Critical SAP Netweaver flaw exploited to deploy Auto-Color backdoor
The attack exploited the CVE-2025-31324 vulnerability that allows attackers to upload arbitrary files.
Cybersecurity News - Page 60
Leak Zone underground forum exposed users’ IPs in massive data leak
Researchers discovered that Leak Zone left an unsecured Elasticsearch database exposed to the internet.
Threat actors breach Toptal GitHub account in supply chain attack
The malicious packages contained payloads capable of exfiltrating GitHub authentication tokens and destroying victim systems.
Endgame Gear warns of malware in its mouse configuration tool
Scans from affected users identified the malware as part of the XRed backdoor family.
Lionishackers cybercriminal group linked to underground data trade and hacktivism
Lionishackers is known to use SQL injection techniques, often automated with tools like SQL Map, to breach targets.
Hacker plants data-wiping code in Amazon’s AI coding extension
Amazon says that the malicious code was distributed with the extension but was unsuccessful in executing due to a syntax error.
Cyberattack forces Russian airline Aeroflot to cancel dozens of flights
The Silent Crow hacking group claimed to have spent a year infiltrating Aeroflot’s networks, allegedly destroying 7,000 servers.
Scattered Spider targets VMware ESXi in attacks on US critical sectors
Scattered Spider employs social engineering tactics to gain initial access.
Cyber Security Week in Review: July 25, 2025
In brief: Microsoft SharePoint zero-days exploited in widespread attacks, the Russian aerospace and defense industries targeted in Operation CargoTalon, and more.
Microsoft warns of Warlock ransomware attacks exploiting SharePoint flaws
The attackers are using the flaws to deploy a malicious web shell named spinstall0.aspx.
Showing elements 591 - 600