Samsung fixed actively exploited zero-day
Samsung fixed actively exploited zero-day Pierluigi Paganini September 12, 2025 Samsung fixed the remote code execution flaw CVE-2025-21043 that was exploited in zero-day attacks against…
Month: September 2025
Man gets over 4 years in prison for selling unreleased movies
A Tennessee court has sentenced a Memphis man who worked for a DVD and Blu-ray manufacturing and distribution company to 57 months in prison for…
New Clickfix Attack Promises “Free WiFi” But Delivers Powershell Based Malware
The Cybersecuritynews researcher team uncovered a sophisticated social engineering campaign that is exploiting the public’s need for free internet access, using deceptive Wi-Fi portals to…
New Malvertising Campaign Exploits GitHub Repositories to Distribute Malware
A sophisticated malvertising campaign has been uncovered targeting unsuspecting users through “dangling commits” in a legitimate GitHub repository. Attackers are injecting promotional content for a…
Muck Stealer Malware Used Alongside Phishing in New Attack Waves
A new report from Cofense reveals that cybercriminals are blending phishing and malware, including Muck Stealer, Info Stealer, ConnectWise RAT, and SimpleHelp RAT in dual-threat…
Ministry of Defence signs £400m sovereign cloud deal with Google
The Ministry of Defence (MoD) has selected Google Cloud to provide it with sovereign cloud capabilities in a deal worth £400m. The agreement will see…
ASEAN Cybercrime Threat Sparks 10-Year Regional Action Plan
Cybercrime and online scams have officially overtaken traditional threats as the primary regional security concern for the Association of Southeast Asian Nations (ASEAN). This ASEAN…
Axios Vulnerability Enables Attackers to Crash Node.js Applications via Data Handle Abuse
A critical security vulnerability has been discovered in the popular Axios HTTP client library that allows attackers to crash Node.js applications through malicious data URL…
Buterat Backdoor Campaigns Targeting Enterprise Endpoint Control
Backdoor malware is a covert type of malicious software designed to bypass standard authentication mechanisms and provide persistent, unauthorized access to compromised systems. Unlike conventional…
Cloud block storage: Key benefits and use cases
Cloud block storage allows organisations to run applications that depend on high throughput and low latency in the cloud. The latest block storage offerings make…
UK train operator LNER (London North Eastern Railway) discloses a data breach
UK train operator LNER (London North Eastern Railway) discloses a data breach Pierluigi Paganini September 12, 2025 LNER warns of a data breach via a…
Samsung patches actively exploited zero-day reported by WhatsApp
Samsung has patched a remote code execution vulnerability that was exploited in zero-day attacks targeting its Android devices. Tracked as CVE-2025-21043, this critical security flaw…