Cyber Security News

The Iran-linked MuddyWater Advanced Persistent Threat group has launched a sophisticated spear-phishing campaign targeting diplomatic, maritime, financial, and telecom sectors across the Middle East. The threat actors are using weaponized Word documents to deliver a new Rust-based malware called RustyWater, which represents a major change from their traditional PowerShell and VBS tooling. This upgraded implant […]

The post MuddyWater APT Weaponizing Word Documents to Deliver ‘RustyWater’ Toolkit Evading AV and EDR Tools appeared first on Cyber Security News.

A newly discovered malware campaign is using fake WinRAR download sites to deliver the dangerous Winzipper malware directly to unsuspecting users. The attack emerged from links distributed across various Chinese websites, targeting users who attempt to download the popular file compression tool from non-official sources. This trojanized installer presents a significant threat to anyone seeking […]

The post Beware of Fake WinRAR Website That Delivers Malware with WinRAR Installer appeared first on Cyber Security News.

The Cybersecurity and Infrastructure Security Agency (CISA) announced a significant milestone on January 8, 2026, by retiring ten Emergency Directives issued between 2019 and 2024. This marks the highest number of Emergency Directives retired by the agency simultaneously, reflecting progress in federal cybersecurity efforts. Emergency Directives are urgent orders issued by CISA to rapidly address […]

The post CISA Retires Ten Emergency Directives Following Milestone Achievement appeared first on Cyber Security News.

Microsoft is rolling out a new role-based access control (RBAC) role designed to simplify external collaboration management in Microsoft Teams. The Teams External Collaboration Administrator role will become available starting late January 2026, with full global deployment expected by mid-February 2026. The new administrative role provides organizations with a targeted approach to delegating external collaboration responsibilities. Rather […]

The post Microsoft’s New Teams New Admin Role to Manage External Collaboration Settings appeared first on Cyber Security News.

North Korean state‑sponsored group Kimsuky is running new spearphishing campaigns that abuse QR codes to compromise U.S. organizations. The FBI warns that think tanks, NGOs, academic bodies, and government‑linked entities with a North Korea focus are now being lured with “Quishing” emails that hide malicious URLs behind QR images instead of clickable links. The shift […]

The post FBI Warns of Kimsuky Actors Leverage Malicious QR Codes to Target U.S. Organizations appeared first on Cyber Security News.

CrowdStrike announced its agreement to acquire SGNL, a leading identity-first security company, for $740 million. The acquisition marks a significant strategic move to strengthen CrowdStrike’s Falcon Next-Gen Identity Security platform. Address the growing complexity of protecting human, non-human, and AI agent identities in modern cloud environments. The identity landscape has transformed dramatically in recent years. […]

The post CrowdStrike to Acquire Identity Security Startup SGNL in $740 Million Deal appeared first on Cyber Security News.

K-12 IT teams face intensifying pressure to deliver affordable cybersecurity, as attackers exploit schools as “soft targets” rich in sensitive student data. Beyond students’ skills tests, educators must counter ransomware, phishing, and breaches head-on. Explore the top 10 challenges in Cynet’s free guide, “Top 10 Cybersecurity Challenges Faced by K-12 Institutions.” Drawing from real-world successes […]

The post How U.S K-12 Schools Can Solve Their Top 10 Cybersecurity Challenges – Free E-Book appeared first on Cyber Security News.

A critical pre-authentication remote code execution vulnerability, identified as CVE-2025-52691, has been discovered in SmarterTools’ SmarterMail solution. The flaw received a maximum CVSS score of 10.0, indicating its severe nature and potential impact on affected systems. SmarterTools describes SmarterMail as “a secure, all-in-one business email and collaboration server for Windows and Linux – an affordable […]

The post SmarterTools SmarterMail Vulnerability Enables Remote Code Execution Attack – PoC Released appeared first on Cyber Security News.

Security researchers have identified over 91,000 attack sessions targeting AI infrastructure between October 2025 and January 2026, exposing systematic campaigns against large language model deployments. GreyNoise’s Ollama honeypot infrastructure captured 91,403 attack sessions during this period, revealing two distinct threat campaigns. The findings corroborate and extend previous research from Defused on AI system targeting. The […]

The post Hackers Actively Exploiting AI Deployments – 91,000+ Attack Sessions Observed appeared first on Cyber Security News.

Chinese threat actors have developed a dangerous new way to steal money directly from bank accounts using specially crafted Android applications. Known as Ghost Tapped, these malicious apps exploit Near Field Communication (NFC) technology, the same wireless technology that powers contactless payments. Instead of needing your physical bank card, criminals can complete transactions from anywhere […]

The post New Ghost Tapped Attack Uses Your Android Device to Drain Your Bank Account appeared first on Cyber Security News.

