Cyber Security News

A newly disclosed security advisory from Tenable reveals serious vulnerabilities in the Nessus vulnerability scanner that could enable attackers to compromise Windows systems through privilege escalation attacks.  The security flaws, affecting all Nessus versions prior to 10.8.5, include a critical Windows-specific vulnerability (CVE-2025-36630) that allows unauthorized file overwrites at SYSTEM privilege level, alongside two additional […]

The post Nessus for Windows Vulnerabilities Enables Overwrite of Arbitrary Local System Files appeared first on Cyber Security News.

A sophisticated new variation of cyberattacks emerged in July 2025, exploiting a critical vulnerability in how Chrome and Microsoft Edge handle webpage saving functionality. The attack, dubbed “FileFix 2.0,” bypasses Windows’ Mark of the Web (MOTW) security feature by leveraging legitimate browser saving mechanisms combined with HTML Application (HTA) execution. Key Points1. Saving HTML pages […]

The post FileFix Attack Exploits Windows Browser Features to Bypass Mark-of-the-Web Protection appeared first on Cyber Security News.

The cybersecurity landscape faces a renewed threat as TA829, a sophisticated threat actor group, has emerged with enhanced tactics, techniques, and procedures (TTPs) alongside an upgraded version of the notorious RomCom backdoor. This hybrid cybercriminal-espionage group has demonstrated remarkable adaptability, conducting both financially motivated attacks and state-aligned espionage operations, particularly following the invasion of Ukraine. […]

The post TA829 Hackers Employs New TTPs and Upgraded RomCom Backdoor to Evade Detections appeared first on Cyber Security News.

The notorious North Korean threat group Kimsuky has adopted a sophisticated social engineering tactic known as “ClickFix” to deceive users into executing malicious scripts on their own systems. Originally introduced by Proofpoint researchers in April 2024, this deceptive technique tricks victims into believing they need to troubleshoot browser errors or verify security documents, ultimately leading […]

The post Kimsuky Hackers Using ClickFix Technique to Execute Malicious Scripts on Victim Machines appeared first on Cyber Security News.

The escalating tensions between Iran and Israel have triggered an unprecedented surge in hacktivist cyber operations, with over 80 distinct groups launching coordinated attacks across 18 critical infrastructure sectors. Following Israeli airstrikes on Iranian military and nuclear facilities in June 2025, pro-Iranian and pro-Palestinian hacktivist collectives mobilized almost immediately, targeting Israeli government systems, energy infrastructure, […]

The post Hacktivist Group Claimed Attacks Across 20+ Critical Sectors Following Iran–Israel Conflict appeared first on Cyber Security News.

A sophisticated phishing campaign leveraging the Snake Keylogger malware has emerged, exploiting legitimate Java debugging utilities to bypass security mechanisms and target organizations worldwide. The Russian-originated .NET malware, distributed through a Malware as a Service (MaaS) model, represents a significant evolution in cybercriminal tactics by abusing trusted system components that typically evade detection. The campaign […]

The post Snake Keyloggers Abuse Java Utilities to Evade Security Tools appeared first on Cyber Security News.

Asia is not only a hub of economic and technological growth—it’s also a frontline battlefield for cybersecurity evolution. Across the continent, major cities are combining traditional IT foundations with modern security frameworks to defend against rising digital threats. Whether you’re a CISO traveling for insights or a digital nomad with an Asia data eSIM, staying secure […]

The post 5 Asian Cities Where Cybersecurity Maturity Meets Innovation appeared first on Cyber Security News.

As attack vectors multiply and threat actors become increasingly sophisticated, security teams struggle to keep pace with the volume and complexity of modern cyber threats. SOCs and MSSPs operate in a high-stakes environment where every minute counts.  Main Challenges Of Security Teams  Outdated reactive security approaches often fall short in addressing several critical challenges:   Threat […]

The post Cyber Threat Intelligence: 3 Key Benefits For SOCs And MSSPs  appeared first on Cyber Security News.

Google Chrome for Android is on the verge of a major upgrade that could reshape how users consume online content. The browser is testing a new feature called AI Audio Overviews, which transforms any webpage into a podcast-style audio summary, making information more accessible and engaging for users on the go. Unlike the traditional “Read […]

The post Google Chrome May Soon Turn Webpages Into Podcasts With AI Audio Overviews appeared first on Cyber Security News.

A sophisticated multi-stage malware campaign has been discovered targeting WordPress websites, employing an intricate infection chain that delivers Windows trojans to unsuspecting visitors while maintaining complete invisibility to standard security checks. The malware represents a significant evolution in web-based attack techniques, combining PHP backdoors with advanced evasion mechanisms to establish persistent access to victim systems. […]

The post Stealthy WordPress Malware Deliver Windows Trojan via PHP Backdoor appeared first on Cyber Security News.

