Cyber Security News

As the Linux kernel continues to power everything from cloud infrastructure to embedded devices, its security remains critical. In 2025, patching strategies face unprecedented challenges: a 3,529% year-over-year increase in CVEs since 2024, sophisticated exploitation techniques targeting virtualization subsystems, and kernel-level attacks bypassing traditional security modules. This article examines how organizations adapt their patch management practices to […]

The post Linux Kernel Patching and Preventing Exploits in 2025 appeared first on Cyber Security News.

A newly discovered class of vulnerabilities in Intel processors, termed Branch Predictor Race Conditions (BPRC), allows attackers to systematically extract sensitive data from the cache and random-access memory (RAM) of other users sharing the same hardware. Affecting all Intel processors released in the past six years-including those in consumer devices and cloud server infrastructure-the vulnerability […]

The post New Vulnerability Affects All Intel Processors From The Last 6 Years appeared first on Cyber Security News.

A recent investigation has uncovered a concerning case of espionage at one of America’s premier academic institutions, where a Chinese intelligence agent posed as a Stanford University student to gather sensitive research information. The agent, operating under the alias “Charles Chen,” systematically targeted students conducting China-related research in what experts describe as part of a […]

The post Chinese Agent Impersonates as Stanford Student For Intelligence Gathering appeared first on Cyber Security News.

In a significant setback for US cybercrime enforcement efforts, Russian hacker Andrei Tarasov has evaded extradition to the United States and successfully returned to his homeland, intelligence sources confirm. Tarasov, 33, known in cybercriminal circles by the aliases “Aels” and, more recently, “Lavander,” was arrested in Berlin on July 18, 2023, as part of a […]

The post Malware Mastermind Andrei Tarasov Evades US Extradition Returns to Russia appeared first on Cyber Security News.

The Federal Bureau of Investigation (FBI) issued an urgent warning Thursday about an ongoing malicious campaign where cybercriminals are impersonating senior US officials through text messages and AI-generated voice calls. The sophisticated attack, which began in April 2025, primarily targets current and former federal and state government officials and their contacts, raising serious concerns about […]

The post FBI Warns of US Govt Officials Impersonated in Malicious Message Campaign appeared first on Cyber Security News.

Critical security flaws have been uncovered in Ivanti Endpoint Manager Mobile (EPMM), a widely used mobile device management (MDM) solution, exposing organizations to the risk of unauthenticated remote code execution (RCE). The vulnerabilities, tracked as CVE-2025-4427 and CVE-2025-4428, have been actively exploited in the wild, prompting urgent calls for patching from security agencies and Ivanti […]

The post Multiple Ivanti Endpoint Mobile Manager Vulnerabilities Allows Remote Code Execution appeared first on Cyber Security News.

In April 2025, cybersecurity teams were starkly reminded of the stakes involved in patch management when Microsoft disclosed CVE-2025-29824, a zero-day privilege escalation flaw in the Windows Common Log File System (CLFS) driver. Exploited by ransomware groups to gain SYSTEM-level access, this vulnerability targeted organizations across sectors in the U.S., Venezuela, Spain, and Saudi Arabia. The […]

The post Windows Security Updates – How to Stay Ahead of Vulnerabilities appeared first on Cyber Security News.

Multiple users and IT administrators are reporting that Microsoft’s latest security update KB5058379, released on May 13, 2025, is causing widespread issues with BitLocker recovery prompts and system boot failures. This mandatory Patch Tuesday update, which contains critical security fixes, is unexpectedly forcing many Windows 10 computers into recovery mode after installation. According to numerous […]

The post Windows 10 KB5058379 Update Boots PCs into Windows Recovery appeared first on Cyber Security News.

A critical vulnerability in Microsoft’s BitLocker full disk encryption, demonstrating that it can be bypassed in under five minutes using a software-only attack dubbed “Bitpixie” (CVE-2023-21563). A public proof-of-concept (PoC) exploit has now been released, highlighting the severity of the risk to millions of Windows devices relying on BitLocker without pre-boot authentication. How the Bitpixie […]

The post BitLocker Encryption Bypassed in Minutes Using Bitpixie Vulnerability: PoC Released appeared first on Cyber Security News.

A newly discovered malicious Python package, solana-token, has been weaponized to steal source code and sensitive secrets from developers working on Solana blockchain applications. Uploaded to the Python Package Index (PyPI), the module masqueraded as a legitimate utility for Solana-based projects but harbored code designed to exfiltrate critical data to a remote server. ReversingLabs researchers […]

The post New Weaponized PyPI Package Attacking Developers to Steal Source Code appeared first on Cyber Security News.

