In a significant cybersecurity incident, numerous organizations have fallen victim to a sophisticated attack exploiting a zero-day vulnerability in Oracle’s E-Business Suite (EBS) software. The […]
Category: Cybersecurity News
Stay informed about the ever-evolving world of digital threats and defenses with our Cyber Security News category. Here, you’ll find the latest breaking news, in-depth analysis, and expert insights on everything related to cybersecurity. From data breaches and ransomware attacks to emerging threats and innovative security solutions, we cover the critical issues impacting individuals, businesses, and governments worldwide. Keep up-to-date on the latest vulnerabilities, best practices, and trends shaping the future of online security.
Active Exploitation of Unpatched Vulnerability in Gladinet CentreStack and TrioFox Products
Cybersecurity firm Huntress has identified active exploitation of an unpatched security vulnerability affecting Gladinet CentreStack and TrioFox products. This zero-day flaw, designated as CVE-2025-11371 with […]
Massive Phishing Campaign Exploits npm Packages to Target Over 135 Companies
In a significant cybersecurity development, researchers have identified 175 malicious packages within the npm registry, collectively downloaded approximately 26,000 times. These packages serve as the […]
Fortra’s Response to CVE-2025-10035: A Detailed Timeline of Detection and Mitigation
On October 10, 2025, Fortra disclosed the findings of its investigation into CVE-2025-10035, a critical security vulnerability in its GoAnywhere Managed File Transfer (MFT) software. […]
Microsoft Alerts on ‘Payroll Pirates’ Exploiting HR SaaS Accounts to Divert Employee Salaries
In a recent cybersecurity development, Microsoft has identified a threat actor, designated as Storm-2657, actively compromising employee accounts to reroute salary payments into accounts under […]
Stealit Malware Exploits Node.js SEA Feature via Fake Game and VPN Installers
Cybersecurity experts have recently uncovered an active malware campaign named Stealit, which exploits Node.js’ Single Executable Application (SEA) feature to distribute its malicious payloads. This […]
RondoDox Botnet’s ‘Shotgun’ Exploitation Strategy Targets Diverse Network Devices
In mid-2025, cybersecurity researchers identified a formidable botnet named RondoDox, distinguished by its aggressive and expansive exploitation tactics. This botnet employs a ‘shotgun’ approach, utilizing […]
Emerging Quishing Attacks Exploit QR Codes to Target Microsoft Users
In early October 2025, cybersecurity researchers identified a sophisticated phishing campaign, termed quishing, that leverages weaponized QR codes to compromise Microsoft users. This attack exploits […]
Critical 7-Zip Vulnerabilities Enable Remote Code Execution
Recent discoveries have unveiled two high-severity vulnerabilities in 7-Zip, the widely used open-source file archiver. Designated as CVE-2025-11001 and CVE-2025-11002, these flaws could permit remote […]
Authorities Seize BreachForums’ Latest Clearnet Domain in Ongoing Cybercrime Crackdown
In a significant move against cybercrime, international law enforcement agencies have seized the latest clearnet domain of the notorious cybercrime marketplace, BreachForums. The domain, `breachforums[.]hn`, […]