Aggregator

Akamai this week launched an agentless posture management offering that provides visibility across multiple domain name servers (DNS) platforms. Sean Lyons, senior vice president and general manager for infrastructure security solutions and services at Akamai, said Akamai DNS Posture Management provides real-time monitoring and guided remediation across all major DNS platforms and services in a..

The post Akamai Extends Cybersecurity Reach to DNS Posture Management appeared first on Security Boulevard.

China has accused Taiwan’s Democratic Progressive Party (DPP) authorities of orchestrating a series of sophisticated cyber attacks through Advanced Persistent Threat (APT) groups. Referred to as “T-APTs,” these groups are allegedly supported by Taiwan’s Information, Communications and Electronic Force Command (ICEFCOM) and are claimed to have close ties with the United States. Allegations of Cyber […]

The post China Accuses Taiwan of Operating APT Groups with US Support appeared first on GBHackers Security | #1 Globally Trusted Cyber Security News Platform.

You must login to view this content

A sophisticated malware campaign targeting WordPress administrators has been discovered, utilizing a deceptive caching plugin to steal login credentials and compromise website security.  Security researchers have identified a malicious plugin disguised as “wp-runtime-cache” that specifically targets users with administrative privileges, exfiltrating sensitive authentication data to external servers controlled by cybercriminals. Fake WordPress Cache Steals Logins […]

The post WordPress Admins Beware! Fake Cache Plugin that Steals Admin Logins appeared first on Cyber Security News.

In the wake of the COVID-19 pandemic, collaborative tools like Microsoft Teams, Zoom, and WebEx have become indispensable for remote work, enabling seamless communication with colleagues and clients. However, their widespread adoption has also made them prime targets for cybercriminals. A recent phishing campaign exploiting the popularity of Zoom has surfaced, tricking users into downloading […]

The post Beware of Fake Zoom Client Downloads Granting Attackers Access to Your Computer appeared first on GBHackers Security | #1 Globally Trusted Cyber Security News Platform.

Multiple Cross-Site Scripting (XSS) vulnerabilities in the VMware NSX network virtualization platform could allow malicious actors to inject and execute harmful code.  The security bulletin published on June 4, 2025, details three distinct vulnerabilities affecting VMware NSX Manager UI, gateway firewall, and router port components, with CVSS base scores ranging from 5.9 to 7.5. CVE-2025-22243: […]

The post VMware NSX XSS Vulnerability Allows Attackers to Inject Malicious Code appeared first on Cyber Security News.

The nominee, who doesn’t have as much cyber experience as his predecessors, also touted his credentials and views on current threats during his Senate confirmation hearing.

The post Sean Cairncross has policy coordination in mind if confirmed as national cyber director appeared first on CyberScoop.

A high-severity vulnerability has been discovered in Cisco’s Nexus Dashboard Fabric Controller (NDFC) that could allow unauthenticated attackers to impersonate managed network devices through compromised SSH connections.  The vulnerability, tracked as CVE-2025-20163, carries a CVSS base score of 8.7 and affects all versions of Cisco NDFC regardless of device configuration.  Security researchers from REQON B.V. […]

The post Cisco Nexus Dashboard Vulnerability Lets Attackers Impersonate as Managed Devices appeared first on Cyber Security News.

The cybersecurity landscape faces a growing threat from sophisticated botnet operations targeting Internet of Things (IoT) devices, with recent developments highlighting the vulnerability of connected cameras and smart devices. While specific details about the Eleven11bot malware remain limited in publicly available research, the broader context reveals an alarming trend of attackers exploiting poorly secured IP […]

The post New Eleven11bot Hacked 86,000 IP Cameras for Massive DDoS Attack appeared first on Cyber Security News.

A significant vulnerability in Cisco’s Integrated Management Controller (IMC) that allows malicious actors to gain elevated privileges and access internal services without proper authorization.  This vulnerability poses substantial risks to enterprise networks relying on Cisco’s server management infrastructure, potentially enabling attackers to compromise critical systems and sensitive data. Cisco IMC Privilege Escalation Flaw The Cisco […]

The post Cisco IMC Vulnerability Attackers to Access Internal Services with Elevated Privileges appeared first on Cyber Security News.

A newly identified malicious plugin, dubbed “wp-runtime-cache,” has been discovered targeting WordPress sites with a sophisticated method to steal admin credentials. Disguised as a caching plugin, this malware lurks in the wp-content/plugins directory, evading detection by hiding from the WordPress admin panel’s plugin list. Unlike legitimate caching plugins that typically offer visible settings or management […]

The post WordPress Admins Cautioned About Fake Cache Plugin Stealing Admin Credentials appeared first on GBHackers Security | #1 Globally Trusted Cyber Security News Platform.

Our latest State of Secrets Sprawl 2025 research reveals a troubling reality: the majority of leaked corporate secrets found in public code repositories continue to provide access to systems for years after their discovery.

The post Why Most Exposed Secrets Never Get Fixed appeared first on Security Boulevard.