tracking nearly 800 vulnerable instances still exposed online. The vulnerabilities, identified as CVE-2025-4427 and CVE-2025-4428, were disclosed […]

The post Ivanti EPMM 0-day Vulnerability Actively Exploited in the Wild appeared first on Cyber Security News.

Eric Council Jr., a 26-year-old man from Huntsville, Alabama, was sentenced on May 16, 2025, to 14 months in federal prison followed by three years of supervised release for his role in the high-profile hacking of the U.S. Securities and Exchange Commission’s (SEC) official social media account on X (formerly Twitter).  The cyberattack, which occurred […]

The post Hacker Charged for Hijacking SEC Account to Promote Fake Bitcoin News appeared first on Cyber Security News.

Web Application Firewalls (WAFs) have been a critical defense mechanism protecting web applications from malicious traffic and attacks such as SQL Injection and Cross-Site Scripting (XSS).  Traditionally, WAFs relied heavily on pattern matching techniques using regular expressions (regex) or string matching to detect and block known attack signatures.  However, with the rise of AI-powered WAFs, […]

The post AI Web Application Firewalls Bypassed Using Prompt Injection Techniques appeared first on Cyber Security News.

As organizations transition to modern management with Microsoft Intune, migrating BitLocker recovery key management from Configuration Manager (ConfigMgr) to Intune is a critical step, especially in hybrid scenarios with co-managed, Entra-Hybrid-Joined devices. This in-depth guide provides a practical, step-by-step approach to ensure a seamless migration, focusing on real-world considerations for already encrypted devices. BitLocker, Microsoft’s […]

The post Microsoft Published a Practical Guide for Migrating BitLocker Recovery Key Management From ConfigMgr to Intune appeared first on Cyber Security News.

A sophisticated hacking group known as UNC3944, which previously targeted major UK retail organizations, has pivoted its operations toward US-based companies, according to newly published research from Google Cloud. The threat actor, which overlaps with public reporting on the group known as Scattered Spider, has demonstrated persistent use of social engineering tactics and brazen communications […]

The post Google Details Hackers Behind UK Retailers Attack Now Targeting US appeared first on Cyber Security News.

A critical vulnerability in the GNU C Library (glibc), potentially exposing millions of Linux systems to local privilege escalation attacks.  Tracked as CVE-2025-4802 and publicly disclosed on May 16, 2025, this vulnerability could allow attackers to execute arbitrary code by manipulating the LD_LIBRARY_PATH environment variable. Systems running Rocky Linux, Debian, Ubuntu, and other major Linux […]

The post glibc Vulnerability Exposes Millions of Linux Systems to Code Execution Attacks appeared first on Cyber Security News.

Delegated Managed Service Accounts (dMSAs), introduced in Windows Server 2025, represent Microsoft’s latest innovation in secure service account management.  While designed to enhance security by preventing traditional credential theft attacks like Kerberoasting, security researchers have uncovered potential abuse vectors that could allow attackers to establish persistent access in Active Directory environments.  dMSAs were created to […]

The post Abusing dMSA with Advanced Active Directory Persistence Techniques  appeared first on Cyber Security News.