Tag: Cyber Security News

In a shocking incident that left parents and fans horrified, the official X account of Elmo, the beloved red monster from Sesame Street, was hacked on Sunday, July 13, 2025, and used to spread a series of racist and antisemitic…

Read more →

Key Takeaways1. MITRE launched AADAPT™, a specialized security framework for blockchain and cryptocurrency threats, modeled after ATT&CK.2. Features 11 tactical categories with 38 techniques covering blockchain-specific attacks from reconnaissance to impact.3. Addresses digital asset-specific vulnerabilities like Flash Loans, Smart Contract…

Read more →

The Central Bureau of Investigation (CBI) has successfully dismantled a sophisticated transnational cybercrime syndicate operating from Noida’s Special Economic Zone, targeting citizens across the United Kingdom and Australia through elaborate tech support scams. The operation, conducted on July 7, 2025,…

Read more →

A critical security vulnerability has been discovered in Broadcom’s Symantec Endpoint Management Suite that enables unauthenticated remote code execution, posing significant risks to enterprise IT infrastructure.  The flaw, designated CVE-2025-5333 with a severe CVSS v4.0 score of 9.5, affects multiple…

Read more →

CISA has issued a critical advisory warning about a severe vulnerability in railway communication systems that could allow attackers to control train brakes remotely.  The vulnerability, assigned CVE-2025-1727, affects End-of-Train and Head-of-Train remote linking protocols used across the United States…

Read more →

A new wave of phishing emails promising a “Social Media Manager” position at Red Bull has surfaced in corporate and personal inboxes worldwide. Disguised as personalized invitations, the messages originate from messaging-service@post.xero.com and sail through SPF, DKIM and DMARC checks,…

Read more →

CISA has issued a critical advisory warning about a severe vulnerability in railway communication systems that could allow attackers to control train brakes remotely.  The vulnerability, assigned CVE-2025-1727, affects End-of-Train and Head-of-Train remote linking protocols used across the United States…

Read more →

Microsoft has provided comprehensive guidance for resolving the common Windows error “The process cannot access the file because it is being used by another process.”  This technical issue, which frequently frustrates users attempting to delete, move, or modify files, can…

Read more →

Critical security vulnerabilities have been discovered in Gigabyte UEFI firmware that could allow attackers to execute arbitrary code in System Management Mode (SMM), one of the most privileged execution environments in modern processors.  The vulnerabilities, disclosed by the Software Engineering…

Read more →

A sophisticated malware campaign targeting Generation Z gamers has emerged, leveraging weaponized versions of popular games to infiltrate gaming communities and steal sensitive information. The campaign, which has recorded over 19 million malware distribution attempts in a single year, demonstrates…

Read more →

Security researchers have confirmed active exploitation of a critical vulnerability in Wing FTP Server, just one day after technical details were publicly disclosed. The flaw, tracked as CVE-2025-47812, has received the maximum CVSS score of 10.0 and enables unauthenticated remote…

Read more →

A Pune-based automobile parts manufacturer fell victim to a sophisticated man-in-the-middle (MITM) cyber attack, resulting in a loss of ₹2.35 crore.  The 52-year-old director of the company filed an FIR with the cybercrime police station after discovering that fraudsters impersonating…

Read more →

A former U.S. Air Force employee has pleaded guilty to charges of sharing classified military information about Russia’s war in Ukraine through a dating application, according to federal court documents.  David Franklin Slater, who worked as a civilian employee at…

Read more →

A sophisticated zero-click attack methodology called RenderShock that exploits passive file preview and indexing behaviors in modern operating systems to execute malicious payloads without requiring any user interaction.  Unlike traditional phishing campaigns that rely on users clicking malicious links or…

Read more →

A sophisticated malware campaign leveraging the KongTuke threat cluster has emerged, targeting Windows users through a novel FileFix technique that deploys an advanced PHP-based variant of the Interlock remote access trojan (RAT). This represents a significant evolution from previous JavaScript-based…

Read more →

Cybersecurity researchers have developed innovative forensic methods to track sophisticated attackers who exploit Remote Desktop Protocol (RDP) for lateral movement within enterprise networks.  This breakthrough technique transforms what attackers believe to be stealthy operations into detailed digital footprints, providing incident…

Read more →

Threat actors have escalated their campaigns from crude ransomware splashes to precision-engineered strikes that can cripple an organisation’s very lifeblood—its operational technology. The latest malware strain, dubbed “BlackParagon” by incident responders, surfaced last week after simultaneous outages rippled across three…

Read more →

Key Takeaways 1. Louis Vuitton confirmed a July 2 data breach affecting UK customers, the third LVMH attack in three months.2. Customer names, contact details, and purchase histories were stolen, but no financial data was compromised.3. The company notified authorities,…

Read more →

Let’s face it cybersecurity used to sound like a topic only for programmers in hoodies or government agencies trying to fend off foreign hackers. But in the current day and age, everyone is affected. If you are a gamer, a…

Read more →

Cloud VPNs have become essential for both businesses and individuals seeking secure, private, and reliable internet access in 2025. As cyber threats evolve and remote work becomes the norm, choosing the right cloud VPN provider is crucial for safeguarding sensitive…

Read more →