Category: CyberSecurityNews

Beware of Phishing Email from Kimusky Hackers With Subject Spetember Tax Return Due Date Notice
09
Sep
2025

Beware of Phishing Email from Kimusky Hackers With Subject Spetember Tax Return Due Date Notice

A new wave of phishing attacks purporting to originate from South Korea’s National Tax Service has emerged, leveraging familiar electronic…

FortiDDoS OS Command Injection Vulnerability Let Attackers Execute Unauthorized Commands
09
Sep
2025

FortiDDoS OS Command Injection Vulnerability Let Attackers Execute Unauthorized Commands

Fortinet has disclosed a medium-severity vulnerability in its FortiDDoS-F product line that could allow a privileged attacker to execute unauthorized…

Salat Stealer Exfiltrates Browser Credentials Via Sophisticated C2 Infrastructure
09
Sep
2025

Salat Stealer Exfiltrates Browser Credentials Via Sophisticated C2 Infrastructure

Salat Stealer has emerged as a pervasive threat targeting Windows endpoints with a focus on harvesting browser-stored credentials and cryptocurrency…

Police Body Camera Apps Sending Data to Cloud Servers Hosted in China Via TLS Port 9091
09
Sep
2025

Police Body Camera Apps Sending Data to Cloud Servers Hosted in China Via TLS Port 9091

Police-issued body cameras have become ubiquitous tools for recording law enforcement encounters, yet a recent investigation has uncovered troubling design…

U.S. Treasury Sanctions Scam Centers in Southeast Asia that Steal Billions
09
Sep
2025

U.S. Treasury Sanctions Scam Centers in Southeast Asia that Steal Billions

The U.S. Department of the Treasury has unveiled a sweeping sanctions campaign against a network of cyber scam centers across…

How a Faulty Windows Driver Can Cause a System Crash and Blue Screen of Death
09
Sep
2025

How a Faulty Windows Driver Can Cause a System Crash and Blue Screen of Death

A recent analysis of a Windows kernel-memory dump has provided a detailed look into a DRIVER_POWER_STATE_FAILURE, a critical error that…

New Malware Attack Leveraging Exposed Docker APIs to Maintain Persistent SSH Root Access
09
Sep
2025

New Malware Attack Leveraging Exposed Docker APIs to Maintain Persistent SSH Root Access

A sophisticated malware strain targeting exposed Docker APIs has emerged with enhanced infection capabilities that go beyond traditional cryptomining operations….

SAP Security Patch Day September 2025
09
Sep
2025

SAP Security Patch Day September 2025

As part of its scheduled security maintenance, SAP released its September 2025 Patch Day notes, addressing a total of 21…

New APT37 Attacking Windows Machines With New Rust and Python Based Malware
09
Sep
2025

New APT37 Attacking Windows Machines With New Rust and Python Based Malware

APT37, the North Korean-aligned threat actor also known as ScarCruft, Ruby Sleet, and Velvet Chollima, has expanded its arsenal with…

Chinese Salt Typhoon and UNC4841 Hackers Teamed Up to Attack Government and Corporate Infrastructure
09
Sep
2025

Chinese Salt Typhoon and UNC4841 Hackers Teamed Up to Attack Government and Corporate Infrastructure

Cybersecurity researchers began tracking a sophisticated campaign in the closing months of 2024, targeting both government and corporate networks across…

New Technique Uncovered To Exploit Linux Kernel Use-After-Free Vulnerability
09
Sep
2025

New Technique Uncovered To Exploit Linux Kernel Use-After-Free Vulnerability

A new technique to exploit a complex use-after-free (UAF) vulnerability in the Linux kernel successfully bypasses modern security mitigations to gain root…

Hackers Accessed Email Account Contains Valid Credentials
09
Sep
2025

Hackers Accessed Email Account Contains Valid Credentials

Elastic has disclosed a security incident stemming from a third-party breach at Salesloft Drift, which resulted in unauthorized access to…