Category: CyberSecurityNews

Insomnia API Client Vulnerability Arbitrary Code Execution via Template Injection
21
Jun
2025

Insomnia API Client Vulnerability Arbitrary Code Execution via Template Injection

A severe security vulnerability has been discovered in the widely-used Insomnia API Client that allows attackers to execute arbitrary code…

Hackers Exploit ComfyUI 700+ AI Image Generation Servers to Deploy Malware
21
Jun
2025

Hackers Exploit ComfyUI 700+ AI Image Generation Servers to Deploy Malware

A sophisticated malware campaign targeting ComfyUI, a popular AI image generation framework, has successfully compromised at least 695 servers worldwide,…

Threat Actors Poisoning Google Search Results to Display The Scammer’s Phone Number Instead of Real Number
21
Jun
2025

Threat Actors Poisoning Google Search Results to Display The Scammer’s Phone Number Instead of Real Number

In a concerning development for internet users, cybercriminals have devised a sophisticated new technique to manipulate Google search results, effectively…

Mocha Manakin Using Paste and Run Technique to Trick Users Into Downloading Malicious Payloads
21
Jun
2025

Mocha Manakin Using Paste and Run Technique to Trick Users Into Downloading Malicious Payloads

A sophisticated new threat actor known as Mocha Manakin has emerged in the cybersecurity landscape, employing an increasingly popular social…

Record Breaking 7.3 Tbps DDoS Attack Blasting 37.4 Terabytes in Just 45 Seconds
21
Jun
2025

Record Breaking 7.3 Tbps DDoS Attack Blasting 37.4 Terabytes in Just 45 Seconds

The largest distributed denial-of-service (DDoS) attack ever documented was successfully stopped by Cloudflare in mid-May 2025, with attackers unleashing a…

Beware of Weaponized MSI Installer Mimic as WhatsApp Delivers Modified XWorm RAT
21
Jun
2025

Beware of Weaponized MSI Installer Mimic as WhatsApp Delivers Modified XWorm RAT

Cybersecurity professionals across East and Southeast Asia are facing a sophisticated new threat as China-linked attackers deploy a weaponized MSI…

Microsoft Warns of OneDrive Bug that Causes Searches to Appear Blank
21
Jun
2025

Microsoft Warns of OneDrive Bug that Causes Searches to Appear Blank

Summary 1. A OneDrive bug is causing some users’ search results to appear blank, though files are still accessible. 2….

Prometei Botnet Attacking Linux Servers to Mine Cryptocurrency
21
Jun
2025

Prometei Botnet Attacking Linux Servers to Mine Cryptocurrency

Cybersecurity researchers have uncovered a significant resurgence of the Prometei botnet, a sophisticated malware operation targeting Linux servers for cryptocurrency…

Microsoft Announces New Security Defaults for Windows 365 Cloud PCs
21
Jun
2025

Microsoft Announces New Security Defaults for Windows 365 Cloud PCs

Summary 1. Redirection controls disable clipboard, drive, USB, and printer access by default to prevent data exfiltration and malware injection….

Microsoft Entra ID to Extend Passkey (FIDO2) Authentication Methods to Support Public Preview
19
Jun
2025

Microsoft Entra ID to Extend Passkey (FIDO2) Authentication Methods to Support Public Preview

Microsoft is expanding the number of passkey authentication methods available in Microsoft Entra ID to improve its identity and access…

Trap - A New Technique to Detect Stealthy Beacon Traffic
19
Jun
2025

Trap – A New Technique to Detect Stealthy Beacon Traffic

A new detection method called Jitter-Trap that turns cybercriminals’ own evasion tactics against them, offering new hope in the battle…

Hackers Leverage VBScript Files to Deploy Masslogger Credential Stealer Malware
19
Jun
2025

Hackers Leverage VBScript Files to Deploy Masslogger Credential Stealer Malware

A sophisticated new variant of the Masslogger credential stealer has emerged, utilizing VBScript encoded (.VBE) files to deploy a multi-stage…