CyberSecurityNews

CyberVolk Hackers Group With New VolkLocker Payloads Attacks both Linux and Windows Systems

CyberVolk, a pro-Russia hacktivist group, has reemerged with a new ransomware platform called VolkLocker following a period of dormancy in 2025. The group, first documented…

December 12, 2025 Cybernoz 2 min read

CyberSecurityNews

New ConsentFix Attack Let Attackers Hijack Microsoft Accounts by Leveraging Azure CLI

A sophisticated new phishing attack technique called “ConsentFix” that combines OAuth consent phishing with ClickFix-style prompts to compromise Microsoft accounts without requiring passwords or multi-factor…

December 12, 2025 Cybernoz 2 min read

CyberSecurityNews

MITRE Releases Top 25 Most Dangerous Software Weaknesses of 2025

MITRE has unveiled its 2025 Common Weakness Enumeration (CWE) Top 25 Most Dangerous Software Weaknesses list, highlighting the root causes behind 39,080 Common Vulnerability and…

December 12, 2025 Cybernoz 2 min read

CyberSecurityNews

New BlackForce Phishing Kit Lets Attackers Steal Credentials Using MitB Attacks and Bypass MFA

A sophisticated phishing tool called BlackForce has emerged as a serious threat to organizations worldwide. First observed in August 2025, this professional-grade kit allows criminals…

December 12, 2025 Cybernoz 2 min read

CyberSecurityNews

Beware of Fake Leonardo DiCaprio Movie Torrent File Drops Agent Tesla Malware

A new threat is targeting movie lovers who search for the latest films online. Cybercriminals are now using the popularity of Leonardo DiCaprio’s new film,…

December 12, 2025 Cybernoz 3 min read

CyberSecurityNews

Ashen Lepus Hacker Group Attacks Eastern Diplomatic Entities With New AshTag Malware

A Hamas‑affiliated threat group known as Ashen Lepus, also tracked as WIRTE, has launched a new espionage campaign against governmental and diplomatic entities across the…

December 12, 2025 Cybernoz 2 min read

CyberSecurityNews

Windows Remote Access Connection Manager Vulnerabilities Let Attackers Escalate Privileges

Two critical privilege escalation flaws were disclosed in the Windows Remote Access Connection Manager on December 9, 2025. The vulnerabilities, tracked as CVE-2025-62472 and CVE-2025-62474,…

December 12, 2025 Cybernoz 2 min read

CyberSecurityNews

CISA Warns of OSGeo GeoServer 0-Day Vulnerability Exploited in Attacks

An urgent warning about a critical security flaw in OSGeo GeoServer, a widely used open-source geographic data-sharing server. CISA has added the vulnerability to its…

December 12, 2025 Cybernoz 2 min read

CyberSecurityNews

New Vulnerabilities in React Server Components Allow DoS Attacks and Source Code Leaks

Less than a week after addressing a critical Remote Code Execution (RCE) vulnerability, the React team has disclosed three additional security flaws affecting React Server…

December 12, 2025 Cybernoz 2 min read

CyberSecurityNews

New ClickFix Attacks as macOS Infostealer Leverages Official ChatGPT Website by Piggybacking

A new malicious campaign is targeting macOS users via a novel attack that exploits ChatGPT’s official website. The attackers are using a technique called ClickFix…

December 11, 2025 Cybernoz 2 min read

CyberSecurityNews

New DroidLock Malware Locks Android Devices and Demands a Ransom

A dangerous new malware called DroidLock is targeting Android users, particularly in Spanish-speaking regions, through phishing websites. This threat combines ransomware tactics with remote-control capabilities,…

December 11, 2025 Cybernoz 2 min read

CyberSecurityNews

1inch Named Exclusive Swap Provider at Launch for Ledger Multisig

Road Town, British Virgin Islands, December 11th, 2025, CyberNewsWire 1inch, the leading DeFi ecosystem, has been selected as the exclusive swap provider at launch for…

December 11, 2025 Cybernoz 3 min read