A sophisticated cybercriminal network operating from Pakistan has constructed over 300 cracking websites since 2021, serving as distribution platforms for information-stealing malware that targets users seeking pirated software. This extensive operation represents one of the largest documented cases of coordinated malware distribution through seemingly legitimate software cracking portals, affecting corporate and individual users globally who […]

The post Pakistani Actors Built 300+ Cracking Websites Used to Deliver Info-Stealer Malware appeared first on Cyber Security News.

Linus Torvalds has released Linux kernel 6.16-rc4, marking another stable milestone in the development cycle despite what he describes as a “fairly large merge window.”  The latest release candidate continues the trend of maintaining stability while addressing critical issues across filesystem implementations, hardware drivers, and architectural support.  Summary1. Linux 6.16-rc4 delivers significant improvements to bcachefs […]

The post Linux 6.16-rc4 Released With Fixes for Filesystem, Driver & Hardware Support appeared first on Cyber Security News.

Microsoft is set to revolutionize user interaction with artificial intelligence agents and bots in Teams through a streamlined integration experience launching in June 2025.  The technology giant will deploy this enhanced agent engagement system to a randomized subset of users across Teams for Windows desktop, Teams for Mac desktop, and Teams for the web as […]

The post Microsoft Teams to Let Users Add Agents and Bots in Current Conversations appeared first on Cyber Security News.

European law enforcement agencies have successfully dismantled a sophisticated cryptocurrency investment fraud network that laundered EUR 460 million in illicit profits from over 5,000 victims globally.  The coordinated operation, executed on June 25, 2025, represents one of the largest international cryptocurrency fraud busts in recent history, highlighting the growing threat of digital asset-related financial crimes […]

The post Europol Dismantles Fraud Crypto Investment Ring That Tricked 5000+ Victims Worldwide appeared first on Cyber Security News.

A critical remote code execution (RCE) vulnerability affecting Django web applications, demonstrating how seemingly benign CSV file upload functionality can be weaponized for complete server compromise.  Summary1. Django RCE exploit chains directory traversal with CSV parser abuse to compromise servers through file uploads.2. Attackers use unsanitized username input (../../../../../../app/backend/backend/) to target Django's wsgi.py file.3. Malicious […]

The post Django App Vulnerabilities Chained to Execute Arbitrary Code Remotely appeared first on Cyber Security News.

CISA has issued an urgent warning regarding a critical buffer overflow vulnerability in Citrix NetScaler ADC and Gateway products, designated as CVE-2025-6543.  Added to CISA’s Known Exploited Vulnerabilities (KEV) catalog on June 30, 2025, threat actors are actively exploiting this high-severity flaw and pose significant risks to organizations utilizing these network infrastructure components.  The vulnerability […]

The post CISA Warns of Citrix NetScaler ADC and Gateway Vulnerability Actively Exploited in Attacks appeared first on Cyber Security News.

The U.S. Department of Justice announced coordinated nationwide law enforcement actions on June 30, 2025, targeting North Korean remote information technology workers’ illicit revenue generation schemes that have defrauded American companies and funded the DPRK’s weapons programs. Summary1. The U.S. DoJ conducted coordinated enforcement across 16 states on June 30, 2025, targeting North Korean remote […]

The post U.S DOJ Announces Nationwide Actions to Combat North Korean Remote IT Workers appeared first on Cyber Security News.

North Korean state-sponsored remote IT workers have significantly evolved their infiltration tactics, incorporating artificial intelligence tools and sophisticated deception techniques to penetrate organizations worldwide. Since 2024, these highly skilled operatives have enhanced their fraudulent employment schemes by leveraging AI-powered image manipulation, voice-changing software, and professional photo enhancement to create more convincing fake identities. The operation […]

The post North Korean Remote IT Workers Added New Tactics and Techniques to Infiltrate Organizations appeared first on Cyber Security News.

The Cybersecurity and Infrastructure Security Agency (CISA), along with the FBI, Department of Defense Cyber Crime Center, and National Security Agency, has issued an urgent warning regarding potential cyber attacks by Iranian-affiliated actors targeting U.S. critical infrastructure. Despite ongoing ceasefire negotiations and diplomatic efforts, these threat actors continue to pose significant risks to American networks […]

The post CISA Warns of Iranian Cyber Actors May Attack U.S. Critical Infrastructure appeared first on Cyber Security News.

A critical security vulnerability in the widely used Linux Sudo utility has been disclosed, allowing any local unprivileged user to escalate privileges to root access.  Summary1. CVE-2025-32463 affects Sudo versions 1.9.14-1.9.17, enabling privilege escalation to root.2. Exploitation uses the chroot option (-R) to manipulate the NSS system and load malicious libraries.3. Impact affects default configurations […]

The post Linux Sudo chroot Vulnerability Enables Hackers to Elevate Privileges to Root appeared first on Cyber Security News.