Cyber Security News

Ivanti has disclosed two zero-day vulnerabilities in its Endpoint Manager Mobile (EPMM) solution. When chained together, these vulnerabilities allow attackers to execute unauthenticated remote code.  Security researchers have confirmed active exploitation in the wild, with the Shadowserver Foundation tracking nearly 800 vulnerable instances still exposed online. The vulnerabilities, identified as CVE-2025-4427 and CVE-2025-4428, were disclosed […]

The post Ivanti EPMM 0-day Vulnerability Actively Exploited in the Wild appeared first on Cyber Security News.

Eric Council Jr., a 26-year-old man from Huntsville, Alabama, was sentenced on May 16, 2025, to 14 months in federal prison followed by three years of supervised release for his role in the high-profile hacking of the U.S. Securities and Exchange Commission’s (SEC) official social media account on X (formerly Twitter).  The cyberattack, which occurred […]

The post Hacker Charged for Hijacking SEC Account to Promote Fake Bitcoin News appeared first on Cyber Security News.

Web Application Firewalls (WAFs) have been a critical defense mechanism protecting web applications from malicious traffic and attacks such as SQL Injection and Cross-Site Scripting (XSS).  Traditionally, WAFs relied heavily on pattern matching techniques using regular expressions (regex) or string matching to detect and block known attack signatures.  However, with the rise of AI-powered WAFs, […]

The post AI Web Application Firewalls Bypassed Using Prompt Injection Techniques appeared first on Cyber Security News.

As organizations transition to modern management with Microsoft Intune, migrating BitLocker recovery key management from Configuration Manager (ConfigMgr) to Intune is a critical step, especially in hybrid scenarios with co-managed, Entra-Hybrid-Joined devices. This in-depth guide provides a practical, step-by-step approach to ensure a seamless migration, focusing on real-world considerations for already encrypted devices. BitLocker, Microsoft’s […]

The post Microsoft Published a Practical Guide for Migrating BitLocker Recovery Key Management From ConfigMgr to Intune appeared first on Cyber Security News.

A sophisticated hacking group known as UNC3944, which previously targeted major UK retail organizations, has pivoted its operations toward US-based companies, according to newly published research from Google Cloud. The threat actor, which overlaps with public reporting on the group known as Scattered Spider, has demonstrated persistent use of social engineering tactics and brazen communications […]

The post Google Details Hackers Behind UK Retailers Attack Now Targeting US appeared first on Cyber Security News.

A critical vulnerability in the GNU C Library (glibc), potentially exposing millions of Linux systems to local privilege escalation attacks.  Tracked as CVE-2025-4802 and publicly disclosed on May 16, 2025, this vulnerability could allow attackers to execute arbitrary code by manipulating the LD_LIBRARY_PATH environment variable. Systems running Rocky Linux, Debian, Ubuntu, and other major Linux […]

The post glibc Vulnerability Exposes Millions of Linux Systems to Code Execution Attacks appeared first on Cyber Security News.

Delegated Managed Service Accounts (dMSAs), introduced in Windows Server 2025, represent Microsoft’s latest innovation in secure service account management.  While designed to enhance security by preventing traditional credential theft attacks like Kerberoasting, security researchers have uncovered potential abuse vectors that could allow attackers to establish persistent access in Active Directory environments.  dMSAs were created to […]

The post Abusing dMSA with Advanced Active Directory Persistence Techniques  appeared first on Cyber Security News.

A critical vulnerability in Microsoft’s Remote Desktop Gateway (RD Gateway) that could allow attackers to execute malicious code on affected systems remotely. The vulnerability, tracked as CVE-2025-21297, was disclosed by Microsoft in their January 2025 security updates and has since been actively exploited in the wild. The flaw, discovered and reported by VictorV (Tang Tianwen) […]

The post Windows Remote Desktop Gateway UAF Vulnerability Allows Remote Code Execution appeared first on Cyber Security News.

A new information-stealing malware dubbed “PupkinStealer” has been identified by cybersecurity researchers, targeting sensitive user data through a straightforward yet effective approach. First observed in April 2025, this .NET-based malware written in C# focuses on stealing browser credentials, messaging app sessions, and desktop files, exfiltrating the data via Telegram’s Bot API. Security experts note that […]

The post PupkinStealer Attacks Windows System to Steal Login Credentials & Desktop Files appeared first on Cyber Security News.

The cybersecurity landscape in 2025 is defined by increasingly sophisticated malware threats, with attackers leveraging artificial intelligence, evasion tactics, and polymorphic code to bypass traditional defenses. Stealers, ransomware, and remote access trojans (RATs) dominate the threat matrix, while AI-driven malware adapts in real time to exploit vulnerabilities in cloud infrastructure, IoT devices, and human behavior. […]

The post Malware Defense 101 – Identifying and Removing Modern Threats appeared first on Cyber Security News.

