Cyber Security News

A sophisticated new threat actor group dubbed “Curly COMrades” has emerged as a significant cybersecurity concern, conducting targeted espionage campaigns against critical organizations in countries experiencing substantial geopolitical shifts. The group has been actively pursuing long-term network access and credential theft operations since mid-2024, with a particular focus on judicial and government bodies in Georgia, […]

The post New ‘Curly COMrades’ APT Hackers Attacking Targeting Critical Organizations in Countries appeared first on Cyber Security News.

A critical security vulnerability discovered in popular Android rooting frameworks could allow malicious applications to completely compromise rooted devices, giving attackers full system control without user knowledge. The vulnerability, first identified in KernelSU version 0.5.7, demonstrates how seemingly robust authentication mechanisms can be circumvented through clever exploitation techniques. Rooting frameworks like KernelSU, APatch, SKRoot, and […]

The post Hackers Could Gain Full Control of Your Rooted Android Devices by Exploiting One Vulnerability appeared first on Cyber Security News.

Microsoft released critical security updates, addressing three serious vulnerabilities in Microsoft Office that could allow attackers to execute remote code on affected systems.  The vulnerabilities, tracked as CVE-2025-53731, CVE-2025-53740, and CVE-2025-53730, affect multiple versions of Microsoft Office and pose significant security risks to organizations and individual users worldwide. Key Takeaways1. Critical Office flaws enable code […]

The post Microsoft Office Vulnerabilities Let Attackers Execute Malicious Code Remotely appeared first on Cyber Security News.

If you think phishing is just clicking a bad link and landing on a fake login page, Tycoon2FA will prove you wrong. This new wave of phishing-as-a-service isn’t playing the old game anymore; it’s running a 7-stage obstacle course built to wear down both humans and machines. It’s already slipping past trusted security tools. If […]

The post New Multi-Stage Tycoon2FA Phishing Attack Now Beats Top Security Systems appeared first on Cyber Security News.

A critical authentication bypass vulnerability in FortiWeb allows unauthenticated remote attackers to impersonate any existing user on affected systems.  The vulnerability, tracked as CVE-2025-52970 with a CVSS score of 7.7, affects multiple FortiWeb versions and stems from improper parameter handling in the cookie parsing mechanism. Key Takeaways1. CVE-2025-52970 lets attackers bypass authentication to log in […]

The post FortiWeb Authentication Bypass Vulnerability Let Attackers Log in As Any Existing User appeared first on Cyber Security News.

The cybersecurity community continues to grapple with the lingering effects of the XZ Utils backdoor, a sophisticated supply chain attack that shook the industry in March 2024. What began as a carefully orchestrated two-year campaign by the pseudonymous developer ‘Jia Tan’ has evolved into a persistent threat that extends far beyond its initial discovery. The […]

The post Several Docker Images Contain Infamous XZ Backdoor Planted for More Than a Year appeared first on Cyber Security News.

A sophisticated new ransomware family called Charon has emerged in the cybersecurity landscape, targeting organizations in the Middle East’s public sector and aviation industry with advanced persistent threat (APT) techniques typically reserved for nation-state actors. The ransomware campaign represents a concerning evolution in cybercriminal operations, combining stealth, precision, and destructive capabilities to maximize impact on […]

The post New Charon Ransomware Employs DLL Sideloading, and Anti-EDR Capabilities to Attack Organizations appeared first on Cyber Security News.

Microsoft released security patches addressing a significant vulnerability in Windows Remote Desktop Services that could allow unauthorized attackers to launch denial of service attacks over network connections.  The vulnerability, designated as CVE-2025-53722, affects multiple Windows versions spanning from legacy systems to the latest Windows Server 2025 and Windows 11 24H2 releases. Key Takeaways1. Critical Windows […]

The post Windows Remote Desktop Services Vulnerability Let Attacker Deny Services Over Network appeared first on Cyber Security News.

