NCA arrests man following cyber attack that disrupted air travel
The National Crime Agency (NCA) has arrested and released on bail a man in his forties in connection with the cyber incident that affected flights…
Month: September 2025
CISA urges dependency checks following Shai-Hulud compromise
The Cybersecurity and Infrastructure Security Agency urged security teams to monitor their systems following a massive supply chain attack that struck the Node Package Manager…
Unpatched flaw in OnePlus phones lets rogue apps text messages
A vulnerability in multiple versions of OxygenOS, the Android-based operating system from OnePlus, allows any installed app to access SMS data and metadata without requiring…
RainyDay, Turian and Naikon Malwares Abuse DLL Search Order to Execute Malicious Loaders
Three sophisticated malware families have emerged as significant threats to telecommunications and manufacturing sectors across Central and South Asia, representing a coordinated campaign that exploits…
GitHub Hosts Malware from Malwarebytes, LastPass, Citibank, SentinelOne, and More
A large-scale campaign targeting Mac users is leveraging fake GitHub pages to distribute information-stealing malware disguised as popular legitimate applications. Among the impersonated software are…
FT 250 executives call for UK grid upgrades to support AI datacentre expansion plans
If the UK’s digital economy is to enjoy a prosperous future, the nation’s electricity grids need to be urgently upgraded to ensure the datacentres underpinning…
UK authorities arrest man in connection with cyberattack against aviation vendor
U.K. authorities on Wednesday said a man in his 40s has been arrested in connection to the hack of Collins Aerospace, which led to major…
Police seizes $439 million stolen by cybercrime rings worldwide
In a five-month joint operation led by Interpol, law enforcement agencies have seized more than $439 million in cash and cryptocurrency linked to cyber-enabled financial…
Salesforce CLI Installer Vulnerability Let Attackers Execute Code and Gain SYSTEM-Level Access
A critical vulnerability in the Salesforce CLI installer (sf-x64.exe) enables attackers to achieve arbitrary code execution, privilege escalation, and SYSTEM-level access on Windows systems. Tracked…
Artificial Intelligence – Supported Internet of Things Security
Transforming digital technology landscape and encompassing global product and service marketplace are crucial challenges of industry 4.0. Novel times have brought something new such as…
Multiple Apps on Google’s Firebase Platform Exposing Sensitive Data
A comprehensive security analysis has revealed a widespread vulnerability affecting Firebase-powered mobile applications, with over 150 popular apps inadvertently exposing sensitive user data through misconfigured…
UNC5221 Uses BRICKSTORM Backdoor to Infiltrate U.S. Legal and Technology Sectors
Companies in the legal services, software-as-a-service (SaaS) providers, Business Process Outsourcers (BPOs), and technology sectors in the U.S. have been targeted by a suspected China-nexus…