Cyber Security News

A high-severity authentication bypass vulnerability affecting multiple Fortinet security products, including FortiOS, FortiProxy, and FortiPAM systems.  The flaw, designated as CVE-2024-26009 with a CVSS score of 7.9, enables unauthenticated attackers to seize complete control of managed devices through exploitation of the FortiGate-to-FortiManager (FGFM) communication protocol. Key Takeaways1. CVE-2024-26009 allows authentication bypass in Fortinet products.2. Attackers […]

The post FortiOS, FortiProxy, and FortiPAM Auth Bypass Vulnerability Allows Attackers to Gain Full Control appeared first on Cyber Security News.

Google Chrome has released a critical security update addressing six vulnerabilities that could potentially enable arbitrary code execution on affected systems.  The stable channel update to version 139.0.7258.127/.128 for Windows and Mac, and 139.0.7258.127 for Linux, contains patches for multiple high-severity security flaws that pose significant risks to user data and system integrity. Key Takeaways1. […]

The post Multiple Chrome High-Severity Vulnerabilities Let Attackers Execute Arbitrary Code appeared first on Cyber Security News.

A critical security vulnerability in the Fortinet FortiSIEM platform allows unauthenticated attackers to execute arbitrary commands remotely.  The vulnerability CVE-2025-25256, classified as CWE-78 (OS Command Injection), has been actively exploited in the wild with practical exploit code already circulating among threat actors. Key Takeaways1. Critical FortiSIEM flaw actively exploited with PoC in the wild.2. Targets […]

The post Critical FortiSIEM Vulnerability Lets Attackers Execute Malicious Commands – PoC Found in the Wild appeared first on Cyber Security News.

In a coordinated international operation, law enforcement agencies successfully dismantled critical infrastructure belonging to the BlackSuit ransomware group, also known as Royal, marking a significant victory in the ongoing battle against cybercriminal enterprises. The July 24, 2025 takedown operation resulted in the seizure of four servers, nine domains, and approximately $1.09 million in laundered cryptocurrency […]

The post BlackSuit Ransomware Servers Attacking U.S. Critical Infrastructure Seized by Law Enforcement Seizes appeared first on Cyber Security News.

Microsoft has released the Windows 11 August 2025 Cumulative Updates, KB5063878 for version 24H2 and KB5063875 for versions 22H2 and 23H2, delivering critical stability fixes and new features released along with Microsoft patch Tuesday august 2025. These updates address performance issues reported since May 2025, including frame rate drops in games like Fortnite and device […]

The post Microsoft Releases Windows 11 Cumulative Updates (KB5063878, KB5063875) August 2025 with New Features appeared first on Cyber Security News.

Electronic Arts has revealed that their Javelin anti-cheat system successfully prevented 330,000 attempts to cheat or tamper with anti-cheat controls during the Battlefield 6 Open Beta launch period. The gaming giant’s SPEAR Anti-Cheat Team disclosed these statistics while addressing community concerns about cheating incidents in the highly anticipated military shooter’s beta testing phase. The cheating […]

The post Electronic Arts Blocked 300,000 Attempts Following Battlefield 6 Beta Launch appeared first on Cyber Security News.

Microsoft disclosed a significant remote code execution (RCE) vulnerability in its Teams collaboration software as part of its August 2025 Patch Tuesday updates. The critical flaw, identified as CVE-2025-53783, could allow an unauthorized attacker to read, write, and even delete user messages and data by executing code over a network. The vulnerability is a heap-based […]

The post Microsoft Teams RCE Vulnerability Let Attackers Read, Write and Delete Messages appeared first on Cyber Security News.

Microsoft released its August Patch Tuesday security updates, addressing a total of 107 vulnerabilities across its product ecosystem. The update includes fixes for 90 vulnerabilities, classified as follows: 13 are Critical, 76 are Important, one is Moderate, and one is Low. Notably, none of these vulnerabilities are listed as actively exploited zero-days, which provides some […]

The post Microsoft Patch Tuesday August 2025 Released – 107 Vulnerabilities Fixed Including 36 RCE appeared first on Cyber Security News.

In recent months, a new phishing toolkit known as PoisonSeed has emerged, targeting both individual users and enterprise organizations with unprecedented sophistication. Unlike traditional phishing kits that harvest only usernames and passwords, PoisonSeed employs an adversary-in-the-middle (AitM) approach to intercept multi-factor authentication (MFA) tokens and session cookies. Victims receive spear-phishing emails masquerading as notifications from […]

The post PoisonSeed Phishing Kit Bypasses MFA to Acquire Credentials from Individuals and Organizations appeared first on Cyber Security News.

Imagine your Security Operations Center (SOC) as the tactical center of a medieval fortress, where vigilant sentries scan the horizon for approaching threats. But instead of watching for enemy armies, your digital guardians monitor an endless stream of network traffic, system logs, and security alerts. The Digital Guardians: Your SOC’s Critical Mission Like those ancient […]

The post How to Solve Alert Fatigue in Your SOC Without Extra Staff or Effort appeared first on Cyber Security News.

