Cyber Security News

Windows Shortcut (LNK) files, traditionally used for creating quick access links to applications and files, have emerged as a prominent attack vector in the cybersecurity landscape. These seemingly innocuous files, identifiable by their small arrow icon overlay, are increasingly being weaponized by threat actors to execute malicious payloads while maintaining a facade of legitimacy. The […]

The post Weaponization of LNK Files Surge by 50% and Primarily Used in Four Different Malware Categories appeared first on Cyber Security News.

Penetration testing, also known as ethical hacking, is a critical process in cybersecurity aimed at identifying and addressing vulnerabilities within systems, networks, and applications. By simulating real-world attacks, penetration testing helps organizations uncover weaknesses before malicious actors can exploit them. To execute these tests effectively, cybersecurity professionals rely on specialized tools designed to assess and […]

The post Top 30 Best Penetration Testing Tools – 2025 appeared first on Cyber Security News.

Cybersecurity has transformed from a niche technical field into a critical business priority that shapes organizational strategies worldwide. As we navigate through 2025, the cybersecurity industry continues to expand in response to increasingly sophisticated threats, digital transformation initiatives, and regulatory requirements. The global cybersecurity market is thriving, with projections showing growth to $345.4 billion by 2026, according to historical data.  This comprehensive report […]

The post 50 World’s Best Cyber Security Companies – 2025 appeared first on Cyber Security News.

A severe vulnerability in Cisco Unified Communications Manager (Unified CM) systems could allow remote attackers to gain root-level access to affected devices.  The vulnerability, designated CVE-2025-20309 with a maximum CVSS score of 10.0, affects Engineering Special releases and stems from hardcoded SSH credentials that cannot be modified or removed by administrators. Key Takeaways1. CVE-2025-20309 critical […]

The post Cisco Unified CM Vulnerability Allows Remote Attacker to Login As Root User appeared first on Cyber Security News.

A sophisticated smishing operation targeting tens of thousands of potential victims across Greater London has resulted in the sentencing of Ruichen Xiong, a Chinese student, to over a year in prison at Inner London Crown Court. The case represents a significant escalation in mobile-based fraud tactics, utilizing advanced SMS blasting technology to conduct large-scale credential […]

The post Chinese Student Charged for Running a Mass Smishing Campaign to Harvest Victims Personal Details appeared first on Cyber Security News.

Microsoft is strengthening its cybersecurity arsenal with the introduction of Mail Bombing Detection in Microsoft Defender for Office 365, a sophisticated feature designed to combat the growing threat of email bombing attacks. We have already notified the implementation of Microsoft Defender for Office 365, which will introduce advanced measures to mitigate email bombing attacks. This […]

The post New Email Bombing Detection in Office 365 to Detect Email Bombing Attacks appeared first on Cyber Security News.

The International Criminal Court (ICC) has successfully detected and contained a sophisticated cybersecurity incident that targeted the judicial institution late last week.  This marks the second major cyber attack of this type against the ICC in recent years, highlighting the persistent digital threats facing international judicial bodies.  Key Takeaways1. ICC suffered its second sophisticated cyber […]

The post International Criminal Court Hit by New Sophisticated Cyber Attack appeared first on Cyber Security News.

CISA has issued an urgent warning regarding two critical vulnerabilities in TeleMessage TM SGNL that threat actors are currently exploiting in active attack campaigns. The vulnerabilities, tracked as CVE-2025-48927 and CVE-2025-48928, pose significant security risks to organizations utilizing this communication platform, with CISA adding both flaws to its Known Exploited Vulnerabilities (KEV) catalog on July […]

The post CISA Warns of TeleMessage TM SGNL Vulnerabilities Exploited in Attacks appeared first on Cyber Security News.

Microsoft has announced significant modifications to its popular Authenticator application, with critical features being discontinued in the coming months.  Starting July 2025, the autofill functionality within Microsoft Authenticator will cease operations, followed by the complete removal of password accessibility features in August 2025.  Key Takeaways1. Automatic credential filling feature will stop working starting July 2025.2. […]

The post Microsoft Authenticator to Discontinue Password Support and Cease Operations by August 2025 appeared first on Cyber Security News.

A sophisticated Remote Access Trojan (RAT) campaign targeting Colombian organizations has emerged, employing advanced evasion techniques to establish persistent remote control over Windows systems. The malware, identified as DCRAT, represents a significant escalation in cyber threats against Latin American entities, utilizing government impersonation tactics to deceive victims into executing malicious payloads. The attack campaign leverages […]

The post DCRAT Attack Windows to Remotely Control, Keylogging, Screen Capture and Steal Personal Files appeared first on Cyber Security News.

