Cyber Security News

Critical security vulnerabilities have been discovered in Gigabyte UEFI firmware that could allow attackers to execute arbitrary code in System Management Mode (SMM), one of the most privileged execution environments in modern processors.  The vulnerabilities, disclosed by the Software Engineering Institute’s CERT Coordination Center on July 11, 2025, affect multiple Gigabyte systems and could enable […]

The post Gigabyte UEFI Firmware Vulnerability Let Attackers Execute Arbitrary Code in the SMM Environment appeared first on Cyber Security News.

Microsoft has provided comprehensive guidance for resolving the common Windows error “The process cannot access the file because it is being used by another process.”  This technical issue, which frequently frustrates users attempting to delete, move, or modify files, can now be systematically diagnosed and resolved using several built-in Windows utilities and free Microsoft tools. […]

The post Microsoft Details on Fixing Error “Identify Which Process Is Blocking a File in Windows” With Built-in Tools appeared first on Cyber Security News.

Cybersecurity researchers have developed innovative forensic methods to track sophisticated attackers who exploit Remote Desktop Protocol (RDP) for lateral movement within enterprise networks.  This breakthrough technique transforms what attackers believe to be stealthy operations into detailed digital footprints, providing incident responders with unprecedented visibility into malicious activities across compromised systems. Key Takeaways1.  Investigators identify RDP […]

The post New Forensic Technique Uncovers Hidden Trails Left by Hackers Exploiting Remote Desktop Protocol appeared first on Cyber Security News.

A sophisticated malware campaign leveraging the KongTuke threat cluster has emerged, targeting Windows users through a novel FileFix technique that deploys an advanced PHP-based variant of the Interlock remote access trojan (RAT). This represents a significant evolution from previous JavaScript-based implementations, demonstrating increased operational sophistication and resilience. Since May 2025, cybersecurity researchers have observed widespread […]

The post KongTuke Attacking Windows Users With New Interlock RAT Variant Using FileFix Technique appeared first on Cyber Security News.

A sophisticated zero-click attack methodology called RenderShock that exploits passive file preview and indexing behaviors in modern operating systems to execute malicious payloads without requiring any user interaction.  Unlike traditional phishing campaigns that rely on users clicking malicious links or opening infected attachments, RenderShock leverages built-in system automation features to achieve compromise through legitimate background […]

The post RenderShock 0-Click Vulnerability Executes Payloads via Background Process Without User Interaction appeared first on Cyber Security News.

A former U.S. Air Force employee has pleaded guilty to charges of sharing classified military information about Russia’s war in Ukraine through a dating application, according to federal court documents.  David Franklin Slater, who worked as a civilian employee at the United States Strategic Command (USSTRATCOM), admitted to transmitting SECRET-level national defense information to an […]

The post Retired US Air Force Employee Pleads Guilty for Sharing Military Secrets on a Dating App appeared first on Cyber Security News.

A Pune-based automobile parts manufacturer fell victim to a sophisticated man-in-the-middle (MITM) cyber attack, resulting in a loss of ₹2.35 crore.  The 52-year-old director of the company filed an FIR with the cybercrime police station after discovering that fraudsters impersonating executives from an Italian manufacturing firm had intercepted business communications and redirected payments to fraudulent […]

The post Pune Auto Parts Firm Loses ₹2.35 Crore in Man-in-the-Middle Attack appeared first on Cyber Security News.

Threat actors have escalated their campaigns from crude ransomware splashes to precision-engineered strikes that can cripple an organisation’s very lifeblood—its operational technology. The latest malware strain, dubbed “BlackParagon” by incident responders, surfaced last week after simultaneous outages rippled across three Asian energy utilities. Initial telemetry shows infections began with a watering-hole compromise of an industry […]

The post Threat Actors Use Sophisticated Hacking Tools to Destroy Organizations Critical Infrastructure appeared first on Cyber Security News.

Key Takeaways 1. Louis Vuitton confirmed a July 2 data breach affecting UK customers, the third LVMH attack in three months.2. Customer names, contact details, and purchase histories were stolen, but no financial data was compromised.3. The company notified authorities, isolated systems, and strengthened security protocols including multi-factor authentication.4. This follows similar attacks on M&S, […]

The post Louis Vuitton Hacked – Attackers Stolen Customers Personal Data appeared first on Cyber Security News.

A malicious Microsoft Compiled HTML Help (CHM) file uploaded from Poland on 30 June 2025 has shown how a legacy documentation format can be repurposed into a potent delivery vehicle for modern malware. Named “deklaracja.chm,” the archive masquerades as a bank‐transfer declaration and opens with a benign receipt image, lulling victims into a false sense […]

The post Hackers Weaponize Compiled HTML Help to Deliver Malicious Payload appeared first on Cyber Security News.

