New MITM6 + NTLM Relay Attack Let Attackers Escalate Privileges and Compromise Entire Domain
A sophisticated attack chain that combines MITM6 with NTLM relay techniques to achieve full Active Directory domain compromise. The attack...
Read more →Category: CyberSecurityNews
Microsoft VS Code Remote-SSH Extension Hacked to Execute Malicious Code on Developer’s Machine
A critical security vulnerability has been discovered in Microsoft’s VS Code Remote-SSH extension that allows attackers to execute malicious code...
Read more →
Russian Hackers Exploiting 7-Year-Old Cisco Vulnerability to Collect Configs from Industrial Systems
A Russian state-sponsored cyber espionage group designated as Static Tundra has been actively exploiting a seven-year-old vulnerability in Cisco networking...
Read more →
Critical Apache Tika PDF Parser Vulnerability Allow Attackers to Access Sensitive Data
A critical security vulnerability has been discovered in Apache Tika’s PDF parser module that could enable attackers to access sensitive...
Read more →
Google Announces New Capabilities for Enabling Defenders and Securing AI Innovation
Google Cloud has unveiled a comprehensive suite of security enhancements at its Security Summit 2025, marking a significant evolution in...
Read more →
New Loader Malware Dubbed ‘QuirkyLoader’ Delivering Infostealers and RATs
A sophisticated new malware loader called QuirkyLoader has emerged as a significant cybersecurity threat, actively distributing well-known infostealers and remote...
Read more →
Ransomware incidents Targeting Japan Increased by Approximately 1.4 Times
Japan experienced a significant surge in ransomware attacks during the first half of 2025, with incidents increasing by approximately 1.4...
Read more →
Critical Apple 0-Day Vulnerability Actively Exploited in the Wild
Apple yesterday released emergency security updates for iOS and iPadOS to patch a critical zero-day vulnerability in its core Image...
Read more →
Lenovo AI Chatbot Vulnerability Let Attackers Run Remote Scripts on Corporate Machines
A critical security flaw in Lenovo’s AI chatbot “Lena” has been discovered that allows attackers to execute malicious scripts on...
Read more →
How Businesses Stop Complex Social Engineering Attacks Early
Attackers have leveled up. Powered by AI and professional-grade toolkits, today’s social engineering scams are nearly impossible to tell apart...
Read more →
Hackers Weaponize Active Directory Federation Services and office.com to Steal Microsoft 365 logins
A novel and highly tricky phishing campaign is actively stealing Microsoft 365 credentials by exploiting Microsoft’s own Active Directory Federation...
Read more →
A Free Zero Trust Web Application Firewall for 2026
Every type of organization—whether it’s a multinational giant with thousands of employees or a single tech enthusiast running a homelab—needs...
Read more →