DeceptiveDevelopment Malware Campaign Targets Freelance Developers
The DeceptiveDevelopment malware campaign, linked to North Korean cybercriminals, exploits freelance software developers in the cryptocurrency sector through fake job offers and sophisticated phishing tactics.
View full story…
Palo Alto Networks’ PAN-OS Vulnerability CVE-2025-0108 Actively Exploited
A critical authentication bypass vulnerability in Palo Alto Networks’ PAN-OS, CVE-2025-0108, has been discovered and is being actively exploited, allowing attackers to gain root access to affected systems.
View full story…
Ghost Ransomware Group Continues Global Cyberattacks
The “Ghost” ransomware group, also known as Cring and Crypt3r, has been conducting widespread cyberattacks since 2021, targeting critical infrastructure and exploiting vulnerabilities in software such as Fortinet FortiOS and Microsoft Exchange.
View full story…
Surge In Mobile Phishing Attacks Highlights Security Vulnerabilities
Mobile phishing attacks, or “mishing,” have surged significantly, exploiting the unique vulnerabilities of mobile devices and targeting both personal and corporate users through advanced social engineering techniques.
View full story…
Latest Cybernews
UK Imposes Sanctions on ZSERVERS to Combat Russian Cybercrime
The United Kingdom has sanctioned ZSERVERS, a key player in the Russian cybercrime infrastructure, along with its affiliates and a UK front company, to enhance national security and disrupt ransomware operations targeting the UK.
View full story…
DeepSeek’s R1 AI Model Faces Major Cybersecurity Risks Amid Exploits
DeepSeek’s R1 AI model has been criticized for its high failure rate in security tests, making it vulnerable to various exploits and leading to bans and scrutiny from multiple countries and organizations.
View full story…
Infostealer Malware Compromises Credentials of U.S. Military and Defense Contractors
Infostealer malware has led to significant credential theft affecting major U.S. defense contractors and military networks, exposing sensitive information and posing serious national security risks.
View full story…
Email Security Challenges Intensify Amid AI Advancements in 2025
As AI technology evolves, organizations face increasing email security threats, particularly from outbound errors and sophisticated phishing attacks, highlighting the need for improved employee awareness and technological solutions.
View full story…
Insight Partners Faces Cyber-Attack Amid Rising Social Engineering Threats
On January 16, 2025, Insight Partners, a major venture capital firm, experienced a significant cyber-attack attributed to sophisticated social engineering tactics, prompting immediate remediation efforts and collaboration with law enforcement and cybersecurity experts.
View full story…
Critical Vulnerability Discovered in Jupiter X Core WordPress Plugin
A critical security vulnerability, CVE-2025-0366, in the Jupiter X Core WordPress plugin allows remote code execution for authenticated attackers on over 90,000 websites.
View full story…
Russian Threat Actors Exploit Signal Messenger’s Features to Target Sensitive Communications
Russian state-aligned threat actors are increasingly exploiting Signal Messenger’s linked devices feature to target individuals involved in military and government communications, posing significant risks to secure messaging applications.
View full story…
Finastra Suffers Major Cybersecurity Breach Exposing Sensitive Consumer Data
Finastra experienced a significant cybersecurity breach that compromised approximately 400 GB of sensitive banking data, affecting at least 65 residents of Massachusetts and prompting the company to offer identity protection services.
View full story…
Latest Cybernews
FrigidStealer Malware Targets macOS Users Through Deceptive Update Notifications
FrigidStealer, linked to threat actor TA2727 and the cybercrime syndicate EvilCorp, exploits macOS users via fake update alerts, posing significant risks to personal and corporate data.
View full story…