A threat actor using the handle “zeroplayer” advertised a previously unknown remote-code-execution (RCE) exploit for WinRAR on an underground forum.  The post, titled “WINRAR RCE 0DAY – 80,000$,” claims the flaw works “fully on the latest version of WinRAR and below,” is not related to the recently patched CVE-2025-6218, and is available exclusively through the […]

The post Hackers Allegedly Selling WinRAR 0-day Exploit on Dark Web Forums for $80,000 appeared first on Cyber Security News.

Cloud VPNs have become essential for both businesses and individuals seeking secure, private, and reliable internet access in 2025. As cyber threats evolve and remote work becomes the norm, choosing the right cloud VPN provider is crucial for safeguarding sensitive data and ensuring seamless connectivity across the globe. This comprehensive guide reviews the 10 best […]

The post 10 Best Cloud VPN Providers – 2025 appeared first on Cyber Security News.

Let’s face it cybersecurity used to sound like a topic only for programmers in hoodies or government agencies trying to fend off foreign hackers. But in the current day and age, everyone is affected. If you are a gamer, a business owner, or casually browsing on Instagram, you are continuously at the risk of losing […]

The post Cybersecurity Isn’t Just For Experts Anymore: Why You Should Care appeared first on Cyber Security News.

As organizations accelerate digital transformation, the need for robust cloud security has never been greater. Cloud Access Security Broker (CASB) software stands at the forefront, acting as the critical gatekeeper between users and cloud service providers. With the explosion of SaaS, IaaS, and PaaS platforms, businesses face evolving threats, compliance challenges, and the risk of […]

The post 11 Best Cloud Access Security Broker Software (CASB) – 2025 appeared first on Cyber Security News.

In 2025, the digital threat landscape is more dynamic and complex than ever. Cyber attacks are escalating in frequency, sophistication, and impact, targeting businesses, governments, and individuals worldwide. Real-time visibility into these threats is essential for proactive defense, strategic planning, and rapid incident response. Cyber attack maps have become indispensable tools for cybersecurity professionals and […]

The post Top 10 Cyber Attack Maps to See Digital Threats In 2025 appeared first on Cyber Security News.

In 2025, passwordless authentication tools are transforming digital security by eliminating the need for traditional passwords and introducing advanced, user-friendly authentication methods. With cyber threats on the rise and user experience at the forefront, organizations are rapidly adopting these solutions to safeguard sensitive data, reduce breaches, and streamline access for employees and customers alike. Passwordless […]

The post Top 11 Passwordless Authentication Tools – 2025 appeared first on Cyber Security News.

Grok-4 has been jailbroken using a new strategy that combines two different jailbreak methods to bypass artificial intelligence security measures. This raises concerns over the vulnerability of large language models (LLMs) to sophisticated adversarial attacks. Key Takeaways1. Researchers merged Echo Chamber and Crescendo jailbreak techniques to bypass AI safety mechanisms more effectively than individual methods.2. […]

The post Grok-4 Jailbreaked With Combination of Echo Chamber and Crescendo Attack appeared first on Cyber Security News.

Security researchers have uncovered a significant vulnerability in Google Gemini for Workspace that enables threat actors to embed hidden malicious instructions within emails. The attack exploits the AI assistant’s “Summarize this email” feature to display fabricated security warnings that appear to originate from Google itself, potentially leading to credential theft and social engineering attacks. Key […]

The post Google Gemini for Workspace Vulnerability Lets Attackers Hide Malicious Scripts in Emails appeared first on Cyber Security News.

In today’s rapidly evolving digital landscape, the frequency and complexity of cyberattacks are increasing, making it crucial to stay informed about emerging threats. Our weekly newsletter serves as a vital resource, offering an overview of pertinent cybersecurity developments, expert analysis, and actionable recommendations. This issue covers recent cyber incidents, newly identified vulnerabilities, and key legislative […]

The post Weekly Cybersecurity Roundup: Key Vulnerabilities, Threats, and Data Breaches appeared first on Cyber Security News.

Trendyol’s application security team uncovered a series of bypasses that render Meta’s Llama Firewall protections unreliable against sophisticated prompt injection attacks. The findings raise fresh concerns about the readiness of existing LLM security measures and underscore the urgent need for more robust defenses as enterprises increasingly embed large language models into their workflows. During the […]

The post Meta’s Llama Firewall Bypassed Using Prompt Injection Vulnerability appeared first on Cyber Security News.