Chinese APT Group UNC5221 Exploits Ivanti VPN Vulnerabilities for Global Data Breaches
The Chinese APT group UNC5221 has been exploiting critical vulnerabilities in Ivanti Connect Secure VPN appliances, deploying sophisticated malware and compromising sensitive data across multiple industries and countries.
View full story…
Vulnerability Exploitation Surges as Major Cyber Threat in 2025
The 2025 Verizon Data Breach Investigations Report reveals a significant rise in vulnerability exploitation, now accounting for 20% of data breaches, highlighting the urgent need for improved cybersecurity measures.
View full story…
Marks and Spencer Faces Cybersecurity Incident Disrupting Retail Operations
Marks and Spencer is managing a cybersecurity incident that has disrupted its UK retail operations, affecting services like Click and Collect and contactless payments, while the company assures customers that no data has been accessed.
View full story…
FBI Faces Accountability Crisis Over Missing Records of Hacking Tools
The FBI is struggling to locate documentation for its recent $250,000 acquisition of advanced hacking tools, raising serious concerns about transparency and public trust in the agency.
View full story…
Latest Cybernews
Novel Malware Campaign Targets Docker Environments for Cryptojacking
A new malware campaign is exploiting Docker environments to mine cryptocurrencies illicitly by utilizing the Teneo network’s heartbeat system, marking a shift from traditional cryptojacking methods.
View full story…
SuperCard X Malware Targets Android Users With NFC Relay Attacks
A sophisticated mobile malware campaign named “SuperCard X,” linked to Chinese-speaking threat actors, exploits NFC relay attacks to steal credit card data from Android devices in Italy through counterfeit banking applications.
View full story…
Microsoft Mandates Phishing-Resistant MFA for Corporate Users
Microsoft has implemented phishing-resistant multifactor authentication for over 90% of its corporate users as part of its Secure Future Initiative to enhance cybersecurity against rising cyber threats.
View full story…
Billbug Cyber-Espionage Campaign Targets Southeast Asia’s Critical Sectors
A cyber-espionage campaign linked to the China-affiliated group Billbug has compromised high-profile organizations in Southeast Asia from August 2024 to February 2025, utilizing advanced malware and sophisticated techniques to extract sensitive information.
View full story…
Scallywag Ad Fraud Network Exploits WordPress Plugins to Generate Billions in Fraudulent Requests
The Scallywag ad fraud network utilizes specially crafted WordPress plugins to generate approximately 1.4 billion fraudulent bid requests daily, enabling multiple threat actors to monetize pirated content and URL shortening sites.
View full story…
Fraud in Cyber Insurance Claims Surges Amid Ransomware Threats
Cyber insurance claims are increasingly impacted by financial fraud and ransomware attacks, with the manufacturing and healthcare sectors facing the highest risks and costs.
View full story…
Latest Cybernews
Phishing Kits and PhaaS Platforms Empower Cybercriminals
The rise of inexpensive phishing kits and subscription-based Phishing as a Service (PhaaS) platforms is enabling low-skilled criminals to execute sophisticated phishing attacks, posing a significant threat to data security and privacy.
View full story…
Web Application Security: Protecting Against Online Threats
Web application security is crucial for safeguarding digital assets from various online threats, including SQL Injection and Denial of Service attacks, necessitating secure coding practices, regular updates, and effective monitoring.
View full story…