Cyber Security News

A sophisticated new spear-phishing campaign has emerged, deploying the notorious VIP keylogger through carefully crafted email attachments that masquerade as legitimate payment receipts. This latest iteration represents a significant evolution in the malware’s delivery mechanism, showcasing the threat actors’ adaptability and technical sophistication in bypassing modern security measures. The VIP keylogger, previously documented for its […]

The post New Spear Phishing Attack Delivers VIP Keylogger via EMAIL Attachment appeared first on Cyber Security News.

Google Project Zero has announced a significant shift in its vulnerability disclosure practices, implementing a new trial policy that will publicly announce security vulnerabilities within one week of reporting them to vendors.  This marks a departure from the traditional approach where vulnerability details remained confidential until patches were developed and deployed. The cybersecurity research team […]

The post Google Project Zero to Publicly Announce Vulnerabilities Within a Week of Reporting Them appeared first on Cyber Security News.

A newly disclosed critical security vulnerability in SUSE Manager poses severe risks to enterprise infrastructure, allowing unauthenticated attackers to execute arbitrary commands with root privileges.  The vulnerability, tracked as CVE-2025-46811, has been assigned a critical CVSS 4.0 score of 9.3, highlighting the urgent need for immediate patching across affected systems. Key Takeaways1.  CVE-2025-46811 allows unauthenticated […]

The post Critical SUSE Manager Vulnerability Let Attackers Execute Arbitrary Commands as Root appeared first on Cyber Security News.

The cybersecurity landscape continues to witness the emergence of sophisticated information-stealing malware, with 0bj3ctivityStealer representing one of the most recent and concerning additions to this threat ecosystem. Initially discovered by HP Wolf Security experts earlier this year, this advanced stealer has demonstrated a comprehensive arsenal of data exfiltration capabilities targeting a wide variety of applications […]

The post 0bj3ctivityStealer’s Execution Chain Unveiled With It’s New Capabilities and Exfiltration Techniques appeared first on Cyber Security News.

A sophisticated Android banking trojan known as ToxicPanda has successfully infiltrated over 4500 mobile devices across Europe, representing one of the most significant mobile banking malware campaigns observed in recent years. The malware specifically targets banking and digital wallet applications, employing advanced overlay techniques to steal login credentials, PIN codes, and pattern locks while enabling […]

The post ToxicPanda Android Banking Malware Infected 4500+ Devices to Steal Banking Credentials appeared first on Cyber Security News.

A sophisticated new variant of the XWorm malware has emerged in the wild, introducing advanced anti-analysis capabilities and enhanced evasion techniques that pose significant threats to Windows users worldwide. The latest iteration, designated XWorm V6.0, represents a substantial evolution from previous versions, incorporating multiple layers of protection against security analysis and detection systems. The malware […]

The post New XWorm V6 Variant’s With Anti-Analysis Capabilities Attacking Windows Users in The Wild appeared first on Cyber Security News.

A threat actor, Tsar0Byte, allegedly claimed to have breached the company’s internal network through a vulnerable third-party link, exposing sensitive data belonging to more than 94,500 employees. The alleged breach, reported on dark web forums including DarkForums, represents one of the most extensive corporate data exposures affecting Nokia in recent years. According to the threat […]

The post Threat Actors Allegedly Claim Access to Nokia’s Internal Network appeared first on Cyber Security News.

Palo Alto Networks, a leader in cybersecurity, announced today that it has agreed to acquire CyberArk, a company known for identity security, for about $25 billion. This move is expected to change the cybersecurity industry significantly. The deal marks Palo Alto Networks’ strategic entry into the Identity Security market, establishing it as a new core […]

The post Palo Alto Networks to Acquire CyberArk in $25 Billion Deal appeared first on Cyber Security News.

Even with Slack, Teams, and every new communication tool out there, email remains the top attack vector for businesses. Why? Because it’s familiar, trusted, and easy to exploit.  One convincing message is all it takes and threats slip right past filters, AVs, and EDRs without making a sound.  Below are five real examples of attacks […]

The post 5 Email Attacks SOCs Cannot Detect Without A Sandbox  appeared first on Cyber Security News.

A sophisticated North Korean cyber espionage operation known as TraderTraitor has emerged as one of the most formidable threats to the global cryptocurrency ecosystem, conducting billion-dollar heists through advanced supply chain compromises and cloud platform infiltrations. Originally codnamed by the U.S. government in 2022, TraderTraitor represents a specialized subgroup within the notorious Lazarus Group, North […]

The post Lazarus Subgroup ‘TraderTraitor’ Attacking Cloud Platforms and Poisoning Supply Chains appeared first on Cyber Security News.

