Category: CyberSecurityNews

Evasive Panda APT Using AitM Attack and DNS Poisoning to Deliver Malware
24
Dec
2025

Evasive Panda APT Using AitM Attack and DNS Poisoning to Deliver Malware

The Evasive Panda APT group, also known as Bronze Highland, Daggerfly, and StormBamboo, has been running targeted campaigns since November…

Share: X : Evasive Panda APT Using AitM Attack and DNS Poisoning to Deliver MalwareFacebook : Evasive Panda APT Using AitM Attack and DNS Poisoning to Deliver MalwareLinkedin : Evasive Panda APT Using AitM Attack and DNS Poisoning to Deliver MalwareReddit : Evasive Panda APT Using AitM Attack and DNS Poisoning to Deliver MalwareTelegram : Evasive Panda APT Using AitM Attack and DNS Poisoning to Deliver MalwareWhatsApp : Evasive Panda APT Using AitM Attack and DNS Poisoning to Deliver MalwareEmail : Evasive Panda APT Using AitM Attack and DNS Poisoning to Deliver Malware
Threat Actors Using Weaponized AV-themed Word and PDF Documents to Attack Israeli Organizations
24
Dec
2025

Threat Actors Using Weaponized AV-themed Word and PDF Documents to Attack Israeli Organizations

Security researchers at Seqrite Labs have identified a campaign called Operation IconCat, targeting Israeli organizations with weaponized documents designed to…

Share: X : Threat Actors Using Weaponized AV-themed Word and PDF Documents to Attack Israeli OrganizationsFacebook : Threat Actors Using Weaponized AV-themed Word and PDF Documents to Attack Israeli OrganizationsLinkedin : Threat Actors Using Weaponized AV-themed Word and PDF Documents to Attack Israeli OrganizationsReddit : Threat Actors Using Weaponized AV-themed Word and PDF Documents to Attack Israeli OrganizationsTelegram : Threat Actors Using Weaponized AV-themed Word and PDF Documents to Attack Israeli OrganizationsWhatsApp : Threat Actors Using Weaponized AV-themed Word and PDF Documents to Attack Israeli OrganizationsEmail : Threat Actors Using Weaponized AV-themed Word and PDF Documents to Attack Israeli Organizations
Threat Actors Advertised NtKiller Malware on Dark Web Claiming Terminate Antivirus and EDR Bypass
24
Dec
2025

Threat Actors Advertised NtKiller Malware on Dark Web Claiming Terminate Antivirus and EDR Bypass

A malicious actor known as AlphaGhoul has begun promoting a tool called NtKiller, designed to silently shut down antivirus software…

Share: X : Threat Actors Advertised NtKiller Malware on Dark Web Claiming Terminate Antivirus and EDR BypassFacebook : Threat Actors Advertised NtKiller Malware on Dark Web Claiming Terminate Antivirus and EDR BypassLinkedin : Threat Actors Advertised NtKiller Malware on Dark Web Claiming Terminate Antivirus and EDR BypassReddit : Threat Actors Advertised NtKiller Malware on Dark Web Claiming Terminate Antivirus and EDR BypassTelegram : Threat Actors Advertised NtKiller Malware on Dark Web Claiming Terminate Antivirus and EDR BypassWhatsApp : Threat Actors Advertised NtKiller Malware on Dark Web Claiming Terminate Antivirus and EDR BypassEmail : Threat Actors Advertised NtKiller Malware on Dark Web Claiming Terminate Antivirus and EDR Bypass
Critical MongoDB Vulnerability Exposes Sensitive Data via Zlib Compression
24
Dec
2025

Critical MongoDB Vulnerability Exposes Sensitive Data via Zlib Compression

A critical security vulnerability, tracked as CVE-2025-14847, that could allow attackers to extract uninitialized heap memory from database servers without authentication….