As artificial intelligence transforms industries and enhances human capabilities, the need for strong AI security frameworks has become paramount. Recent developments in AI security standards aim to mitigate risks associated with machine learning systems while fostering innovation and building public trust. Organizations worldwide are now navigating a complex landscape of frameworks designed to ensure AI […]

The post AI Security Frameworks – Ensuring Trust in Machine Learning appeared first on Cyber Security News.

Cryptocurrency exchanges are intensifying security measures in 2025 to focus on preventing phishing attacks, as these scams reach alarming levels and have caused millions in losses for investors. As digital assets continue gaining mainstream adoption, cybercriminals deploy increasingly sophisticated techniques to compromise exchange accounts and steal funds. While exchanges implement advanced security features, experts emphasize […]

The post Preventing Phishing Attacks on Cryptocurrency Exchanges appeared first on Cyber Security News.

As AI systems using adversarial machine learning integrate into critical infrastructure, healthcare, and autonomous technologies, a silent battle ensues between defenders strengthening models and attackers exploiting vulnerabilities. The field of adversarial machine learning (AML) has emerged as both a threat vector and a defense strategy, with 2025 witnessing unprecedented developments in attack sophistication, defensive frameworks, […]

The post Adversarial Machine Learning – Securing AI Models appeared first on Cyber Security News.

NGINX monitoring tools ensure NGINX web servers’ optimal performance and reliability. These tools provide comprehensive insights into server metrics such as uptime, response time, request rates, and error rates. They enable administrators to track real-time performance, detect anomalies, and troubleshoot issues effectively. Monitoring key performance indicators (KPIs), these tools help optimize resource usage and improve […]

The post 10 Best NGINX Monitoring Tools – 2025 appeared first on Cyber Security News.

A severe privilege escalation vulnerability has been discovered in the popular WordPress plugin Eventin, putting more than 10,000 websites at risk of complete compromise. The vulnerability, now tracked as CVE-2025-47539, allows unauthenticated attackers to create administrator accounts without any user interaction, giving them full control over affected websites. Security researchers are urging site owners to […]

The post Critical WordPress Plugin Vulnerability Exposes 10K+ Sites to Cyber Attack appeared first on Cyber Security News.

A new advanced supply chain attack targeting the Node Package Manager (NPM) ecosystem has emerged, leveraging Google Calendar as a covert command and control (C2) channel. Cybersecurity experts discovered the malware embedded in seemingly legitimate JavaScript libraries that, once installed, establish a stealthy communication pathway with attackers through common Google services. The malware has potentially […]

The post Sophisticated NPM Attack Exploits Google Calendar C2 For Sophisticated Communication appeared first on Cyber Security News.

As decentralized systems mature, 2024–2025 has emerged as a watershed period for blockchain security, marked by sophisticated cyberattacks, novel attack vectors, and landmark regulatory interventions. While stolen cryptocurrency values declined compared to previous years, falling to $1.7 billion in 2023-the frequency of breaches has intensified, with 231 hacking incidents reported in 2023 alone. This paradox […]

The post Blockchain Security – Protecting Decentralized Systems appeared first on Cyber Security News.

A sophisticated ransomware campaign specifically targeting and mocking supporters of Elon Musk has been identified by cybersecurity experts. The attack, identified as a variant of Fog Ransomware, employs multi-stage PowerShell scripts and Netlify-hosted payloads to execute its malicious code. This campaign represents a concerning evolution in politically-themed malware that combines financial motivation with satirical commentary. […]

The post New Ransomware Attack Mocking Elon Musk Supporters Using PowerShell to Deploy Payloads appeared first on Cyber Security News.

In a concerning cybersecurity incident, printer manufacturer Procolored unknowingly distributed malware-infected software for approximately six months, ending in May 2025. The issue came to light when YouTube creator Cameron Coward of the channel Serial Hobbyism attempted to review a $6,000 UV printer and was alerted by his antivirus software to infections on the company-provided USB […]

The post Printer Company Offered Malicious Drivers Infected With XRed Malware appeared first on Cyber Security News.

As organizations accelerate cloud adoption, API token abuse has emerged as a critical vulnerability vector. Recent incidents at significant platforms like DocuSign and Heroku exposed systemic risks in token management. A 2025 study reveals 57% of enterprises experienced API-related breaches in the past two years, with 73% facing multiple incidents. This surge highlights the urgent […]

The post Guide to Cloud API Security – Preventing Token Abuse appeared first on Cyber Security News.