The Linux ecosystem, long celebrated for its open-source ethos and robust security architecture, faces an escalating threat landscape dominated by sophisticated supply chain attacks. Recent incidents, including the near-catastrophic XZ Utils backdoor, malicious Go modules delivering disk-wiping payloads, and compromised PyPI packages, highlight systemic vulnerabilities in software distribution networks. As attackers increasingly exploit trust in […]

The post Linux Security Essentials – Protecting Servers from Supply Chain Attacks appeared first on Cyber Security News.

As organizations face sophisticated cyber threats in 2025, securing Windows Server environments has become more critical than ever. With the release of Windows Server 2025, Microsoft has introduced enhanced security features and hardening capabilities designed to protect against the latest attack vectors. This article explores the most effective strategies for hardening Windows Server 2025 deployments […]

The post Hardening Windows Servers – Top Strategies to Prevent Exploits in 2025 appeared first on Cyber Security News.

Google has released an urgent security update for Chrome to patch a critical vulnerability that hackers are actively exploiting in the wild. The tech giant announced yesterday that Chrome’s Stable channel has been updated to version 136.0.7103.113/.114 for Windows and Mac, and 136.0.7103.113 for Linux to address four security issues, including a high-severity zero-day flaw. […]

The post Google Chrome 0-Day Vulnerability Exploited in the Wild – Update Now appeared first on Cyber Security News.

Europol announced on May 14 that law enforcement agencies have dismantled a sophisticated criminal parallel banking network operating across multiple European countries. The operation, conducted on January 14, 2025, resulted in the arrest of 17 individuals and the seizure of assets worth over EUR 4.5 million. The coordinated action took place across three countries, with […]

The post Authorities Arrested 17 Criminal Bankers, EUR 4.5 Million Seized appeared first on Cyber Security News.

As digital threats grow in sophistication, the cybersecurity sector has ignited a funding frenzy, with startups raising $1.7 billion in April 2025 alone ahead of the RSA Conference in San Francisco. This influx underscores investor confidence in technologies poised to redefine global digital defense, from AI-driven threat detection to zero-trust architectures and software supply chain safeguards. The […]

The post Cybersecurity Industry Gains $1.7 Billion to Develop Cutting-Edge Protection Technologies appeared first on Cyber Security News.

Identity theft has reached unprecedented levels in 2024, fueled by increasingly sophisticated criminal tactics that exploit technological advancements and systemic vulnerabilities. Recent reports from law enforcement, cybersecurity firms, and regulatory agencies reveal a stark escalation in the volume and complexity of attacks, with losses exceeding $16 billion in the U.S. alone. Cybercriminals are leveraging generative […]

The post Identity Theft Surges as Criminals Deploy Advanced Tactics to Steal Personal Data appeared first on Cyber Security News.

The race between cybersecurity professionals and malicious hackers has reached alarming speeds in 2025, with new data revealing that more than a quarter of software vulnerabilities are now exploited within 24 hours of disclosure. This rapidly shrinking window between vulnerability discovery and active exploitation forces organizations to rethink traditional patching cycles and implement more agile […]

The post Hackers Exploit Software Flaws within Hours Forcing Urgent Push for Faster Patches appeared first on Cyber Security News.

Logicube’s Falcon-NEO2 Forensic Imager Achieves Project VIC Validation; Now VICS Data Compliant and Endorsed for Law Enforcement Forensic Use Kindred Tech and Logicube, Inc. are proud to announce that the Falcon-NEO2, Logicube’s Best-In-Class digital forensic imaging solution, has successfully completed validation testing and is now VICS data compliant. This marks a major advancement in the global interoperability of forensic […]

The post Logicube’s Falcon®-NEO2 Forensic Imager Achieves Project VIC Validation; Now VICS Data Compliant appeared first on Cyber Security News.

Malware doesn’t need fancy tools to be dangerous. Sometimes, all it takes is WMIC, a quiet, native utility that’s still doing damage.   In the past weeks, we’ve seen a consistent pattern in some ANY.RUN sandbox sessions: malware keeps reaching for WMIC to do its dirty work.   Let’s take a closer look at five WMIC command […]

The post Top 5 WMIC Commands Used By Malware  appeared first on Cyber Security News.

The digital frontlines of modern conflict have expanded dramatically in 2025, with state-sponsored hackers from China, Russia, North Korea, and Iran executing sophisticated attacks against energy grids, telecommunications networks, and transportation systems worldwide. These operations, often masked as routine cybercrime, are reshaping national security paradigms while testing the resilience of democracies and allied partnerships. China’s […]

The post Global Powers Intensify Cyber Warfare with Covert Digital Strikes on Critical Systems appeared first on Cyber Security News.