Cyber Security News

A critical security oversight in widely used Apache Airflow instances has exposed credentials for platforms like AWS, Slack, PayPal, and other services, leaving organizations vulnerable to data breaches and supply chain attacks.  Researchers at Intezer discovered thousands of unprotected instances across industries, including finance, healthcare, e-commerce, and cybersecurity. These instances revealed systemic risks tied to […]

The post Misconfigured Apache Airflow Servers Exposes Login Credentials to Hackers appeared first on Cyber Security News.

Federal prosecutors unsealed criminal complaints today against David Jose Gomez Cegarra, 24, and Jesus Segundo Hernandez-Gil, 19, members of the Tren de Aragua Gang, for allegedly orchestrating a coordinated ATM “jackpotting” campaign across four U.S. states.  The defendants face charges of bank theft and conspiracy to commit bank theft, carrying maximum penalties of 10 years […]

The post Two Hackers Arrested For ATM Jackpotting by Deploying Malware appeared first on Cyber Security News.

In its latest Android security update, Google has unveiled a dual-layer defense system combining AI-powered scam detection for both text messages and voice calls.  The new features, powered by Gemini Nano AI models operating entirely on-device, aim to combat the $1 trillion global scam industry exploiting conversational vulnerabilities in mobile communications. Scam Detection Architecture for […]

The post Google Announces AI-Powered Scam Detector For Android Users appeared first on Cyber Security News.

A critical Insecure Direct Object Reference (IDOR) vulnerability chain in ZITADEL’s administration interface (CVE-2025-27507) has exposed organizations to systemic risks of account takeover and configuration tampering.  Rated 9.0/10 on the CVSS v3.1 scale, these flaws enable authenticated low-privilege users to manipulate LDAP authentication settings and other sensitive parameters through ZITADEL’s Admin API endpoints. The vulnerabilities […]

The post ZITADEL IDOR Vulnerabilities Let Attackers Modify Sensitive Settings appeared first on Cyber Security News.

Elastic has issued an urgent security advisory for a critical vulnerability in Kibana, tracked as CVE-2025-25012, that allows authenticated attackers to execute arbitrary code on affected systems.  The flaw, rated 9.9 on the CVSS v3.1 scale, stems from a prototype pollution issue in Kibana’s file upload handler and HTTP request processing. Exploitation could lead to […]

The post Critical Kibana Vulnerability Let Attackers Execute Arbitrary Code appeared first on Cyber Security News.

A critical security vulnerability in LibreOffice tracked as CVE-2025-1080, has exposed millions of users to potential remote code execution attacks through manipulated macro URLs.  Patched in versions 24.8.5 and 25.2.1 released on March 4, 2025, this flaw allowed attackers to bypass security protocols and execute arbitrary scripts via LibreOffice’s custom URI scheme.  The vulnerability highlights […]

The post LibreOffice Vulnerability Let Attackers Execute Arbitrary Script Using Macro URL appeared first on Cyber Security News.

Google collects and stores significant amounts of user data on Android devices, even when users haven’t opened any Google apps. The study by Professor D.J. Leith from Trinity College Dublin, documents for the first time how pre-installed Google apps silently track users without seeking consent or providing any opt-out options. The research examined cookies, identifiers, […]

The post Google Silently Tracks Android Device Even No Apps Opened by User appeared first on Cyber Security News.

Two individuals were arrested this week in a sophisticated cybercrime operation targeting high-demand events. They were accused of orchestrating a $600,000 ticket theft scheme involving Taylor Swift’s Eras Tour and other major concerts.  Queens District Attorney Melinda Katz revealed that Tyrone Rose, 34, and Shamara P. Simmons, 29, exploited security flaws in an offshore third-party […]

The post Two Hackers Arrested for Stealing Taylor Swift Era Concert Tickets Worth $600k appeared first on Cyber Security News.

A new ransomware group, SecP0, has emerged on the cybercrime landscape, adopting a novel and deeply concerning tactic: demanding ransom payments not for encrypted data, but for undisclosed software vulnerabilities.  This shift in strategy represents a significant evolution in ransomware operations, targeting organizations’ cybersecurity weaknesses rather than their data. Unlike traditional ransomware groups that encrypt […]

The post SecP0 Ransomware Group Threatens Organizations to Leak Vulnerability Details appeared first on Cyber Security News.

A sophisticated Android banking trojan campaign leveraging a malicious file manager application accumulated over 220,000 downloads on the Google Play Store before its removal.  Dubbed Anatsa (also known as TeaBot), the malware targets global financial institutions through a multi-stage infection process. It deploys fake login overlays and abuses accessibility services to steal credentials and execute […]

The post Android App With 220,000+ Downloads From Google Play Installs Banking Trojan appeared first on Cyber Security News.

