Category: CyberSecurityNews

Threat Actors Leveraging WhatsApp Messages to Attack Windows Systems With SORVEPOTEL Malware
03
Oct
2025

Threat Actors Leveraging WhatsApp Messages to Attack Windows Systems With SORVEPOTEL Malware

Enterprise networks worldwide are facing an aggressive, self-propagating malware campaign that exploits WhatsApp as its primary delivery mechanism. First observed…

SideWinder Hacker Group Hosting Fake Outlook/Zimbra Portals to Steal Login Credentials
03
Oct
2025

SideWinder Hacker Group Hosting Fake Outlook/Zimbra Portals to Steal Login Credentials

APT SideWinder, a state-sponsored threat actor long associated with espionage across South Asia, has recently launched a campaign deploying phishing…

New ‘Point-and-Click’ Phishing Kit Bypasses User Awareness and Security Filters to Deliver Malicious Payloads
03
Oct
2025

New ‘Point-and-Click’ Phishing Kit Bypasses User Awareness and Security Filters to Deliver Malicious Payloads

A novel phishing kit has surfaced that enables threat actors to craft sophisticated lures with minimal technical expertise. This “point-and-click”…

Hundreds of Free VPN Apps for Both Android and iOS Leaks Users Personal Data
03
Oct
2025

Hundreds of Free VPN Apps for Both Android and iOS Leaks Users Personal Data

Mobile VPN apps promise to protect privacy and secure communications on smartphones, but a comprehensive analysis of nearly 800 free…

HackerOne Paid $81 In Bug Bounty With Emergence of Bionic Hackers
03
Oct
2025

HackerOne Paid $81 In Bug Bounty With Emergence of Bionic Hackers

HackerOne, a leading platform in offensive security, announced it has paid out a total of $81 million in bug bounties…

Oracle Confirms that Hackers Targeting E-Business Suite Data With Extortion Emails
03
Oct
2025

Oracle Confirms that Hackers Targeting E-Business Suite Data With Extortion Emails

Oracle Corporation has officially acknowledged that cybercriminals are targeting customers of its E-Business Suite (EBS) platform through sophisticated extortion campaigns. …

Red Hat Confirms Data Breach After Hackers Claim to Steal 570GB of Private GitHub Repositories
03
Oct
2025

Red Hat Confirms Data Breach After Hackers Claim to Steal 570GB of Private GitHub Repositories

Red Hat, the world’s leading enterprise open-source software provider, has officially confirmed a significant security incident involving unauthorized access to…

Microsoft Defender for Endpoint Bug Triggers Numerous False BIOS Alerts
03
Oct
2025

Microsoft Defender for Endpoint Bug Triggers Numerous False BIOS Alerts

Microsoft Defender for Endpoint is currently experiencing a bug that generates false positive alerts concerning out-of-date Basic Input/Output System (BIOS)…

Microsoft to Launch New Secure Default Settings for Exchange and Teams APIs
02
Oct
2025

Microsoft to Launch New Secure Default Settings for Exchange and Teams APIs

Microsoft is updating its security policies to require administrator consent for new third-party applications seeking access to Exchange and Teams…

PoC exploit Released for VMware Workstation guest-to-host escape Vulnerability
02
Oct
2025

PoC exploit Released for VMware Workstation guest-to-host escape Vulnerability

A proof-of-concept (PoC) exploit has been released for a critical vulnerability chain in VMware Workstation that allows an attacker to…

New Obex Tool Blocks EDR Dynamic Libraries From Loading at Runtime
02
Oct
2025

New Obex Tool Blocks EDR Dynamic Libraries From Loading at Runtime

A new proof-of-concept (PoC) tool named Obex has been released, offering a method to prevent Endpoint Detection and Response (EDR)…

Red Hat Data Breach - Threat Actors Claim Breach of 28K Private GitHub Repositories
02
Oct
2025

Red Hat Data Breach – Threat Actors Claim Breach of 28K Private GitHub Repositories

An extortion group known as the Crimson Collective claims to have breached Red Hat’s private GitHub repositories, making off with…