Microsoft Intune administrators are facing a critical issue where their carefully configured security baseline policy customizations are being lost during version updates, potentially leaving enterprise environments vulnerable to security gaps.  The Intune Support Team officially acknowledged this known issue on July 1, 2025, affecting organizations that have implemented custom security configurations differing from Microsoft’s recommended […]

The post Microsoft Intune Admins Beware! Your Security Baseline Policy Tweaks are not Saved During Updates appeared first on Cyber Security News.

A sophisticated Chinese threat group identified as Houken has been exploiting multiple zero-day vulnerabilities in Ivanti Cloud Service Appliance (CSA) devices to deploy advanced Linux rootkits and establish persistent access to critical infrastructure networks. The campaign, which began in September 2024, has successfully compromised organizations across governmental, telecommunications, media, finance, and transport sectors in France […]

The post Chinese Houken Hackers Exploiting Ivanti CSA Zero-Days to Deploy Linux Rootkits appeared first on Cyber Security News.

Australia’s flagship carrier, Qantas Airways, has disclosed a significant cybersecurity breach affecting up to 6 million customers, with cybercriminals gaining unauthorized access to a third-party customer service platform used by the airline’s contact centre operations. The incident, detected on Monday and contained shortly thereafter, represents one of the most significant data breaches in Australian aviation […]

The post Qantas Airlines Hit by Cyberattack, Customer Data Compromised appeared first on Cyber Security News.

A significant security flaw has been identified in the popular YONO SBI banking application that could potentially expose millions of users to cybersecurity threats.  The vulnerability, designated as CVE-2025-45080, affects version 1.23.36 of the YONO SBI: Banking & Lifestyle app and stems from insecure network configuration settings that allow unencrypted data transmission. Summary1. CVE-2025-45080 in […]

The post YONO SBI Banking App Vulnerability Let Attackers Execute a Man-in-the-Middle Attack appeared first on Cyber Security News.

As digital security and privacy demands evolve, users and businesses are increasingly seeking VPN alternatives that offer more robust protection, better scalability, and seamless remote access. While traditional VPNs remain popular, their limitations such as latency, complex management, and scalability issues have paved the way for next-generation solutions. This guide explores the 10 best VPN […]

The post 10 Best VPN Alternative Solutions In 2025 appeared first on Cyber Security News.

A sophisticated new ransomware variant identified as DEVMAN has emerged from the DragonForce ransomware-as-a-service ecosystem, targeting both Windows 10 and Windows 11 systems with notable behavioral differences between operating system versions. This hybrid malware represents a concerning evolution in the ransomware landscape, combining the established DragonForce codebase with unique modifications that create distinct operational signatures. […]

The post New DEVMAN Ransomware From DragonForce Attacking Windows 10 and 11 Users appeared first on Cyber Security News.

Malware analysis is a critical skill for cybersecurity professionals, threat hunters, and incident responders. With the growing sophistication of cyber threats, having access to reliable, free malware analysis tools is essential for dissecting, understanding, and mitigating malicious software. This article reviews the 10 best free malware analysis tools in 2025 covering their specifications, features, reasons […]

The post 10 Best Free Malware Analysis Tools To Break Down The Malware Samples – 2025 appeared first on Cyber Security News.

A newly disclosed security advisory from Tenable reveals serious vulnerabilities in the Nessus vulnerability scanner that could enable attackers to compromise Windows systems through privilege escalation attacks.  The security flaws, affecting all Nessus versions prior to 10.8.5, include a critical Windows-specific vulnerability (CVE-2025-36630) that allows unauthorized file overwrites at SYSTEM privilege level, alongside two additional […]

The post Nessus for Windows Vulnerabilities Enables Overwrite of Arbitrary Local System Files appeared first on Cyber Security News.

A sophisticated new variation of cyberattacks emerged in July 2025, exploiting a critical vulnerability in how Chrome and Microsoft Edge handle webpage saving functionality. The attack, dubbed “FileFix 2.0,” bypasses Windows’ Mark of the Web (MOTW) security feature by leveraging legitimate browser saving mechanisms combined with HTML Application (HTA) execution. Key Points1. Saving HTML pages […]

The post FileFix Attack Exploits Windows Browser Features to Bypass Mark-of-the-Web Protection appeared first on Cyber Security News.

The cybersecurity landscape faces a renewed threat as TA829, a sophisticated threat actor group, has emerged with enhanced tactics, techniques, and procedures (TTPs) alongside an upgraded version of the notorious RomCom backdoor. This hybrid cybercriminal-espionage group has demonstrated remarkable adaptability, conducting both financially motivated attacks and state-aligned espionage operations, particularly following the invasion of Ukraine. […]

The post TA829 Hackers Employs New TTPs and Upgraded RomCom Backdoor to Evade Detections appeared first on Cyber Security News.