Western Digital has recently addressed a critical security vulnerability affecting multiple models of its My Cloud network-attached storage (NAS) devices. This flaw, identified as CVE-2025-30247, […]
Category: Cybersecurity News
Stay informed about the ever-evolving world of digital threats and defenses with our Cyber Security News category. Here, you’ll find the latest breaking news, in-depth analysis, and expert insights on everything related to cybersecurity. From data breaches and ransomware attacks to emerging threats and innovative security solutions, we cover the critical issues impacting individuals, businesses, and governments worldwide. Keep up-to-date on the latest vulnerabilities, best practices, and trends shaping the future of online security.
Critical Vulnerabilities in VMware Tools and Aria Operations Enable Privilege Escalation to Root
On September 29, 2025, VMware disclosed three significant vulnerabilities affecting its Aria Operations, VMware Tools, VMware Cloud Foundation, VMware Telco Cloud Platform, and VMware Telco […]
Malicious ‘postmark-mcp’ Package Exfiltrates Emails via Hidden BCC
A recently discovered malicious npm package, ‘postmark-mcp,’ has been covertly exfiltrating user emails to an external server. This package, masquerading as the legitimate Postmark MCP […]
Critical Zero-Day Vulnerability in VMware Tools and Aria Operations Exploited for Privilege Escalation
A critical zero-day vulnerability, identified as CVE-2025-41244, has been discovered in VMware Tools and VMware Aria Operations, posing significant security risks to virtualized environments. This […]
Asahi Group’s Production Halted by Cyberattack: A Wake-Up Call for the Beverage Industry
On September 29, 2025, Asahi Group Holdings, a leading Japanese beverage conglomerate, experienced a significant cyberattack that led to a complete halt in production across […]
Lunar Spider: A Stealthy Threat to Windows Systems
In mid-September 2025, cybersecurity researchers identified a new malware strain named Lunar Spider, which poses a significant threat to Windows environments by compromising systems with […]
Escalating Exploitation of PAN-OS GlobalProtect Vulnerability CVE-2024-3400
In recent weeks, cybersecurity researchers have observed a significant uptick in malicious scanning activities targeting a critical vulnerability in Palo Alto Networks’ PAN-OS GlobalProtect feature, […]
China-Linked PlugX and Bookworm Malware Attacks Target Asian Telecom and ASEAN Networks
Recent cybersecurity analyses have unveiled a series of sophisticated cyber attacks targeting telecommunications and manufacturing sectors across Central and South Asia. These campaigns have been […]
First Malicious MCP Server Identified: Rogue ‘postmark-mcp’ Package Compromises Email Security
In a significant development within the cybersecurity landscape, researchers have uncovered the first known instance of a malicious Model Context Protocol (MCP) server actively operating […]
Microsoft Uncovers AI-Enhanced Phishing Tactics Using LLM-Generated SVG Files
Microsoft has recently identified a sophisticated phishing campaign targeting organizations in the United States. This campaign employs code generated by large language models (LLMs) to […]