New Wiper Malware Targeted Venezuelan Energy Sector Prior to US Intervention
A threat actor has used a new wiper malware in recent attacks against the energy and utilities sector, cybersecurity company Kaspersky warns. The attack targeted…
Category: SecurityWeek
Most Serious Cyberattacks Against the UK Now From Russia, Iran and China, Cyber Chief Says
The most serious cyberattacks in the U.K. are now carried out by hostile nations including Russia, Iran and China, the head of the U.K.’s National…
After Bluesky, Mastodon Targeted in DDoS Attack
Following a similar assault on Bluesky just days prior, the decentralized social media platform Mastodon has also been targeted in a major distributed denial-of-service (DDoS)…
Mirai Botnet Targets Flaw in Discontinued D-Link Routers
A Mirai botnet is targeting discontinued D-Link routers impacted by a command injection vulnerability disclosed a year ago, Akamai reports. Tracked as CVE-2025-29635, the security…
Progress Patches Multiple Vulnerabilities in MOVEit WAF, LoadMaster
Progress Software on Monday rolled out patches for multiple MOVEit WAF and LoadMaster vulnerabilities that could lead to remote code execution (RCE) and OS command…
Unsecured Perforce Servers Expose Sensitive Data From Major Orgs
A researcher has analyzed internet-facing Perforce P4 servers and found that many are still misconfigured, exposing highly sensitive information. Perforce P4 (formerly Helix Core) is…
Dozens of Malicious Crypto Apps Land in Apple App Store
Over two dozen fake cryptocurrency applications targeting iOS users have been published to the Apple App Store, Kaspersky reports. The malicious campaign, dubbed FakeWallet, has…
Third US Security Expert Admits Helping Ransomware Gang
A third man has pleaded guilty to participating in ransomware attacks while working for a cybersecurity company hired to negotiate with hackers. In October 2025,…
Organizations Warned of Exploited Cisco, Kentico, Zimbra Vulnerabilities
The US cybersecurity agency CISA on Monday expanded its Known Exploited Vulnerabilities (KEV) catalog with eight more flaws, including three that have not previously been…
Senate Extends Surveillance Powers Until April 30 After Chaotic Votes in House
The Senate approved a short-term renewal until April 30 of a controversial surveillance program used by U.S. spy agencies, following a chaotic, post-midnight scramble in…
Bluesky Disrupted by Sophisticated DDoS Attack
Bluesky, the decentralized microblogging social media platform, reported service outages last week due to a distributed denial-of-service (DDoS) attack aimed at its systems. The DDoS…
Hackers Abuse QEMU for Defense Evasion
Threat actors have been abusing QEMU in campaigns leading to the deployment of ransomware and remote access tools, Sophos reports. A cross-platform open source machine…