Category: CyberSecurityNews

Malicious Android Apps Mimic as Popular Indian Banking Apps Steal Login Credentials
25
Jul
2025

Malicious Android Apps Mimic as Popular Indian Banking Apps Steal Login Credentials

Attackers are weaponizing India’s appetite for mobile banking by circulating counterfeit Android apps that mimic the interfaces and icons of…

Fire Ant Hackers Exploiting Vulnerabilities in VMware ESXi and vCenter
25
Jul
2025

Fire Ant Hackers Exploiting Vulnerabilities in VMware ESXi and vCenter

A sophisticated espionage campaign dubbed “Fire Ant” demonstrates previously unknown capabilities in compromising VMware virtualization infrastructure.  Since early 2025, this…

xonPlus Launches Real-Time Breach Alerting Platform For Enterprise Credential Exposure
25
Jul
2025

xonPlus Launches Real-Time Breach Alerting Platform For Enterprise Credential Exposure

Chennai, India, July 25th, 2025, CyberNewsWire xonPlus, a real-time digital risk alerting system, officially launches today to help security teams…

Hive0156 Hackers Attacking Government and Military Organizations to Deploy Remcos RAT
25
Jul
2025

Hive0156 Hackers Attacking Government and Military Organizations to Deploy Remcos RAT

A sophisticated Russian-aligned threat actor known as Hive0156 has intensified its cyber espionage campaigns against Ukrainian government and military organizations,…

Rise in Phishing Activity Using Spoofed SharePoint Domains With Sneaky2FA Techniques
25
Jul
2025

Rise in Phishing Activity Using Spoofed SharePoint Domains With Sneaky2FA Techniques

Spoofed Microsoft SharePoint notifications have been a familiar lure for corporate users, but a wave of campaigns traced between March…

Hackers Injected Destructive System Commands in Amazon’s AI Coding Agent
25
Jul
2025

Hackers Injected Destructive System Commands in Amazon’s AI Coding Agent

A malicious pull request slipped through Amazon’s review process and into version 1.84.0 of the Amazon Q extension for Visual…

BlackSuit Ransomware’s Data Leak and Negotiation Portal Seized
25
Jul
2025

BlackSuit Ransomware’s Data Leak and Negotiation Portal Seized

A major win against cybercrime happened this week, as authorities from around the world teamed up to take down key…

Elephant APT Group Attacking Defense Industry Leveraging VLC Player, and Encrypted Shellcode
25
Jul
2025

Elephant APT Group Attacking Defense Industry Leveraging VLC Player, and Encrypted Shellcode

The Dropping Elephant advanced persistent threat group has launched a sophisticated cyber-espionage campaign targeting Turkish defense contractors, particularly companies manufacturing…

GitLab Security Update - Patch for Multiple Vulnerabilities in Community and Enterprise Edition
24
Jul
2025

GitLab Security Update – Patch for Multiple Vulnerabilities in Community and Enterprise Edition

GitLab has released critical security patches addressing multiple vulnerabilities across its Community Edition (CE) and Enterprise Edition (EE) platforms, with…

First Known LLM-Powered Malware From APT28 Hackers Integrates AI Capabilities into Attack Methodology
24
Jul
2025

First Known LLM-Powered Malware From APT28 Hackers Integrates AI Capabilities into Attack Methodology

The newly revealed LAMEHUG campaign signals a watershed moment for cyber-def: Russian state-aligned APT28 has fused a large language model…

SharePoint 0-day Vulnerability Exploited in Wild by All Sorts of Hacker Groups
24
Jul
2025

SharePoint 0-day Vulnerability Exploited in Wild by All Sorts of Hacker Groups

A critical zero-day vulnerability in Microsoft SharePoint servers has become a playground for threat actors across the cybercriminal spectrum, with…

TP-Link Network Video Recorder Vulnerability Let Attackers Execute Arbitrary Commands
24
Jul
2025

TP-Link Network Video Recorder Vulnerability Let Attackers Execute Arbitrary Commands

Two high-severity vulnerabilities in TP-Link VIGI network video recorder (NVR) systems could allow attackers to execute arbitrary commands on affected…