Category: CyberSecurityNews

Windows PowerShell 0-Day Vulnerability Let Attackers Execute Malicious Code
10
Dec
2025

Windows PowerShell 0-Day Vulnerability Let Attackers Execute Malicious Code

Security update addressing a dangerous Windows PowerShell vulnerability that allows attackers to execute malicious code on affected systems. The vulnerability,…

Threat Actors Weaponize ChatGPT and Grok Conversations to Deploy AMOS Stealer
10
Dec
2025

Threat Actors Weaponize ChatGPT and Grok Conversations to Deploy AMOS Stealer

Threat actors are now leveraging the trust users place in AI platforms like ChatGPT and Grok to distribute the Atomic…

Microsoft Outlook Vulnerability Let Attackers Execute Malicious Code Remotely
10
Dec
2025

Microsoft Outlook Vulnerability Let Attackers Execute Malicious Code Remotely

Microsoft has patched a critical remote code execution (RCE)vulnerability in Outlook that could allow attackers to execute malicious code on…

North Korean Hackers Exploit React2Shell Vulnerability in the Wild to Deploy EtherRAT
10
Dec
2025

North Korean Hackers Exploit React2Shell Vulnerability in the Wild to Deploy EtherRAT

A novel, highly sophisticated malware strain targeting vulnerable React Server Components, signaling a significant evolution in how state-sponsored threat actors…

FortiSandbox OS command injection Vulnerability Let Attackers execute Malicious code
10
Dec
2025

FortiSandbox OS command injection Vulnerability Let Attackers execute Malicious code

Fortinet has released a critical security update for its FortiSandbox analysis appliances to fix a dangerous vulnerability. If left unpatched,…

CISA Warns of WinRAR 0-Day RCE Vulnerability Exploited in Attacks
10
Dec
2025

CISA Warns of WinRAR 0-Day RCE Vulnerability Exploited in Attacks

A high-priority warning regarding a critical security flaw in WinRAR, the popular file compression tool used by millions of Windows…

Gemini Zero-Click Vulnerability Allowed Attackers to Access Gmail, Calendar, and Docs
10
Dec
2025

Gemini Zero-Click Vulnerability Allowed Attackers to Access Gmail, Calendar, and Docs

A critical zero-click vulnerability dubbed “GeminiJack” in Google Gemini Enterprise and previously Vertex AI Search that let attackers siphon sensitive…

Users Report Teams and Access Issues
10
Dec
2025

Users Report Teams and Access Issues

Users across Australia are currently grappling with significant disruptions to critical business tools as Microsoft 365 services experience a widespread…

Windows Cloud Files Mini Filter Driver 0-Day Vulnerability Exploited in the Wild to Escalate Privileges
10
Dec
2025

Windows Cloud Files Mini Filter Driver 0-Day Vulnerability Exploited in the Wild to Escalate Privileges

Microsoft has released urgent security updates to address a zero-day vulnerability in the Windows Cloud Files Mini Filter Driver (cldflt.sys)…

See Cyber Threats to Your Industry and Region in Just 2 Seconds
10
Dec
2025

See Cyber Threats to Your Industry and Region in Just 2 Seconds

Security teams today struggle with a paradox. Threat volumes keep climbing, but most of what hits SIEMs and inboxes is noise: indicators…

Patch for Code Execution Vulnerabilities in Endpoint Manager
09
Dec
2025

Patch for Code Execution Vulnerabilities in Endpoint Manager

Ivanti has officially released urgent security updates for its Endpoint Manager (EPM) solution to address four distinct security flaws. The…

Makop Ransomware Exploits RDP Systems with AV Killer and Other Exploits
09
Dec
2025

Makop Ransomware Exploits RDP Systems with AV Killer and Other Exploits

Makop ransomware, a strain of the Phobos malware family first spotted in 2020, continues to evolve into a significant threat…