Cybersecurity has transformed from a niche technical field into a critical business priority that shapes organizational strategies worldwide. As we navigate through 2025, the cybersecurity industry continues to expand in response to increasingly sophisticated threats, digital transformation initiatives, and regulatory requirements. The global cybersecurity market is thriving, with projections showing growth to $345.4 billion by 2026, according to historical data.  This comprehensive report […]

The post 50 World’s Best Cyber Security Companies – 2025 appeared first on Cyber Security News.

Patch management tools are essential for maintaining the security and efficiency of IT systems in 2025. These tools automate the process of identifying, testing, and deploying software updates and security patches across various operating systems and applications. Top contenders in the market include NinjaOne, Automox, Kaseya VSA, ManageEngine Patch Manager Plus, SolarWinds Patch Manager, and […]

The post 15 Best Patch Management Tools In 2025 appeared first on Cyber Security News.

HUMAN Security’s Satori Threat Intelligence team has uncovered a sophisticated malware operation dubbed “BADBOX 2.0” that compromised over 50,000 Android devices using 24 deceptive applications. This operation represents a major expansion of the original BADBOX campaign first identified in 2023, according to researchers who collaborated with Google, Trend Micro, and Shadowserver to partially disrupt the […]

The post BadBox Malware from Google Play Hacked 50,000+ Android Devices Using 24 Apps appeared first on Cyber Security News.

Microsoft has recently published comprehensive guidance for developers working with Virtualization-Based Security (VBS) enclaves, highlighting critical security measures to strengthen the trust boundary between different virtual trust levels. The guidance by the Microsoft Security team, addresses fundamental security challenges that arise when implementing VBS enclaves, which use the hypervisor’s virtual trust levels to isolate regions […]

The post Microsoft To Harden The Trust Boundary of VBS Enclaves appeared first on Cyber Security News.

Microsoft Threat Intelligence has identified a significant shift in tactics by Silk Typhoon, a Chinese state-sponsored espionage group that has begun targeting common IT solutions including remote management tools and cloud applications to gain initial access to organizational networks. This well-resourced and technically efficient group holds one of the largest targeting footprints among Chinese threat […]

The post Microsoft Warns of Silk Typhoon Hackers Attacking IT Supply Chain appeared first on Cyber Security News.

A critical security flaw in the GiveWP Donation Plugin tracked as CVE-2025-0912, has exposed over 100,000 WordPress websites to unauthenticated remote code execution (RCE) attacks.  The vulnerability, scoring a maximum CVSS 9.8 (Critical) severity rating, originates from improper handling of user-supplied data in the plugin’s donation form processing logic.  Exploiting this flaw allows attackers to […]

The post WordPress Plugin Vulnerability Exposes 10,000 Sites to Code Execution Attacks appeared first on Cyber Security News.

A newly disclosed vulnerability in Cisco Webex for BroadWorks Release 45.2 enables remote attackers to intercept sensitive credentials and user data when Session Initiation Protocol (SIP) communications lack encryption. This vulnerability, rated as low severity but with significant operational implications, highlights risks in hybrid telephony deployments relying on unsecured transport protocols. The vulnerability arises from […]

The post Cisco Webex for BroadWorks Vulnerability Let Remote Attackers Access Data & Credentials appeared first on Cyber Security News.

Security researchers at Proofpoint have uncovered a sophisticated cyber espionage campaign targeting aviation and satellite communications organizations in the United Arab Emirates. The campaign, attributed to a threat actor tracked as UNK_CraftyCamel, leveraged a compromised Indian electronics company to deliver highly customized malware to fewer than five organizations in fall 2024. This attack represents a […]

The post Hackers Leveraging Business Relationship To Attack Arab Emirates Aviation Sector appeared first on Cyber Security News.

AI Soft has announced the upcoming public release of Alli AI, an advanced artificial intelligence-powered platform designed for content creation. Following the conclusion of a closed beta phase, the platform will soon be available with a free trial version, allowing users to explore its capabilities. Alli AI offers a range of tools for image enhancement, […]

The post Alli AI Announces Upcoming Public Launch of AI-Powered Content Creation Platform appeared first on Cyber Security News.

The U.S. Cybersecurity and Infrastructure Security Agency (CISA) issued an urgent alert on March 4, 2025, adding three critical VMware vulnerabilities to its Known Exploited Vulnerabilities (KEV) catalog following confirmed in-the-wild exploitation. The vulnerabilities CVE-2025-22224, CVE-2025-22225, and CVE-2025-22226 allow attackers with privileged access to virtual machines (VMs) to escalate privileges, execute code on hypervisors, and […]

The post CISA Warns of Actively Exploited VMware Vulnerabilities, Urges Immediate Patching appeared first on Cyber Security News.