Cyber Security News

A newly disclosed command injection vulnerability in Palo Alto Networks’ PAN-OS operating system poses significant security risks to enterprise firewall infrastructures worldwide.  The vulnerability, catalogued as CVE-2025-4230, enables authenticated administrators with command-line interface (CLI) access to execute arbitrary commands with root-level privileges, potentially compromising entire network security architectures.  Published on June 11, 2025, the security […]

The post Palo Alto Networks PAN-OS Vulnerability Let Attacker Run Arbitrary Commands as Root User appeared first on Cyber Security News.

A significant coordinated attack campaign targeting Apache Tomcat Manager interfaces, with threat actors leveraging approximately 400 unique IP addresses in a concentrated attack that peaked on June 5, 2025.  The attack represents a substantial increase in malicious activity, with observed volumes reaching 10-20 times above normal baseline levels, indicating a sophisticated and deliberate attempt to […]

The post Hackers Attacking Apache Tomcat Manager From 400 Unique IPs appeared first on Cyber Security News.

A critical zero-day vulnerability affecting Windows systems that allows attackers to achieve privilege escalation through a novel Reflective Kerberos Relay Attack.  The vulnerability, designated CVE-2025-33073, was patched by Microsoft on June 10, 2025, as part of their monthly Patch Tuesday security updates. Microsoft has assigned this vulnerability a CVSS score of 9.8 (Critical) due to […]

The post Windows SMB Client Zero-Day Vulnerability Exploited Using Reflective Kerberos Relay Attack appeared first on Cyber Security News.

Cybersecurity researchers have identified a sophisticated new campaign where threat actors are leveraging Windows batch files to deliver the notorious Quasar Remote Access Trojan (RAT). This attack vector represents a concerning evolution in malware distribution tactics, as attackers continue to refine their methods to evade traditional security measures and establish persistent access to victim systems. […]

The post Threat Actors Weaponizing Bat Files to Deliver Quasar RAT appeared first on Cyber Security News.

A sophisticated account takeover campaign has emerged, exploiting a legitimate penetration testing framework to compromise Microsoft Entra ID environments across hundreds of organizations worldwide. The malicious activity, which began intensifying in December 2024, demonstrates how cybercriminals are increasingly weaponizing security tools originally designed for defensive purposes. The campaign leverages TeamFiltration, a publicly available pentesting framework […]

The post New Account Takeover Campaign Leverages Pentesting Tool to Attack Entra ID User Accounts appeared first on Cyber Security News.

CISA and international cybersecurity partners have released a comprehensive suite of guidance documents aimed at protecting critical network edge devices from increasingly sophisticated cyberattacks.  This coordinated effort, involving cybersecurity authorities from nine countries, including Australia, Canada, the United Kingdom, and Japan, addresses the growing threat to firewalls, routers, VPN gateways, and other internet-facing network infrastructure. […]

The post CISA Releases Guide to Protect Network Edge Devices From Hackers appeared first on Cyber Security News.

A sophisticated new threat platform, Nytheon AI, has emerged, which combines multiple uncensored large language models (LLMs) built specifically for malicious activities. The platform, discovered by Cato CTRL, is being actively promoted on popular hacking forums, including XSS and various Telegram channels, representing a significant evolution in how threat actors are leveraging artificial intelligence for […]

The post Hackers Advertising New Blackhat Tool Nytheon AI on Popular Hacking Forums appeared first on Cyber Security News.

A critical zero-click vulnerability in Microsoft 365 Copilot, dubbed “EchoLeak,” enables attackers to automatically exfiltrate sensitive organizational data without requiring any user interaction. The vulnerability represents a significant breakthrough in AI security research, introducing a new class of attack called “LLM Scope Violation” that could affect other AI-powered applications beyond Microsoft’s platform. The EchoLeak attack […]

The post 0-Click Microsoft 365 Copilot Vulnerability Let Attackers Exfiltrates Sensitive Data Abusing Teams appeared first on Cyber Security News.

Secure code review represents a critical security practice that systematically examines software source code to identify and remediate security vulnerabilities before they reach production environments. This comprehensive examination serves as a proactive defense mechanism, enabling development teams to detect security flaws early in the software development lifecycle (SDLC) and prevent potential breaches that could compromise […]

The post How to Conduct a Secure Code Review – Tools and Techniques appeared first on Cyber Security News.

Phishing attacks aren’t what they used to be. Hackers no longer rely on crude misspellings or sketchy email addresses. Instead, they use clever tricks to dodge detection tools and fool even cautious users.   Let’s break down three evasion techniques that are increasingly common in phishing campaigns with real examples pulled from recent ANY.RUN sandbox analyses.  […]

The post Top 3 Evasion Techniques In Phishing Attacks: Real Examples Inside  appeared first on Cyber Security News.

