Category: CyberSecurityNews

New Multi-stage JS#SMUGGLER Malware Attack Delivers 'NetSupport RAT' to Gain Full System Control
09
Dec
2025

New Multi-stage JS#SMUGGLER Malware Attack Delivers ‘NetSupport RAT’ to Gain Full System Control

A new malware campaign using multiple attack stages has been discovered that delivers NetSupport RAT through hidden web-based redirects and…

500+ Apache Tika Toolkit Instances Vulnerable to Critical XXE Attack Exposed Online
09
Dec
2025

500+ Apache Tika Toolkit Instances Vulnerable to Critical XXE Attack Exposed Online

Over 565 internet-exposed Apache Tika Server instances are vulnerable to a critical XML External Entity (XXE) injection flaw. That could…

Burp Suite's Scanning Arsenal Powered With Detection for Critical React2Shell Vulnerabilities
09
Dec
2025

Burp Suite’s Scanning Arsenal Powered With Detection for Critical React2Shell Vulnerabilities

PortSwigger has enhanced Burp Suite’s scanning arsenal with the latest update to its ActiveScan++ extension, introducing detection for the critical…

Apple, Google and Samsung May Enable Always-On GPS in India
09
Dec
2025

Apple, Google and Samsung May Enable Always-On GPS in India

The Indian government is currently evaluating a controversial proposal from the telecom industry that would mandate smartphone manufacturers to enable…

CISA Adds Critical React2Shell Vulnerability to KEV Catalog Following Active Exploitation
08
Dec
2025

CISA Adds Critical React2Shell Vulnerability to KEV Catalog Following Active Exploitation

A critical vulnerability affecting Meta React Server Components has been added to the Known Exploited Vulnerabilities catalog, signalling widespread active…

Hackers Can Leverage Delivery Receipts on WhatsApp and Signal to Extract User Private Information
08
Dec
2025

Hackers Can Leverage Delivery Receipts on WhatsApp and Signal to Extract User Private Information

Security researchers have exposed a critical privacy flaw dubbed “Careless Whisper” that lets attackers monitor user activity on WhatsApp and…

FBI Warns of Hackers Altering Photos Found on Social Media to Use as Fake Proof
08
Dec
2025

FBI Warns of Hackers Altering Photos Found on Social Media to Use as Fake Proof

A new alert warns people about a growing scam that uses altered photos to trick families into paying fake ransom…

INE Earns Multiple G2 Winter 2026 Badges Across Global Markets
08
Dec
2025

INE Earns Multiple G2 Winter 2026 Badges Across Global Markets

Cary, North Carolina, USA, December 4th, 2025, CyberNewsWire Cybersecurity and IT training platform maintains Leader and Momentum Leader positions while…

Malicious Document Reader App in Google Play With 50K Downloads Installs Anatsa Malware
08
Dec
2025

Malicious Document Reader App in Google Play With 50K Downloads Installs Anatsa Malware

A deceptive Android application lurking in the Google Play Store, disguised as a document reader and file manager, but delivering…

Hackers Exploit AWS IAM Eventual Consistency for Persistence
08
Dec
2025

Hackers Exploit AWS IAM Eventual Consistency for Persistence

A critical persistence technique in AWS Identity and Access Management (IAM) stemming from its eventual consistency model, allowing attackers to…

New GhostFrame Super Stealthy Phishing Kit Attacks Millions of Users Worldwide
08
Dec
2025

New GhostFrame Super Stealthy Phishing Kit Attacks Millions of Users Worldwide

A sophisticated new phishing kit called GhostFrame has already been used to launch over 1 million attacks. First discovered in…

QuasarRAT Core Functionalities Along with Encrypted Configuration and Obfuscation Techniques Exposed
08
Dec
2025

QuasarRAT Core Functionalities Along with Encrypted Configuration and Obfuscation Techniques Exposed

QuasarRAT, initially surfacing in 2014 under the alias xRAT, began its lifecycle as a legitimate remote administration tool for Windows…