Cybercriminals are increasingly leveraging malicious Windows Shortcut (LNK) files to deploy sophisticated backdoors, with a new campaign delivering an advanced REMCOS variant that successfully evades traditional antivirus detection mechanisms. This multi-stage attack demonstrates the evolving sophistication of threat actors who exploit legitimate Windows functionality to establish persistent footholds in targeted systems. The campaign begins with […]

The post Threat Actors Weaponize LNK Files With New REMCOS Variant That Bypasses AV Engines appeared first on Cyber Security News.

Website monitoring tools are essential for real-time tracking of websites’ performance, availability, and functionality. They help identify and resolve downtime, slow page load times, and broken links, ensuring an optimal user experience. These tools provide detailed analytics and reports, offering insights into website traffic, user behavior, and performance metrics. Many website monitoring tools include alerting […]

The post 15 Best Website Monitoring Tools in 2025 appeared first on Cyber Security News.

A critical vulnerability in SonicWall Gen7 firewall products could allow remote unauthenticated attackers to cause service disruptions through denial-of-service (DoS) attacks.  The format string vulnerability tracked as CVE-2025-40600 affects the SSL VPN interface of multiple SonicWall firewall models and has been assigned a CVSS v3 score of 5.9, indicating medium severity with high availability impact. […]

The post Critical SonicWall SSL VPN Vulnerability Let Attackers Trigger DoS Attack on Firewalls appeared first on Cyber Security News.

A critical remote code execution (RCE) vulnerability in the popular “Alone” WordPress theme is being actively exploited by attackers to gain complete control of vulnerable websites.  The vulnerability, assigned CVE-2025-5394 with a maximum CVSS score of 9.8, affects over 9,000 sites using versions 7.8.3 and below of the charity-focused theme. Key Takeaways1. Critical RCE flaw […]

The post WordPress Theme RCE Vulnerability Actively Exploited to Take Full Site Control appeared first on Cyber Security News.

The cybersecurity landscape has witnessed a significant surge in information-stealing malware, with Lumma emerging as one of the most prevalent and sophisticated threats targeting Windows systems globally. This C++-based information stealer has rapidly gained traction in underground markets, establishing itself as a formidable malware-as-a-service (MaaS) operation that has infected hundreds of thousands of computers worldwide. […]

The post Lumma Password Stealer Attack Infection Chain and Its Escalation Tactics Uncovered appeared first on Cyber Security News.

A significant security vulnerability has been discovered in BeyondTrust’s Privilege Management for Windows solution, allowing local authenticated attackers to escalate their privileges to the administrator level.  The flaw, designated as CVE-2025-2297 with a CVSSv4 score of 7.2, affects all versions before 25.4.270.0 and has been classified as high severity.  The vulnerability stems from improper handling […]

The post BeyondTrust Privilege Management for Windows Vulnerability Let Attackers Escalate Privileges appeared first on Cyber Security News.

Joint international advisory warns of evolving social engineering tactics and new DragonForce ransomware deployment targeting commercial facilities A collaboration of international cybersecurity agencies issued an urgent updated advisory on July 29, 2025, highlighting the escalating threat posed by the Scattered Spider cybercriminal group, which has intensified attacks against critical infrastructure and commercial facilities sectors with […]

The post Global Authorities Shared IoCs and TTPs of Scattered Spider Behind Major VMware ESXi Ransomware Attacks appeared first on Cyber Security News.

Monitoring and tracking actions on the dark web, a section of the internet that is hidden and requires particular software and configurations to access, is called monitoring. The selling of stolen data, illegal drugs, illegal weapons, hacking services, and other unlawful acts are among the illegal activities known to occur on the dark web. Dark […]

The post 10 Best Dark Web Monitoring Tools in 2025 appeared first on Cyber Security News.

ChatGPT agents demonstrate the ability to autonomously bypass Cloudflare’s CAPTCHA verification systems, specifically the ubiquitous “I am not a robot” checkbox.  This development, first documented in a viral Reddit post on the r/OpenAI community, showcases the evolving sophistication of AI agents in navigating web security measures. Key Takeaways1. ChatGPT agent successfully bypassed Cloudflare's "I am […]

The post ChatGPT Agent Bypasses Cloudflare “I am not a robot” Verification Checks appeared first on Cyber Security News.

A sophisticated cyberattack targeting a US-based chemicals company has revealed the first observed pairing of SAP NetWeaver exploitation with Auto-Color malware, demonstrating how threat actors are leveraging critical vulnerabilities to deploy advanced persistent threats on Linux systems.  In April 2025, cybersecurity firm Darktrace successfully detected and contained an attack that exploited CVE-2025-31324, a critical vulnerability […]

The post Hackers Exploiting SAP NetWeaver Vulnerability to Deploy Auto-Color Linux Malware appeared first on Cyber Security News.