The OWASP Top 10 2021 represents the most critical web application security risks facing organizations today, with significant shifts reflecting the evolving threat landscape. Broken Access Control has risen to the top position, affecting 94% of tested applications. At the same time, new categories, such as Insecure Design, emphasize the importance of secure development practices […]

The post Understanding OWASP Top 10 – Mitigating Web Application Vulnerabilities appeared first on Cyber Security News.

A significant security vulnerability in Windows Task Scheduler could allow attackers to escalate their privileges to SYSTEM level access without requiring initial administrative rights.  Designated as CVE-2025-33067, this elevation of privilege vulnerability affects multiple versions of Windows operating systems and has been assigned an “Important” severity rating with a CVSS score of 8.4.  The vulnerability […]

The post Windows Task Scheduler Vulnerability Let Attackers Escalate Privileges appeared first on Cyber Security News.

A sophisticated cybercrime campaign has emerged where threat actors are exploiting the trust inherent in professional recruitment processes, transforming routine job applications into sophisticated malware delivery mechanisms. The FIN6 cybercrime group, also known as Skeleton Spider, has developed an elaborate social engineering scheme that begins with legitimate-seeming interactions on professional platforms like LinkedIn and Indeed, […]

The post FIN6 Hackers Mimic as Job Seekers to Attack Recruiters with Weaponized Resumes appeared first on Cyber Security News.

A sophisticated wave of Linux malware campaigns is targeting cloud environments with increasing frequency and complexity, posing significant threats to modern infrastructure security. The emergence of specialized Executable and Linkable Format (ELF) binaries designed specifically for cloud exploitation represents a concerning evolution in threat actor capabilities, as attackers adapt traditional Linux malware for cloud-native environments. […]

The post Linux Malware Authors Attacking Cloud Environments Using ELF Binaries appeared first on Cyber Security News.

A critical security vulnerability in the Windows Common Log File System Driver (CLFS) enables attackers to escalate their privileges to SYSTEM level access.  The vulnerability, tracked as CVE-2025-32713, was released on June 10, 2025, and affects multiple Windows operating systems from legacy versions to the latest Windows 11 and Windows Server 2025. The vulnerability stems […]

The post Windows Common Log File System Driver Vulnerability Let Attackers Escalate Privileges appeared first on Cyber Security News.

Multiple critical vulnerabilities in Microsoft Office could allow attackers to execute arbitrary code on affected systems.  The vulnerabilities, tracked as CVE-2025-47162, CVE-2025-47953, CVE-2025-47164, and CVE-2025-47167, all carry a CVSS score of 8.4 out of 10 and affect numerous Office versions across Windows, Mac, and Android platforms.  Security researcher 0x140ce discovered these flaws, which exploit fundamental […]

The post Microsoft Office Vulnerabilities Let Attackers Execute Remote Code appeared first on Cyber Security News.

More than 20,000 malicious IP addresses and domains linked to information stealers have been taken down in an INTERPOL-coordinated operation against cybercriminal infrastructure. The four-month international crackdown, dubbed Operation Secure, represents one of the most significant coordinated efforts to disrupt infostealer malware networks across the Asia-Pacific region. During Operation Secure, which ran from January to […]

The post Operation Secure: 20,000 Malicious IPs and Domains Linked to 69 Malware Variants Dismantled appeared first on Cyber Security News.

The urgency stems from requirements imposed by technology partners, which necessitated an accelerated timeline for implementation across all affected products. This security initiative follows a pattern of heightened vigilance from ConnectWise throughout 2025, particularly after the company disclosed suspicious activity in May that was attributed to a sophisticated nation-state actor affecting a limited number of […]

The post ConnectWise to Rotate Code Signing Certificates for ScreenConnect, Automate and RMM appeared first on Cyber Security News.

Microsoft is set to revolutionize enterprise security monitoring with comprehensive audit logging capabilities for screen sharing and control features in Microsoft Teams, rolling out in July 2025. Microsoft announced a significant enhancement to its enterprise security toolkit with the introduction of detailed audit logs for Teams’ “Give control,” “Take control,” and screen sharing features. This […]

The post Microsoft Teams New Audit log Feature Allows Admins to Track Individuals Actions appeared first on Cyber Security News.

The proliferation of microservices architecture has fundamentally transformed how organizations build and deploy applications, offering unprecedented scalability and agility. However, this distributed approach introduces complex security challenges that traditional monolithic security models cannot adequately address. Unlike centralized security in monolithic applications, microservices require comprehensive security measures at multiple levels, including individual services, inter-service communication, and […]

The post Securing Microservices – Best Practices for Distributed Systems appeared first on Cyber Security News.