More than 17,000 VMware ESXi installations worldwide are at risk from a severe integer-overflow vulnerability tracked as CVE-2025-41236 (CVSS 9.3), cybersecurity researchers warn. This critical vulnerability, first flagged in July, has prompted urgent calls for patching, but the latest scan results suggest progress remains slow, with thousands of systems still unpatched. Shadowserver Foundation, in partnership […]

The post 17,000+ VMware ESXi Servers Vulnerable to Critical Integer-Overflow Vulnerability appeared first on Cyber Security News.

Zoom has disclosed a critical vulnerability affecting multiple Windows-based clients, potentially allowing attackers to escalate privileges and compromise user systems. Designated as CVE-2025-49457 under bulletin ZSB-25030, this flaw carries a CVSS score of 9.6, classifying it as critical due to its high impact on confidentiality, integrity, and availability. The vulnerability stems from an untrusted search […]

The post Critical Zoom Clients for Windows Vulnerability Lets Attackers Escalate Privileges appeared first on Cyber Security News.

An unprecedented surge in brute-force attacks targeting Fortinet SSL VPN infrastructure, with over 780 unique IP addresses participating in coordinated assault campaigns.  The August 3rd attack represents the highest single-day volume recorded on GreyNoise’s Fortinet SSL VPN Bruteforcer tag in recent months, raising concerns about potential zero-day vulnerabilities and sophisticated threat actor operations. Key Takeaways1. […]

The post Hackers Attacking Fortinet SSL VPN Under Attack From 780 unique IPs appeared first on Cyber Security News.

Ivanti has released critical security updates addressing multiple high and medium-severity vulnerabilities across its Connect Secure, Policy Secure, and Zero Trust Access (ZTA) gateway products.  The vulnerabilities, identified through internal discovery and responsible disclosure programs, could enable remote attackers to trigger denial-of-service (DoS) attacks without authentication, though no active exploitation has been detected at the […]

The post Ivanti Connect Secure, Policy Secure and ZTA Vulnerabilities Let Attackers Trigger DoS Attack appeared first on Cyber Security News.

Four Ghanaian nationals orchestrating an international cybercrime operation that defrauded victims of over $100 million through sophisticated romance scams and business email compromise attacks have been extradited to the United States. The criminal organization, led by Isaac Oduro Boateng, Inusah Ahmed, Derrick van Yeboah, and Patrick Kwame Asare, employed advanced social engineering techniques to target […]

The post Hackers Behind $100 Million Romance Scams and Other Frauds Extradited to US appeared first on Cyber Security News.

A critical remote code execution vulnerability in Erlang/OTP’s SSH daemon has been actively exploited in the wild, with cybercriminals targeting operational technology networks across multiple industries. CVE-2025-32433, carrying the maximum CVSS score of 10.0, allows unauthenticated attackers to execute arbitrary commands on vulnerable systems by sending specially crafted SSH connection protocol messages to open SSH […]

The post Erlang/OTP SSH RCE Vulnerability Exploited in the Wild to Attack Across OT Networks appeared first on Cyber Security News.

UAC‑0099, a sophisticated threat actor group that has been active since at least 2022, continues to pose a significant cybersecurity threat through its evolving cyber-espionage campaigns targeting Ukrainian government agencies, military organizations, and defense-industrial entities. The group has demonstrated remarkable adaptability across three major operational phases spanning 2023 to 2025, systematically refining its toolkit while […]

The post UAC‑0099 Tactics, Techniques, Procedures and Attack Methods Unveiled appeared first on Cyber Security News.

Meta has introduced a groundbreaking feature that fundamentally transforms Instagram from a traditional photo-sharing platform into a comprehensive real-time location broadcasting system. The new “Map” functionality represents a significant architectural shift in social media design, enabling users to continuously transmit their whereabouts to selected contacts whenever they launch the application. Unlike conventional posting mechanisms where […]

The post Meta’s New Feature Transforms Instagram to a New Real-Time Location Broadcaster appeared first on Cyber Security News.

A sophisticated Visual Basic Script (VBS) malware dubbed “Silent Watcher” has emerged as a persistent threat targeting Windows systems, demonstrating advanced data exfiltration capabilities through Discord webhooks. This stealer, part of the Cmimai malware family, represents a concerning evolution in information-stealing tactics that leverage legitimate communication platforms to bypass traditional security measures. The malware operates […]

The post Silent Watcher Attacking Windows Systems and Exfiltrate Data Using Discord Webhook appeared first on Cyber Security News.

CastleLoader, a sophisticated malware loader that emerged in early 2025, has successfully compromised 469 devices out of 1,634 infection attempts since May 2025, achieving an alarming 28.7% infection rate. This versatile threat has primarily targeted U.S. government entities through advanced phishing campaigns that exploit user trust in legitimate platforms and services. The malware employs two […]

The post CastleLoader Malware Infected Over 400+ Devices Using Cloudflare-Themed ClickFix Phishing Attack appeared first on Cyber Security News.