Critical Vulnerability CVE-2025-22457 Discovered in Ivanti Products
A critical vulnerability in Ivanti products, CVE-2025-22457, is being actively exploited by the Chinese state-sponsored threat actor UNC5221, posing significant security risks to organizations.
View full story…
Cybersecurity Agencies Warn of Fast Flux Threats
A joint advisory from major cybersecurity agencies highlights the growing exploitation of Fast Flux techniques by cybercriminals and nation-state actors, complicating threat detection and posing significant risks to national security.
View full story…
Latest Cybernews
CrushFTP Vulnerability Allows Unauthorized Access Through Authentication Bypass
A critical authentication bypass vulnerability in CrushFTP, tracked as CVE-2025-31161 and CVE-2025-2825, enables remote attackers to gain unauthorized access to unpatched systems, posing significant security risks.
View full story…
Ransomware Attack Compromises Data at Highline Public Schools
Highline Public Schools in Seattle faced a ransomware attack on September 7, 2024, resulting in the breach of sensitive personal, financial, and medical data of individuals associated with the district.
View full story…
Coquettte Exploits Russian Bulletproof Hosting to Distribute Malware
The cyber threat actor Coquettte is using the services of Proton66, a Russian bulletproof hosting provider, to distribute malware disguised as legitimate software through a fraudulent website promoting a fake antivirus product.
View full story…
User Blocking as a Cybersecurity Measure
Security services implement user blocking to mitigate online attack risks by responding to suspicious activities and protecting sensitive information.
View full story…
Cyber-Attacks on US and UK Utilities Highlight Critical Vulnerabilities
Over 60% of water and electricity firms in the US and UK faced cyber-attacks in the past year, with significant incidents linked to state-sponsored groups, underscoring the urgent need for enhanced cybersecurity measures.
View full story…
Latest Cybernews
Resecurity Disrupts BlackLock Ransomware Gang’s Operations
Resecurity successfully dismantled the BlackLock ransomware gang by exploiting a critical vulnerability, significantly impairing its operations and reputation while preventing further data leaks.
View full story…
Royal Mail Faces Major Data Breach Linked to Third-Party Provider Spectos
The UK postal service Royal Mail is investigating a significant data breach involving the leak of over 144GB of sensitive user data, attributed to unauthorized access through its third-party provider Spectos GmbH.
View full story…
Surge In Cyberattacks Costs Cryptocurrency Industry Over $1.67 Billion In Q1 2025
The cryptocurrency industry faced a dramatic increase in cyberattacks in the first quarter of 2025, with losses exceeding $1.67 billion, primarily due to a significant breach at Bybit linked to North Korea’s Lazarus Group.
View full story…
Web Application Firewalls: Essential Defense Against Cyber Threats
Web Application Firewalls (WAFs) are crucial tools for protecting web applications from various online threats, including SQL injections and cross-site scripting, by blocking malicious traffic and ensuring only legitimate users access the application.
View full story…
China Identified as Top Military and Cyber Threat to the US
A recent report highlights China’s advanced cyber capabilities and military ambitions, emphasizing the need for the US to strengthen its defenses against potential attacks on critical infrastructure.
View full story…
North Korea’s Fake IT Workers Target European Companies
North Korean operatives are infiltrating European companies, particularly in defense and blockchain sectors, using fake identities and advanced technical skills to conduct illicit activities and extortion.
View full story…