A newly identified botnet, dubbed AryStinger, has covertly compromised over 4,300 routers worldwide, transforming them into a clandestine network of attack proxies. This operation exploits […]
Category: Cybersecurity News
Stay informed about the ever-evolving world of digital threats and defenses with our Cyber Security News category. Here, you’ll find the latest breaking news, in-depth analysis, and expert insights on everything related to cybersecurity. From data breaches and ransomware attacks to emerging threats and innovative security solutions, we cover the critical issues impacting individuals, businesses, and governments worldwide. Keep up-to-date on the latest vulnerabilities, best practices, and trends shaping the future of online security.
Unpatchable Flaw in Apple Chips Enables iPhone Jailbreak
Security researchers have identified a critical hardware vulnerability, termed “usbliter8,” affecting Apple’s A12 and A13 chips. This flaw, embedded in the BootROM—the initial code executed […]
Malicious GST Debit Note Delivers Remcos RAT via Multi-Stage Loader
A sophisticated phishing campaign is currently targeting users in India by disguising malware as a routine Goods and Services Tax (GST) debit note. This attack […]
Malicious npm Package Installs Windows RAT with Encrypted C2
A recent malware campaign has been identified targeting Windows systems through a deceptive package on the npm registry. Disguised as a legitimate CSS build tool, […]
23 ClawHub Plugins Exploit Official Org Scopes to Impersonate Trusted Tools
A recent security investigation has uncovered a significant supply chain vulnerability within ClawHub, the primary plugin registry for the OpenClaw AI agent ecosystem. Researchers identified […]
ShapedPlugin WordPress Pro Plugins Compromised in Supply Chain Attack
Several premium WordPress plugins developed by ShapedPlugin have been compromised in a sophisticated supply chain attack. Malicious actors infiltrated the vendor’s build and distribution pipeline, […]
Microsoft Entra Conditional Access Policies Vulnerable to Bypass via Nested App Authentication
Microsoft Entra Conditional Access Policies (CAPs), essential for securing Azure and Microsoft 365 environments, have been found susceptible to a bypass technique involving Nested App […]
DifyTap Vulnerabilities Expose AI Chats Across Tenants
Security researchers have uncovered four significant vulnerabilities in Dify, an open-source agentic workflow platform with over 146,000 GitHub stars. These flaws, collectively named DifyTap by […]
Hackers Exploit RemotePC and PowerShell to Deploy Prinz Eugen Ransomware
A newly identified ransomware group has been leveraging legitimate remote management software and sophisticated scripting techniques to infiltrate organizations and deploy a potent encryption threat […]
Klue Hack Exposes Salesforce Data of Multiple Cybersecurity Firms
A recent supply chain attack targeting Klue, a market intelligence platform, has led to unauthorized access to Salesforce data across at least nine organizations, including […]