LinkedIn Messages Exploited to Deliver RAT Malware via DLL Sideloading
Cybersecurity researchers have uncovered a sophisticated phishing campaign that leverages LinkedIn private messages to deliver a Remote Access Trojan (RAT) via&nbs...
Cisco Patches Critical Zero‑Day RCE Flaw Actively Exploited in Secure Email Gateway AppliancesCisco has released emergency security updates to address a critical zero‑day remote code execution (RCE) vulnerability affecting its Secure Email Gateway (SEG) a... ServiceNow Patches Critical AI Platform Vulnerability Exploited in Targeted AttacksServiceNow has released an urgent security update to fix a critical vulnerability in its AI‑powered Now Platform after researchers discovered that threat actors were actively exp... Malicious Chrome Add‑ons Harvest ChatGPT and DeepSeek Data From 900,000 UsersCybersecurity researchers have uncovered a large‑scale data‑theft campaign involving two malicious Chrome extensions that secretly stole ChatGPT and DeepSeek AI conversations, ... Over 10,000 Fortinet Firewalls Still Exposed to Actively Exploited 5‑Year‑Old MFA Bypass FlawMore than 10,000 Fortinet firewalls remain exposed to a critical multi‑factor authentication (MFA) bypass vulnerability first disclosed in 2020, despite repeated... Former Cybersecurity Professionals Plead Guilty After Orchestrating $1.3M Ransomware AttackTwo former cybersecurity professionals—once trusted to defend organizations against cyberattacks—have pleaded guilty to conducting a series of ransomware attacks that extorted nearly $1... North Korean Hackers Intensify Operations, Draining Over $2 Billion in CryptoNorth Korea’s elite cyber units have shattered previous records by stealing $2.02 billion in cryptocurrency in 2025, according to the latest Chainalysis Crypto Crime Report. This... Microsoft Fixes 125 Windows Flaws as Active CLFS Zero-Day Exploitation ContinuesMicrosoft has released security updates addressing 125 vulnerabilities across its Windows ecosystem, including a zero‑day flaw in the Windows Common Log File System (CLFS... More Than 1,000 WordPress Sites Hacked via Stealthy JavaScript BackdoorsMore than 1,000 WordPress websites have been compromised in a widespread malware campaign that injects four separate JavaScript backdoors, giving attackers persist... Coyote Malware Surge: Expanded Campaign Targets Financial InstitutionsA new wave of Coyote malware infections is sweeping across Brazil, posing a serious threat to financial institutions and Windows users. Originally documented by Kaspersky in early 2024, Coyote has ... Microsoft Fixes Critical Vulnerabilities in Dynamics 365 and Power Apps Web APIMicrosoft has addressed three significant security vulnerabilities impacting Dynamics 365 and the Power Apps Web API, following disclosures from Australian cybersecurity firm Stratus Security. The ... Netflix Partner Lyuno Suffers Major Security Breach, Leaked Episodes Spark ConcernsOn August 9, 2024, a significant security breach occurred at Lyuno, a media localization company partnered with Netflix. The breach resulted in unauthorized access to confidential information, whic... CrowdStrike Addresses Windows Outage: Workaround Steps for Affected HostsCrowdStrike released an official statement on the evening of July 19, 2024, following the ... Apple Addresses AirPods Authentication VulnerabilityApple recently released a critical firmware update for its popular AirPods, addressing a security flaw that could have profound implications. Massive SOHO Router Compromise Raises ConcernsIn a startling development, threat actors successfully compromised over 600,000 Small Office/Home Office (SOHO) routers within a mere 72-hour window. The discovery was made by cybersecurity researc... VMware ESXi Ransomware AttacksSygnia's cybersecurity experts have meticulously analyzed ransomware attacks targeting virtualized environments, focusing on VMware ESXi infrastructure. They have identified a consistent pattern th... TeslaLogger Vulnerability: Third-Party Software Exposes Tesla API KeysA recent discovery by a security researcher has shed light on a criti... Google Addresses Critical Zero-Day Vulnerability with Security PatchesGoogle has swiftly responded to a critical security issue by releasing patches to mitigate a zero-day vulnerability. The flaw tracked as CVE-2024-4671 poses a high-severi... Critical Threat Exploited by Hackers in WordPress Automatic PluginWordPress, the widely used content management system, is under a severe security threat. Malicious actors are actively exploiting a critical vulnerability in the WordPress Automatic plugin, which c... |