Share: X : Critical MongoDB Vulnerability Exposes Sensitive Data via Zlib CompressionFacebook : Critical MongoDB Vulnerability Exposes Sensitive Data via Zlib CompressionLinkedin : Critical MongoDB Vulnerability Exposes Sensitive Data via Zlib CompressionReddit : Critical MongoDB Vulnerability Exposes Sensitive Data via Zlib CompressionTelegram : Critical MongoDB Vulnerability Exposes Sensitive Data via Zlib CompressionWhatsApp : Critical MongoDB Vulnerability Exposes Sensitive Data via Zlib CompressionEmail : Critical MongoDB Vulnerability Exposes Sensitive Data via Zlib Compression
What 2025 Taught Us About Modern Malware
24
Dec
2025

What 2025 Taught Us About Modern Malware

The year 2025 represents a pivotal moment in cybersecurity, showcasing a remarkable evolution in zero-click exploitation techniques that significantly challenges…

Share: X : What 2025 Taught Us About Modern MalwareFacebook : What 2025 Taught Us About Modern MalwareLinkedin : What 2025 Taught Us About Modern MalwareReddit : What 2025 Taught Us About Modern MalwareTelegram : What 2025 Taught Us About Modern MalwareWhatsApp : What 2025 Taught Us About Modern MalwareEmail : What 2025 Taught Us About Modern Malware
WebRAT Malware via GitHub Repositories Claim as Proof-of-concept Exploits to Attack Users
24
Dec
2025

WebRAT Malware via GitHub Repositories Claim as Proof-of-concept Exploits to Attack Users

A new malware campaign has surfaced that uses GitHub repositories to spread the WebRAT malware by disguising it as proof-of-concept…

Share: X : WebRAT Malware via GitHub Repositories Claim as Proof-of-concept Exploits to Attack UsersFacebook : WebRAT Malware via GitHub Repositories Claim as Proof-of-concept Exploits to Attack UsersLinkedin : WebRAT Malware via GitHub Repositories Claim as Proof-of-concept Exploits to Attack UsersReddit : WebRAT Malware via GitHub Repositories Claim as Proof-of-concept Exploits to Attack UsersTelegram : WebRAT Malware via GitHub Repositories Claim as Proof-of-concept Exploits to Attack UsersWhatsApp : WebRAT Malware via GitHub Repositories Claim as Proof-of-concept Exploits to Attack UsersEmail : WebRAT Malware via GitHub Repositories Claim as Proof-of-concept Exploits to Attack Users
Interpol Taken Down 6 Ransomware Variants and Arrested 500+ Suspects
24
Dec
2025

Interpol Taken Down 6 Ransomware Variants and Arrested 500+ Suspects

Law enforcement agencies across 19 African nations have achieved a landmark victory against cybercrime. Arresting 574 suspects and dismantling six…

Share: X : Interpol Taken Down 6 Ransomware Variants and Arrested 500+ SuspectsFacebook : Interpol Taken Down 6 Ransomware Variants and Arrested 500+ SuspectsLinkedin : Interpol Taken Down 6 Ransomware Variants and Arrested 500+ SuspectsReddit : Interpol Taken Down 6 Ransomware Variants and Arrested 500+ SuspectsTelegram : Interpol Taken Down 6 Ransomware Variants and Arrested 500+ SuspectsWhatsApp : Interpol Taken Down 6 Ransomware Variants and Arrested 500+ SuspectsEmail : Interpol Taken Down 6 Ransomware Variants and Arrested 500+ Suspects
Ransomware Attack on Romanian Waters Authority
24
Dec
2025

Ransomware Attack on Romanian Waters Authority

Romania’s National Administration “Apele Române” (Romanian Waters) disclosed a severe ransomware attack on December 20, 2025. That compromised approximately 1,000…

Share: X : Ransomware Attack on Romanian Waters AuthorityFacebook : Ransomware Attack on Romanian Waters AuthorityLinkedin : Ransomware Attack on Romanian Waters AuthorityReddit : Ransomware Attack on Romanian Waters AuthorityTelegram : Ransomware Attack on Romanian Waters AuthorityWhatsApp : Ransomware Attack on Romanian Waters AuthorityEmail : Ransomware Attack on Romanian Waters Authority
Operation PCPcat Hacked 59,000+ Next.js/React Servers Within 48 Hours
24
Dec
2025

