Espionage campaign exploits abandoned Sogou Zhuyin server to target East Asia
The attackers used tampered update mechanisms, phishing websites, and cloud-based infrastructure to deploy malware and steal sensitive data.
Cybersecurity News - Page 57
Threat actors abuse legitimate security tool Velociraptor for C2 activities
The attackers used Velociraptor, typically employed in digital forensics and incident response, to gain control of compromised systems.
Russian-linked APT29 watering hole campaign targets Microsoft Authentication
The campaign aims to trick users into authorizing attacker-controlled devices via Microsoft’s device code authentication process.
WhatsApp fixes security flaw that may have been exploited by cyberspies
The flaw, tracked as CVE-2025-55177, affects certain versions of WhatsApp for iOS and macOS.
Cyber Security Week in Review: August 29, 2025
In brief: FreePBX zero-day, Citrix releases updates to fix an actively exploited flaw, the Salt Typhoon APT officially linked to Chinese companies, and more.
US, UK, and allies link global Salt Typhoon hacking campaign to Chinese tech firms
Using known flaws, attackers gained access to networks, altered security settings, created covert tunnels, and deployed custom tools to steal communications data.
New phishing campaign uses legitimate software to take over devices
Hackers are abusing ScreenConnect to launch follow-up attacks, such as stealing accounts and spreading phishing emails across organizations.
Researchers discover first AI-powered ransomware
PromptLock dynamically crafts its attack logic using hard-coded prompts fed into the AI model.
Citrix fixes critical NetScaler flaw, one actively exploited
There are no workarounds, so users are strongly advised to upgrade immediately.
Salesforce customers targeted in data theft campaign via compromised Drift integration
The attackers were focused on harvesting credentials, specifically searching for AWS access keys, passwords, and Snowflake tokens.
Showing elements 561 - 570