Network administrators worldwide reported widespread crashes in Cisco small business switches on January 8, 2026, triggered by fatal errors in the DNS client service. Devices entered reboot loops every few minutes, disrupting operations until DNS configurations were removed.​ The issue surfaced around 2 AM UTC, affecting models like CBS250, C1200, CBS350, SG350, and SG550X series […]

The post Cisco Small Business Switches Face Global DNS Crash Outage appeared first on Cyber Security News.

  A customer buys. You ship. Everyone seems happy. Then, a few weeks later, you get a chargeback. Or you notice the same card being tried again and again in a few seconds, failing at first and then working. It can be a sign someone is trying to steal card info to see what goes through.  […]

The post What tools help reduce fraud or friendly fraud for online businesses?  appeared first on Cyber Security News.

A dangerous hacking group known as UAT-7290 has been actively attacking important telecommunications companies and critical infrastructure targets across South Asia since at least 2022. This advanced threat actor operates with clear signs of Chinese government connections and poses a serious risk to vital communication networks in the region. The group’s recent expansion into Southeastern […]

The post UAT-7290 Hackers Attacking Critical Infrastructure Entities in South Asia appeared first on Cyber Security News.

OpenAI has launched ChatGPT Health, a specialized platform that helps users securely manage their health information and receive intelligent support for wellness-related questions. With over 230 million people using ChatGPT weekly for health inquiries, the company recognized the need for a dedicated, secure space to handle sensitive medical data. What Is ChatGPT Health? ChatGPT Health operates […]

The post ChatGPT Health – A Dedicated Space for Health Queries With Strong Privacy and Security appeared first on Cyber Security News.

The React2Shell vulnerability (CVE-2025-55182) continues to face a relentless exploitation campaign, with threat actors launching more than 8.1 million attack sessions since its initial disclosure. According to GreyNoise Observation Grid data, daily attack volumes have stabilized at 300,000–400,000 sessions since peaking above 430,000 in late December, indicating sustained, coordinated exploitation. Scale of the Exploitation Campaign […]

The post Hackers Launched 8.1 Million Attack Sessions to React2Shell Vulnerability appeared first on Cyber Security News.

A new phishing wave is abusing fake DocuSign notifications to drop stealthy malware on Windows systems. The emails copy real DocuSign branding and urge users to review a pending agreement, pushing them toward a link that claims to host the file. Once clicked, the chain shifts from browser to a multi‑stage loader built to dodge […]

The post New Phishing Attack Impersonate as DocuSign Deploys Stealthy Malware on Windows Systems appeared first on Cyber Security News.

Microsoft is ramping up security measures for its enterprise customers, mandating multi-factor authentication (MFA) for all users accessing the Microsoft 365 admin center. The policy takes full effect on February 9, 2026, building on a softer rollout that began in February 2025. Organizations relying on these tools must act now to avoid disruptions. This move […]

The post Microsoft Enforces Mandatory MFA for Microsoft 365 Admin Center Logins appeared first on Cyber Security News.

Critical vulnerabilities in ChatGPT allow attackers to exfiltrate sensitive data from connected services like Gmail, Outlook, and GitHub without user interaction. Dubbed ShadowLeak and ZombieAgent, these flaws exploit the AI’s Connectors and Memory features for zero-click attacks, persistence, and even propagation.​ OpenAI’s Connectors enable ChatGPT to integrate with external systems such as Gmail, Jira, GitHub, […]

The post New ChatGPT Flaws Allow Attackers to Exfiltrate Sensitive Data from Gmail, Outlook, and GitHub appeared first on Cyber Security News.

Caracas went dark just as U.S. forces moved to seize Venezuelan leader Nicolás Maduro on Saturday. The blackout did more than hide troops; it showed how malware can shape modern battles. U.S. Cyber Command and allied units are believed to have deployed a grid‑focused payload inside Venezuela’s power operator. Once triggered, the code quietly opened […]

The post Trump Signals U.S. Cyber Role in Caracas Blackout During Maduro Capture appeared first on Cyber Security News.

Microsoft has launched a native Slack-to-Teams migration tool in the Microsoft 365 admin center, simplifying the transition for organizations migrating collaboration workloads. This feature supports transferring public and private channel content directly into Teams equivalents, preserving messages and continuity.​ The tool enters public preview via Targeted Release in early December 2025, with rollout completion by […]

The post Microsoft Unveils a New Tool to Migrate from Slack to Microsoft Teams appeared first on Cyber Security News.