A sophisticated new malware campaign targeting macOS users has emerged, employing deceptive “Clickfix” tactics to distribute malicious AppleScripts designed to harvest sensitive user credentials and financial data. The campaign leverages typosquatted domains that closely mimic legitimate finance platforms and Apple…
Category: Cyber Security News
MongoDB Server Pre-Authentication Vulnerability Let Attackers Trigger DoS Condition
A critical pre-authentication denial of service vulnerability was identified as CVE-2025-6709, affecting multiple versions of MongoDB Server across its 6.0, 7.0, and 8.0 release branches. Summary1. MongoDB CVE-2025-6709 allows unauthenticated attackers to crash servers (CVSS 7.5).2. Malicious JSON payloads with…
Windows 11 Retires Blue Screen of Death Error Replaces With Black Screen
Microsoft is retiring one of computing’s most recognizable error messages after nearly four decades. The iconic Blue Screen of Death (BSOD) that has haunted Windows users since the 1980s will be replaced with a streamlined Black Screen of Death as part…
Threat Actors Embed Malware on Windows System’s Task Scheduler to Maintain Persistence
A sophisticated cyber attack targeting critical national infrastructure in the Middle East has revealed how threat actors are leveraging Windows Task Scheduler to maintain persistent access to compromised systems. The attack involves a malicious variant of the Havoc framework, a…
ClickFix Attack Emerges by Over 500% – Hackers Actively Using This Technique to Trick Users
A sophisticated new social engineering technique called ClickFix has exploded across the cyberthreat landscape, experiencing an unprecedented surge of 517% between the second half of 2024 and the first half of 2025. This alarming growth has propelled ClickFix to become…
APT-C-36 Hackers Attacking Government Institutions, Financial Organizations, and Critical Infrastructure
Since 2018, the advanced persistent threat group APT-C-36, commonly known as Blind Eagle, has emerged as a formidable cyber adversary targeting critical sectors across Latin America. This sophisticated threat actor has demonstrated persistent focus on Colombian organizations, launching coordinated attacks…
Mitsubishi Electric AC Systems Vulnerability Allows Remote Control Without User Interaction
Mitsubishi Electric has disclosed a critical authentication bypass vulnerability affecting 27 different air conditioning system models, potentially allowing remote attackers to gain unauthorized control over building HVAC systems. The vulnerability, tracked as CVE-2025-3699, carries a maximum CVSS score of 9.8,…
WhatsApp to Add AI-Powered Message Summaries to Quickly Catch Your Messages
WhatsApp has unveiled a groundbreaking new feature that leverages artificial intelligence to help users quickly navigate their unread messages. The messaging platform announced on June 25, 2025, the introduction of Message Summaries, an AI-driven tool designed to provide instant overviews…
Iranian APT35 Hackers Attacking High-Profile Cyber Security Experts & Professors from Israel
A sophisticated spear-phishing campaign targeting Israeli cybersecurity experts and computer science professors has emerged amid escalating tensions between Iran and Israel. The Iranian threat group Educated Manticore, widely associated with the Islamic Revolutionary Guard Corps’ Intelligence Organization, has launched precision…
Microsoft 365’s Direct Send Exploited to Send Phishing Emails as Internal Users
A sophisticated phishing campaign affecting more than 70 organizations by exploiting Microsoft 365’s Direct Send feature. This novel attack method allows threat actors to spoof internal users and deliver phishing emails without ever needing to compromise an account, bypassing traditional…
HPE OneView for VMware vCenter Allows Escalation of Privileges
A significant security vulnerability in Hewlett-Packard Enterprise OneView for VMware vCenter (OV4VC) platform that could allow attackers with limited access to escalate their privileges to administrative levels. The vulnerability, tracked as CVE-2025-37101, affects all versions of the software prior to…
Iranian Spear-Phishing Attack Mimic Google, Outlook, and Yahoo Domains
A sophisticated Iranian cyber espionage campaign has resurfaced with renewed intensity, targeting high-profile figures through meticulously crafted spear-phishing operations that impersonate major email providers including Google, Outlook, and Yahoo. The campaign, attributed to the threat actor known as Educated Manticore,…
Researchers Obfuscated & Weaponized .NET Assemblies Using MacroPack
The cybersecurity landscape has witnessed a significant evolution in malware sophistication, with threat actors increasingly leveraging legitimate programming frameworks for malicious purposes. A recent development has emerged involving the weaponization of .NET assemblies through advanced obfuscation techniques, marking a concerning…
CISA Warns of D-Link Path Traversal Vulnerability Exploited in Attacks
CISA has issued an urgent warning regarding a critical path traversal vulnerability affecting D-Link DIR-859 routers that is being actively exploited in the wild. The vulnerability, designated as CVE-2024-0769, was added to CISA’s Known Exploited Vulnerabilities (KEV) catalog on June…
nOAuth Abuse Leads to Full Account Takeover of Entra Cross-Tenant SaaS Applications
A critical authentication vulnerability known as nOAuth abuse has emerged as a severe threat to Microsoft Entra ID integrated SaaS applications, enabling attackers to achieve complete account takeover with minimal technical complexity. The vulnerability exploits fundamental flaws in how application…
Microsoft Teams New Feature Enables Admins to Manage Certified M365 Apps for Enhanced Security
Microsoft has announced a significant security enhancement for Microsoft Teams administrators, introducing a new feature that enables bulk management of Microsoft 365-certified applications through rule-based controls. This development, identified under Microsoft 365 Roadmap ID 485712, represents a major advancement in…
Cisco Identity Services Engine RCE Vulnerability Allows Remote Command Execution as Root User
Two critical security vulnerabilities in Cisco Identity Services Engine (ISE) and ISE Passive Identity Connector (ISE-PIC) could allow unauthenticated remote attackers to execute arbitrary commands on affected systems with root privileges. The vulnerabilities, tracked as CVE-2025-20281 and CVE-2025-20282, both carry…
Cybercriminals Abuse LLM Models to Aid in Their Criminal Hacking Activities
The cybersecurity landscape has witnessed a concerning evolution as threat actors increasingly leverage artificial intelligence technologies to enhance their malicious operations. Large Language Models (LLMs), which have revolutionized legitimate applications across industries, are now being systematically exploited by cybercriminals to…
Threat Actors Weaponize ChatGPT, Cisco AnyConnect, Google Meet, and Teams to Attacks SMB’s
The cybersecurity landscape for small and medium-sized businesses has undergone a dramatic transformation in 2025, with threat actors increasingly exploiting the widespread adoption of artificial intelligence and collaboration tools to execute sophisticated attacks. The emergence of AI-powered platforms like ChatGPT…
25-Year-Old British National Believed To Be IntelBroker Charged
Federal prosecutors in the Southern District of New York have filed criminal charges against Kai West, a 25-year-old British national allegedly operating under the notorious hacker alias “IntelBroker.” The comprehensive complaint reveals a sophisticated cybercriminal operation that has caused approximately…