Category: CyberSecurityNews

CISA Details That Hackers Gained Access to a U.S. Federal Agency Network Via GeoServer RCE Vulnerability
24
Sep
2025

CISA Details That Hackers Gained Access to a U.S. Federal Agency Network Via GeoServer RCE Vulnerability

CISA has released a comprehensive cybersecurity advisory detailing how threat actors successfully compromised a U.S. federal civilian executive branch agency’s…

Chrome High-severity Vulnerabilities Let Attackers Access Sensitive Data and Crash System
24
Sep
2025

Chrome High-severity Vulnerabilities Let Attackers Access Sensitive Data and Crash System

Google has issued an urgent security update for its Chrome web browser to address three high-severity vulnerabilities that could allow…

Zloader Malware Repurposed to Act as Entry Point Into Corporate Environments to Deploy Ransomware
24
Sep
2025

Zloader Malware Repurposed to Act as Entry Point Into Corporate Environments to Deploy Ransomware

Zloader, a sophisticated Zeus-based modular trojan that first emerged in 2015, has undergone a significant transformation from its original banking-focused…

Threat Actors Breaking to Enterprise Infrastructure Within 18 Minutes From Initial Access
24
Sep
2025

Threat Actors Breaking to Enterprise Infrastructure Within 18 Minutes From Initial Access

Cybersecurity professionals are facing an unprecedented acceleration in threat actor capabilities as the average breakout time—the period from initial access…

New Malware in npm Package Steals Browser Passwords Using Steganographic QR Code
24
Sep
2025

New Malware in npm Package Steals Browser Passwords Using Steganographic QR Code

A sophisticated malware campaign has emerged in the npm ecosystem, utilizing an innovative steganographic technique to conceal malicious code within…

Beware of Fake Online Speedtest Application With Obfuscated JS Codes
23
Sep
2025

Beware of Fake Online Speedtest Application With Obfuscated JS Codes

A sophisticated malware campaign has emerged that leverages fake online speed test applications to deploy obfuscated JavaScript payloads on Windows…

Nimbus Manticore Attacking Defense and Telecom Sectors With New Malware
23
Sep
2025

Nimbus Manticore Attacking Defense and Telecom Sectors With New Malware

The Iranian threat actor known as Nimbus Manticore has intensified its campaign targeting defense manufacturing, telecommunications, and aviation sectors across…

Want to Validate Alerts Faster? Use Free Threat Intelligence from 15K SOCs
23
Sep
2025

Want to Validate Alerts Faster? Use Free Threat Intelligence from 15K SOCs

Alex sighed at his third energy drink of the night shift, watching another batch of security alerts flood his SIEM…

Defy Security Appoints Esteemed Cybersecurity Leader Gary Warzala to Its Board of Directors
23
Sep
2025

Defy Security Appoints Esteemed Cybersecurity Leader Gary Warzala to Its Board of Directors

Defy Security, a leading provider of cybersecurity solutions and services, today announced the appointment of Gary Warzala to its Board…

Hackers Weaponizing SVG Files to Stealthily Deliver Malicious Payloads
23
Sep
2025

Hackers Weaponizing SVG Files to Stealthily Deliver Malicious Payloads

Cybercriminals have embraced a new deceptive technique that transforms seemingly harmless vector graphics into dangerous malware delivery systems. A recent…

U.S. Secret Service Dismantles 300 SIM Servers and 100,000 SIM Cards
23
Sep
2025

U.S. Secret Service Dismantles 300 SIM Servers and 100,000 SIM Cards

The U.S. Secret Service has dismantled a massive, sophisticated network of electronic devices in the New York tristate area, thwarting…

Tata-Owned Jaguar Land Rover Delays Factory Reopening Following Major Cyber Attack
23
Sep
2025

Tata-Owned Jaguar Land Rover Delays Factory Reopening Following Major Cyber Attack

Jaguar Land Rover (JLR), the United Kingdom’s largest automotive manufacturer, has announced an additional delay in resuming production at its…