Zero-Day in Sitecore Exploited to Deploy WEEPSTEEL Malware
A critical zero-day vulnerability (CVE-2025-53690) is being actively exploited in Sitecore. This flaw, originating from old, insecure keys, allows hackers to achieve Remote Code Execution…
Month: September 2025
GPUGate Malware Uses Google Ads and Fake GitHub Commits to Target IT Firms
Sep 08, 2025Ravie LakshmananMalvertising / Encryption Cybersecurity researchers have detailed a new sophisticated malware campaign that leverages paid ads on search engines like Google to…
Data security gaps stymy enterprise AI plans
Dive Brief: Organizations grapple with data security obstacles on the path to AI adoption, according to OpenText. The Ponemon Institute surveyed nearly 1,900 CIOs, CISO…
A Better Approach to Modern Patch Management
Windows Server Update Services (WSUS) has been a go-to patch management tool for over two decades, providing IT administrators with a way to distribute Microsoft…
Venezuela’s Maduro Says Huawei Mate X6 Gift From China is Unhackable by U.S. Spies
In Caracas this week, President Nicolás Maduro unveiled the Huawei Mate X6 gifted by China’s Xi Jinping, declaring the device impervious to U.S. espionage efforts.…
Quantum Computing is Coming: Enterprises Need to Prepare Now
Quantum computing is coming. When? No one knows for sure. Some experts say 10 years, others say 15 to 20 years. Many believe quantum computers…
Canadian investment platform Wealthsimple disclosed a data breach
Canadian investment platform Wealthsimple disclosed a data breach Pierluigi Paganini September 08, 2025 Wealthsimple reported a data breach affecting some customers due to a supply…
LunaLock Ransomware Attacking Artists to Steal and Encrypt Data
Security researchers first observed LunaLock in early September 2025, a sophisticated ransomware strain targeting independent illustrators and digital artists. Leveraging compromised credentials and social engineering,…
Apache Jackrabbit Vulnrability Exposes Systems to Remote Code Execution Attacks
A new security flaw has been discovered in Apache Jackrabbit, a widely used content repository system, potentially exposing thousands of applications to remote code execution…
MostereRAT Targets Windows, Uses AnyDesk and TightVNC for Full Access
MostereRAT malware targets Windows through phishing, bypasses security with advanced tactics, and grants hackers full remote control. Cybersecurity researchers at FortiGuard Labs have identified a…
Dell AI server revenues leap but storage waits on Project Lightning
Dell’s quarterly results show a huge growth in server sales, driven by artificial intelligence (AI) projects, but a relative lag in storage. Key reasons behind…
Hackers Weaponizee Amazon Simple Email Service to Send 50,000+ Malicious Emails Per Day
A sophisticated cybercriminal campaign has emerged, exploiting Amazon’s Simple Email Service (SES) to orchestrate large-scale phishing operations capable of delivering over 50,000 malicious emails daily.…