Operation PCPcat Hacked 59,000+ Next.js/React Servers Within 48 Hours

A massive credential-theft campaign dubbed PCPcat compromised 59,128 Next.js servers in under 48 hours. The operation exploits critical vulnerabilities CVE-2025-29927…

Share: X : Operation PCPcat Hacked 59,000+ Next.js/React Servers Within 48 HoursFacebook : Operation PCPcat Hacked 59,000+ Next.js/React Servers Within 48 HoursLinkedin : Operation PCPcat Hacked 59,000+ Next.js/React Servers Within 48 HoursReddit : Operation PCPcat Hacked 59,000+ Next.js/React Servers Within 48 HoursTelegram : Operation PCPcat Hacked 59,000+ Next.js/React Servers Within 48 HoursWhatsApp : Operation PCPcat Hacked 59,000+ Next.js/React Servers Within 48 HoursEmail : Operation PCPcat Hacked 59,000+ Next.js/React Servers Within 48 Hours
Microsoft Teams to Enforce Messaging Safety Defaults Starting January 2026
23
Dec
2025

Microsoft Teams to Enforce Messaging Safety Defaults Starting January 2026

Microsoft is strengthening the security posture of enterprise collaboration by automatically enabling critical messaging safety features in Microsoft Teams. According…

Share: X : Microsoft Teams to Enforce Messaging Safety Defaults Starting January 2026Facebook : Microsoft Teams to Enforce Messaging Safety Defaults Starting January 2026Linkedin : Microsoft Teams to Enforce Messaging Safety Defaults Starting January 2026Reddit : Microsoft Teams to Enforce Messaging Safety Defaults Starting January 2026Telegram : Microsoft Teams to Enforce Messaging Safety Defaults Starting January 2026WhatsApp : Microsoft Teams to Enforce Messaging Safety Defaults Starting January 2026Email : Microsoft Teams to Enforce Messaging Safety Defaults Starting January 2026
PoC Exploit Released HPE OneView Vulnerability that Enables Remote Code Execution
23
Dec
2025

PoC Exploit Released HPE OneView Vulnerability that Enables Remote Code Execution

Security researchers have released a Proof-of-Concept (PoC) exploit for a critical vulnerability in HPE OneView, a popular IT infrastructure management…

Share: X : PoC Exploit Released HPE OneView Vulnerability that Enables Remote Code ExecutionFacebook : PoC Exploit Released HPE OneView Vulnerability that Enables Remote Code ExecutionLinkedin : PoC Exploit Released HPE OneView Vulnerability that Enables Remote Code ExecutionReddit : PoC Exploit Released HPE OneView Vulnerability that Enables Remote Code ExecutionTelegram : PoC Exploit Released HPE OneView Vulnerability that Enables Remote Code ExecutionWhatsApp : PoC Exploit Released HPE OneView Vulnerability that Enables Remote Code ExecutionEmail : PoC Exploit Released HPE OneView Vulnerability that Enables Remote Code Execution
Windows Imaging Component Vulnerability Can Lead to RCE Attacks Under Complex Attack Scenarios
23
Dec
2025

Windows Imaging Component Vulnerability Can Lead to RCE Attacks Under Complex Attack Scenarios

A comprehensive analysis of CVE-2025-50165, a critical Windows vulnerability affecting the Windows Imaging Component (WIC). That could potentially enable remote…

Share: X : Windows Imaging Component Vulnerability Can Lead to RCE Attacks Under Complex Attack ScenariosFacebook : Windows Imaging Component Vulnerability Can Lead to RCE Attacks Under Complex Attack ScenariosLinkedin : Windows Imaging Component Vulnerability Can Lead to RCE Attacks Under Complex Attack ScenariosReddit : Windows Imaging Component Vulnerability Can Lead to RCE Attacks Under Complex Attack ScenariosTelegram : Windows Imaging Component Vulnerability Can Lead to RCE Attacks Under Complex Attack ScenariosWhatsApp : Windows Imaging Component Vulnerability Can Lead to RCE Attacks Under Complex Attack ScenariosEmail : Windows Imaging Component Vulnerability Can Lead to RCE Attacks Under Complex Attack Scenarios