A cybersecurity threat has emerged targeting one of the world’s largest fast-food chains, as a threat actor known as #LongNight has put up for sale remote code execution (RCE) access to Burger King Spain’s backup infrastructure for $4,000. The vulnerability…
Category: Cyber Security News
Bypassing Zero-Trust Policies to Exploit Vulnerabilities & Manipulate NHI Secrets
A comprehensive security research demonstration has revealed how attackers can systematically undermine modern zero-trust security frameworks by exploiting a critical DNS vulnerability to disrupt automated secret rotation mechanisms. The research showcases a sophisticated attack chain that begins with crashing DNS…
Hackers Attacking macOS Users With Fake Ledger Apps to Deploy Malware
Cybercriminals are increasingly targeting cryptocurrency users through sophisticated malware campaigns that exploit the trust placed in cold wallet management applications. Since August 2024, threat actors have been distributing malicious clones of Ledger Live, the widely-used application for managing cryptocurrency through…
New Formjacking Malware Attacking E-Commerce Pages to Steal Credit Card Data
Cybersecurity researchers have uncovered a sophisticated new formjacking malware campaign targeting WooCommerce-powered e-commerce websites, representing a significant evolution in credit card skimming attacks. This advanced threat demonstrates unprecedented stealth capabilities, carefully integrating fake payment forms into legitimate checkout processes while…
Researchers Uncovered Infrastructure & TTPs Used by ALCATRAZ Malware
Security researchers have identified a sophisticated malware campaign utilizing the ALCATRAZ obfuscator, an open-source tool originally developed for the game hacking community that has now been weaponized by cybercriminals and advanced persistent threat groups. The malware, dubbed DOUBLELOADER, has been…
How to Respond to Data Breaches – A Comprehensive Guide
In today’s digital world, data breaches have become a persistent threat, impacting organizations of every size and sector. With the average cost of a breach climbing each year and millions of records exposed, the question is no longer if a breach will…
2025 Cybersecurity Trends – Key Threats and Solutions
Artificial intelligence, sophisticated ransomware operations, and evolving geopolitical tensions are dramatically reshaping the cybersecurity landscape in 2025. With over 30,000 vulnerabilities disclosed last year, a 17% increase from previous figures, organizations face unprecedented challenges in securing their digital assets. As…
Threats Actors Using Copyright Phishing Lures to Deliver Rhadamanthys Stealer
A sophisticated phishing campaign leveraging copyright infringement themes has emerged as a primary vector for distributing the dangerous Rhadamanthys information stealer malware across European countries. Since April 2025, threat actors have been exploiting fear-based social engineering tactics, impersonating legal representatives…
Enterprise Security Solutions – Building a Resilient Defense
In today’s hyper-connected world, enterprise security is no longer a technical afterthought but a boardroom priority. As cyberattacks grow in frequency and sophistication, organizations are under increasing pressure to protect sensitive data, maintain regulatory compliance, and ensure business continuity. The…
TAG-110 Hackers Weaponize Word Templates for Targeted Attacks
A sophisticated cyber-espionage campaign has emerged targeting Tajikistan’s government institutions through weaponized Microsoft Word templates, marking a significant tactical evolution by the Russia-aligned threat group TAG-110. The campaign, which unfolded between January and February 2025, represents a departure from the…
iPhone Phishing Defense – Recognizing and Blocking Attacks
As mobile devices become increasingly central to daily life, cybercriminals are refining their tactics to exploit vulnerabilities in Apple’s iMessage platform. Recent reports reveal a surge in phishing campaigns that bypass Apple’s built-in security measures by manipulating user behavior, underscoring…
Protecting iPhones from Spyware – Tools and Tips
iPhones have become integral to daily life, so their security has never been more critical. While Apple’s iOS is renowned for its robust security architecture, spyware threats are evolving, and no device is entirely immune. Recent incidents, including high-profile cases…
DanaBot Malware With 150 Active C2 servers & 1,000 Daily Victims Busted in Operation Endgame
Law enforcement agencies have successfully disrupted one of the most sophisticated malware-as-a-service platforms operating in 2025, dealing a significant blow to the DanaBot botnet through Operation Endgame II. The coordinated international effort targeted a criminal infrastructure that maintained an average…
Threat Actors Deliver Winos 4.0 Impersonate as VPN & QQBrowser
A sophisticated malware campaign leveraging fake software installers disguised as popular applications has emerged as a significant threat to cybersecurity infrastructure, with attackers deploying the hard-to-detect Winos 4.0 malware through deceptive VPN and QQBrowser installations. The campaign represents a concerning…
Chinese Nexus Hackers Actively Exploiting Ivanti Endpoint Manager Mobile Vulnerability
A sophisticated China-linked threat group has been actively exploiting critical vulnerabilities in Ivanti Endpoint Manager Mobile (EPMM) systems since May 15, 2025, targeting organizations across healthcare, telecommunications, aviation, municipal government, finance, and defense sectors globally. The campaign leverages two newly…
Securing Android in the Enterprise – Policies and Solutions
Recent security vulnerabilities in Google’s Android operating system have highlighted the critical importance of robust enterprise mobile security strategies. Just days ago, on May 11, 2025, security researchers identified multiple vulnerabilities in the Android OS, with the most severe potentially…
Android Security Patches – How to Stay Updated and Protected
As Android continues to dominate the global smartphone market, its open and flexible ecosystem remains both a strength and a challenge. The very features that make Android attractive- customization, variety, and choice- also create rapid opportunities for security threats to…
Apple XNU kernel Vulnerability Let Attackers Escalate Privileges
A critical security vulnerability in Apple’s XNU kernel has been disclosed. It allows local attackers to escalate privileges and potentially execute arbitrary code with kernel-level access. The flaw, identified as CVE-2025-31219, represents a significant security risk across multiple Apple operating…
New Blackhat AI Tool Venice.ai Let Attackers Create Malware in Minutes
A new artificial intelligence platform called Venice.ai is raising serious cybersecurity concerns after researchers discovered it can generate functional malware, phishing emails, and sophisticated cyberattack tools with minimal user expertise. Unlike mainstream AI services such as ChatGPT, Venice.ai deliberately removes…
Critical NETGEAR Router Vulnerability Let Attackers Gain Full Admin Access
A newly disclosed authentication bypass vulnerability has exposed thousands of NETGEAR DGND3700v2 routers to remote attacks, allowing cybercriminals to gain complete administrative control without requiring valid credentials. The flaw, tracked as CVE-2025-4978 and assigned a critical CVSS score of 9.3,…