A sophisticated new ransomware-as-a-service operation has emerged with advanced AI-powered negotiation capabilities and mobile management features, targeting organizations across healthcare, automotive, and industrial sectors. GLOBAL GROUP, operated by threat actor “$$$”, has claimed 17 victims across multiple countries since its…
Category: Cyber Security News
PoC Exploit Released for High-Severity Git CLI Arbitrary File Write Vulnerability
A critical vulnerability in Git CLI enables arbitrary file writes on Linux and macOS systems, with working proof-of-concept exploits now publicly available. CVE-2025-48384, assigned a CVSS severity score of 8.1/10, allows attackers to achieve remote code execution through maliciously crafted…
British Citizen Jailed for Islamophobic WiFi Hack at UK Train Stations
A British man has been sentenced to 24 months’ imprisonment, suspended for 24 months, after pleading guilty to hijacking WiFi networks at major UK train stations. Also, users were directed to Islamophobic content that referenced prior terrorist acts, causing significant…
Hackers Leveraging AWS Lambda URLs Endpoints to Attack Governments Organizations
A previously unreported Windows backdoor dubbed “HazyBeacon” has emerged in a stealthy espionage campaign that began in late 2024 and is still unfolding across several Southeast Asian government networks. The operators exploit the public URL feature of AWS Lambda—originally designed…
CISA Warns of Wing FTP Server Vulnerability Actively Exploited in Attacks
CISA has issued an urgent warning about a critical vulnerability in Wing FTP Server that is being actively exploited by cybercriminals. The vulnerability, tracked as CVE-2025-47812, poses significant risks to organizations using this popular file transfer solution and has been…
Elmo’s X Account Hacked: Sesame Street Character Used to Spread Racist and Antisemitic Messages
In a shocking incident that left parents and fans horrified, the official X account of Elmo, the beloved red monster from Sesame Street, was hacked on Sunday, July 13, 2025, and used to spread a series of racist and antisemitic…
MITRE Launches AADAPT Framework for Detecting and Responding to Digital Asset Management Attacks
Key Takeaways1. MITRE launched AADAPT™, a specialized security framework for blockchain and cryptocurrency threats, modeled after ATT&CK.2. Features 11 tactical categories with 38 techniques covering blockchain-specific attacks from reconnaissance to impact.3. Addresses digital asset-specific vulnerabilities like Flash Loans, Smart Contract…
CBI Busts Noida Based Tech Support Scam Targeting UK & Australian Citizens
The Central Bureau of Investigation (CBI) has successfully dismantled a sophisticated transnational cybercrime syndicate operating from Noida’s Special Economic Zone, targeting citizens across the United Kingdom and Australia through elaborate tech support scams. The operation, conducted on July 7, 2025,…
Symantec Endpoint Management Suite Vulnerability Allows Malicious Code Execution Remotely
A critical security vulnerability has been discovered in Broadcom’s Symantec Endpoint Management Suite that enables unauthenticated remote code execution, posing significant risks to enterprise IT infrastructure. The flaw, designated CVE-2025-5333 with a severe CVSS v4.0 score of 9.5, affects multiple…
20-Year-Old Vulnerability Allows Hackers to Control Train Brakes
CISA has issued a critical advisory warning about a severe vulnerability in railway communication systems that could allow attackers to control train brakes remotely. The vulnerability, assigned CVE-2025-1727, affects End-of-Train and Head-of-Train remote linking protocols used across the United States…
Red Bull-Themed Phishing Attacks Steal Job Seekers Login Credentials
A new wave of phishing emails promising a “Social Media Manager” position at Red Bull has surfaced in corporate and personal inboxes worldwide. Disguised as personalized invitations, the messages originate from messaging-service@post.xero.com and sail through SPF, DKIM and DMARC checks,…
20-year-old Vulnerability in Radio Remote Linking Protocol Let Hackers Control Train Brakes
CISA has issued a critical advisory warning about a severe vulnerability in railway communication systems that could allow attackers to control train brakes remotely. The vulnerability, assigned CVE-2025-1727, affects End-of-Train and Head-of-Train remote linking protocols used across the United States…
Microsoft Details on Fixing Error “Identify Which Process Is Blocking a File in Windows” With Built-in Tools
Microsoft has provided comprehensive guidance for resolving the common Windows error “The process cannot access the file because it is being used by another process.” This technical issue, which frequently frustrates users attempting to delete, move, or modify files, can…
Gigabyte UEFI Firmware Vulnerability Let Attackers Execute Arbitrary Code in the SMM Environment
Critical security vulnerabilities have been discovered in Gigabyte UEFI firmware that could allow attackers to execute arbitrary code in System Management Mode (SMM), one of the most privileged execution environments in modern processors. The vulnerabilities, disclosed by the Software Engineering…
Threat Actors Attacking Gen Z Gamers With Weaponized Versions of Popular Games
A sophisticated malware campaign targeting Generation Z gamers has emerged, leveraging weaponized versions of popular games to infiltrate gaming communities and steal sensitive information. The campaign, which has recorded over 19 million malware distribution attempts in a single year, demonstrates…
Wing FTP Server Vulnerability Actively Exploited – 2000+ Servers Exposed Online
Security researchers have confirmed active exploitation of a critical vulnerability in Wing FTP Server, just one day after technical details were publicly disclosed. The flaw, tracked as CVE-2025-47812, has received the maximum CVSS score of 10.0 and enables unauthenticated remote…
Pune Auto Parts Firm Loses ₹2.35 Crore in Man-in-the-Middle Attack
A Pune-based automobile parts manufacturer fell victim to a sophisticated man-in-the-middle (MITM) cyber attack, resulting in a loss of ₹2.35 crore. The 52-year-old director of the company filed an FIR with the cybercrime police station after discovering that fraudsters impersonating…
Retired US Air Force Employee Pleads Guilty for Sharing Military Secrets on a Dating App
A former U.S. Air Force employee has pleaded guilty to charges of sharing classified military information about Russia’s war in Ukraine through a dating application, according to federal court documents. David Franklin Slater, who worked as a civilian employee at…
RenderShock 0-Click Vulnerability Executes Payloads via Background Process Without User Interaction
A sophisticated zero-click attack methodology called RenderShock that exploits passive file preview and indexing behaviors in modern operating systems to execute malicious payloads without requiring any user interaction. Unlike traditional phishing campaigns that rely on users clicking malicious links or…
KongTuke Attacking Windows Users With New Interlock RAT Variant Using FileFix Technique
A sophisticated malware campaign leveraging the KongTuke threat cluster has emerged, targeting Windows users through a novel FileFix technique that deploys an advanced PHP-based variant of the Interlock remote access trojan (RAT). This represents a significant evolution from previous JavaScript-based…