Category: CyberSecurityNews

Azure API Vulnerabilities Leak VPN Keys and Built-In Roles Allow Over-Privileged Access
04
Jul
2025

Azure API Vulnerabilities Leak VPN Keys and Built-In Roles Allow Over-Privileged Access

Microsoft Azure’s role-based access control system has been found to contain critical security vulnerabilities that could expose enterprise networks to…

Anthropic’s MCP Server Vulnerability Let Attackers Escape Server’s Sandbox and Execute Arbitrary Code
03
Jul
2025

Anthropic’s MCP Server Vulnerability Let Attackers Escape Server’s Sandbox and Execute Arbitrary Code

Two high-severity vulnerabilities in Anthropic’s Model Context Protocol (MCP) Filesystem Server enable attackers to escape sandbox restrictions and execute arbitrary…

Apache Tomcat and Camel Vulnerabilities Actively Exploited in The Wild
03
Jul
2025

Apache Tomcat and Camel Vulnerabilities Actively Exploited in The Wild

Critical vulnerabilities in Apache Tomcat and Apache Camel are being actively exploited by cybercriminals worldwide, with security researchers documenting over…

Threat Actors Widely Abuse .COM TLD to Host Credential Phishing Website
03
Jul
2025

Threat Actors Widely Abuse .COM TLD to Host Credential Phishing Website

The .COM top-level domain continues to dominate the cybercriminal landscape as the primary vehicle for hosting credential phishing websites, maintaining…

03
Jul
2025

Threat Actors Widely Abuse .COM TLD to Host Credential Phishing Website

The .COM top-level domain continues to dominate the cybercriminal landscape as the primary vehicle for hosting credential phishing websites, maintaining…

Citrix Warns Authentication Failures Following The Update of NetScaler to Fix Auth Vulnerability
03
Jul
2025

Citrix Warns Authentication Failures Following The Update of NetScaler to Fix Auth Vulnerability

Citrix has issued an urgent advisory warning customers of widespread authentication failures following recent updates to NetScaler builds 14.1.47.46 and…

AI Tools Like GPT Direct Users to Phishing Sites Instead of Legitimate Ones
03
Jul
2025

AI Tools Like GPT Direct Users to Phishing Sites Instead of Legitimate Ones

The popular artificial intelligence tools, including GPT models and Perplexity AI, are inadvertently directing users to phishing websites instead of…

Android Spyware Catwatchful Exposes Credentials of Over 62,000+ Customer Accounts
03
Jul
2025

Android Spyware Catwatchful Exposes Credentials of Over 62,000+ Customer Accounts

A major security vulnerability in the Android spyware operation Catwatchful has exposed the complete database of over 62,000 customer accounts,…

Microsoft Edge Fixes Actively Exploited Chromium Vulnerability
03
Jul
2025

Microsoft Edge Fixes Actively Exploited Chromium Vulnerability

Microsoft has released a critical security update for Edge Stable Channel on July 1, 2025, addressing a severe vulnerability that…

Microsoft Confirms Error Entry in Windows Firewall With Advanced Security
03
Jul
2025

Microsoft Confirms Error Entry in Windows Firewall With Advanced Security

Microsoft has officially acknowledged a harmless error event appearing in Windows Firewall With Advanced Security logs following the installation of…

13-Year-Old Dylan - Youngest Security Researcher Collaborates with Microsoft Security Response Center
03
Jul
2025

13-Year-Old Dylan – Youngest Security Researcher Collaborates with Microsoft Security Response Center

The sudden emergence of the “TeamsPhantom” malware in early June rattled school districts and multinational corporations alike. Masquerading as a…

Let's Encrypt Started to Issue SSL/TLS Certificate for IP Address
03
Jul
2025

Let’s Encrypt Started to Issue SSL/TLS Certificate for IP Address

Let’s Encrypt, the world’s largest certificate authority, has achieved a significant milestone by issuing its first SSL/TLS certificate for an…