Aggregator

Currently trending CVE - Hype Score: 14 - Microsoft Configuration Manager Remote Code Execution Vulnerability

Currently trending CVE - Hype Score: 15 - Heap-based buffer overflow in Microsoft Office Word allows an unauthorized attacker to execute code locally.

Blaise Metreweli — previously the leader of MI6’s real-life “Q branch” responsible for technology and innovation — is now the spy agency's chief.

A sophisticated malware campaign has emerged targeting the Python Package Index (PyPI) repository, with cybercriminals deploying weaponized packages designed to steal sensitive cloud infrastructure credentials and corporate data. The malicious package, identified as “chimera-sandbox-extensions,” represents a new breed of supply chain attacks that specifically target enterprise environments rather than individual users. The attack begins when […]

The post Hackers Upload Weaponized Packages to PyPI Repositories to Steal AWS, CI/CD and macOS Data appeared first on Cyber Security News.

A sophisticated phishing operation involving more than 20 malicious applications distributed through the Google Play Store, specifically designed to steal cryptocurrency wallet credentials from unsuspecting users.  The discovery, made by Cyble Research and Intelligence Labs (CRIL), reveals a coordinated campaign targeting popular cryptocurrency platforms including SushiSwap, PancakeSwap, Hyperliquid, and Raydium. Exploiting Compromised Developer Accounts The […]

The post 20+ Malicious Apps on Google Play Actively Attacking Users to Steal Login Credentials appeared first on Cyber Security News.

SP 1800-35 offers 19 examples of how to implement zero-trust architecture (ZTA) using off-the-shelf commercial technologies.

The HP Threat Research team discovered a sophisticated malware campaign in Q1 2025 that targets vacation planners by imitating Booking.com using phony travel websites. As detailed in the latest HP Wolf Security Threat Insights Report, attackers are leveraging users’ “click fatigue” with cookie consent banners to deploy XWorm, a dangerous remote access trojan (RAT). Exploiting […]

The post Threat Actors Deploy XWorm Malware via Fake Travel Websites to Infect Users’ PCs appeared first on GBHackers Security | #1 Globally Trusted Cyber Security News Platform.

A critical vulnerability affecting over 46,000 publicly accessible Grafana instances worldwide, with 36% of all public-facing deployments vulnerable to complete account takeover attacks.  The newly discovered flaw, designated CVE-2025-4123 and dubbed “The Grafana Ghost,” represents a significant threat to organizations relying on the popular open-source analytics and visualization platform for monitoring critical infrastructure. Grafana Account […]

The post 46,000+ Grafana Instances Exposed to Malicious Account Takeover Attacks appeared first on Cyber Security News.

CISA has added two new vulnerabilities to its Known Exploited Vulnerabilities (KEV) Catalog, based on evidence of active exploitation. 

• CVE-2025-43200 Apple Multiple Products Unspecified Vulnerability
• CVE-2023-33538 TP-Link Multiple Routers Command Injection Vulnerability

These types of vulnerabilities are frequent attack vectors for malicious cyber actors and pose significant risks to the federal enterprise. 

Binding Operational Directive (BOD) 22-01: Reducing the Significant Risk of Known Exploited Vulnerabilities established the KEV Catalog as a living list of known Common Vulnerabilities and Exposures (CVEs) that carry significant risk to the federal enterprise. BOD 22-01 requires Federal Civilian Executive Branch (FCEB) agencies to remediate identified vulnerabilities by the due date to protect FCEB networks against active threats. See the BOD 22-01 Fact Sheet for more information. 

Although BOD 22-01 only applies to FCEB agencies, CISA strongly urges all organizations to reduce their exposure to cyberattacks by prioritizing timely remediation of KEV Catalog vulnerabilities as part of their vulnerability management practice. CISA will continue to add vulnerabilities to the catalog that meet the specified criteria. 

House Republican Brian Fitzpatrick and others are pushing for legislation to allow CISA and the Department of Health and Human Services to do more in response to cyberthreats against healthcare providers.

有没有一种方法可以在不牺牲覆盖率的前提下，显著减少路径数目，并提升符号执行的效率呢

In a sophisticated cybersecurity incident discovered on June 16, 2025, security researchers identified a malicious payload cleverly hidden within a JPEG image using a combination of steganography and modified Base64 encoding techniques. The malware, embedded after the file’s End Of Image (EOI) marker, represents an evolving threat vector where seemingly innocuous image files serve as […]

The post Malicious Payload Uncovered in JPEG Image Using Steganography and Base64 Obfuscation appeared first on Cyber Security News.

Всё, что раньше казалось хаотичным и устаревшим, теперь выстроено в пугающе логичную систему.

Gelijke waardering voor vrouwen en mannen, gelijke verantwoordelijkheden en gelijke verwachtingen. Die waarden gelden bij Defensie. Dat laat de nieuwe campagne zien die vandaag live is gegaan. In beeld zijn daadkrachtige vrouwen, die actief deelnemen aan militaire oefeningen. Defensie hoopt met de clip vrouwen te overtuigen om onder de wapenen te komen.

Keir Giles, the author of “Russia's War on Everybody” and a consulting fellow at the Chatham House think tank, said attackers impersonated the U.S. State Department to hack into his email accounts.

Anubis RaaS now includes a wiper module, permanently deleting files. Active since Dec 2024, it launched an affiliate program in Feb 2025. Anubis is a new RaaS that combines file encryption capability with a rare “wipe mode,” permanently deleting files and preventing recovery even after ransom payment. Anubis operates a flexible affiliate program that has […]

A vulnerability was found in Imagination Graphics DDK up to 24.2 RTM2. It has been declared as critical. This vulnerability affects unknown code. The manipulation leads to use after free. This vulnerability was named CVE-2025-46710. Attacking locally is a requirement. There is no exploit available. It is recommended to upgrade the affected component.

North Korean Advanced Persistent Threat (APT) hackers, specifically the Konni group, have shifted their focus to Ukrainian government agencies in a targeted phishing campaign aimed at stealing login credentials and distributing malware. This attack, observed in February 2025, marks a notable divergence from the group’s traditional targets and raises questions about potential strategic alliances with […]

The post North Korean APT Hackers Target Ukrainian Government Agencies to Steal Login Credentials appeared first on GBHackers Security | #1 Globally Trusted Cyber Security News Platform.

A vulnerability was found in Nosto. It has been classified as problematic. This affects an unknown part of the file /pages/search-results-page of the component GET Request Parameter Handler. The manipulation of the argument q leads to cross site scripting. This vulnerability is uniquely identified as CVE-2025-40726. It is possible to initiate the attack remotely. There is no exploit available.