A sophisticated cybercriminal operation disguised as a Ukrainian Web3 development team has been targeting job seekers through weaponized NPM packages, security researchers warn. The attack leverages fake interview processes to trick unsuspecting candidates into downloading and executing malicious code that steals cryptocurrency wallets, browser data, and sensitive personal information. The campaign centers around a seemingly […]

The post Ukrainian Web3team Weaponizing NPM Package to Attack Job Seekers and Steal Sensitive Data appeared first on Cyber Security News.

MCP (Model Control Plane) Server is a centralized platform that orchestrates, manages, and secures the lifecycle of AI models deployed across an organization’s infrastructure. By providing integration, management, and real-time monitoring of models, MCP servers enable enterprises to defend against sophisticated, AI-powered cyberattacks. This article explores MCP server integration and usage, its core workings, the […]

The post What is MCP Server – How it is Powering AI-Driven Cyber Defense appeared first on Cyber Security News.

A critical zero-click NTLM credential leakage vulnerability that circumvents Microsoft’s recent patch for CVE-2025-24054.  The newly identified flaw, assigned CVE-2025-50154, allows attackers to extract NTLM hashes from fully patched Windows systems without any user interaction, demonstrating that Microsoft’s April security update was incomplete. Key Takeaways1. CVE-2025-50154 bypasses Microsoft's recent patch, enabling zero-click NTLM credential theft.2. […]

The post New Windows 0-Click NTLM Credential Leakage Vulnerability Bypasses Microsoft’s Patch appeared first on Cyber Security News.

A high-severity authentication bypass vulnerability affecting multiple Fortinet security products, including FortiOS, FortiProxy, and FortiPAM systems.  The flaw, designated as CVE-2024-26009 with a CVSS score of 7.9, enables unauthenticated attackers to seize complete control of managed devices through exploitation of the FortiGate-to-FortiManager (FGFM) communication protocol. Key Takeaways1. CVE-2024-26009 allows authentication bypass in Fortinet products.2. Attackers […]

The post FortiOS, FortiProxy, and FortiPAM Auth Bypass Vulnerability Allows Attackers to Gain Full Control appeared first on Cyber Security News.

Google Chrome has released a critical security update addressing six vulnerabilities that could potentially enable arbitrary code execution on affected systems.  The stable channel update to version 139.0.7258.127/.128 for Windows and Mac, and 139.0.7258.127 for Linux, contains patches for multiple high-severity security flaws that pose significant risks to user data and system integrity. Key Takeaways1. […]

The post Multiple Chrome High-Severity Vulnerabilities Let Attackers Execute Arbitrary Code appeared first on Cyber Security News.

A critical security vulnerability in the Fortinet FortiSIEM platform allows unauthenticated attackers to execute arbitrary commands remotely.  The vulnerability CVE-2025-25256, classified as CWE-78 (OS Command Injection), has been actively exploited in the wild with practical exploit code already circulating among threat actors. Key Takeaways1. Critical FortiSIEM flaw actively exploited with PoC in the wild.2. Targets […]

The post Critical FortiSIEM Vulnerability Lets Attackers Execute Malicious Commands – PoC Found in the Wild appeared first on Cyber Security News.

In a coordinated international operation, law enforcement agencies successfully dismantled critical infrastructure belonging to the BlackSuit ransomware group, also known as Royal, marking a significant victory in the ongoing battle against cybercriminal enterprises. The July 24, 2025 takedown operation resulted in the seizure of four servers, nine domains, and approximately $1.09 million in laundered cryptocurrency […]

The post BlackSuit Ransomware Servers Attacking U.S. Critical Infrastructure Seized by Law Enforcement Seizes appeared first on Cyber Security News.

Microsoft has released the Windows 11 August 2025 Cumulative Updates, KB5063878 for version 24H2 and KB5063875 for versions 22H2 and 23H2, delivering critical stability fixes and new features released along with Microsoft patch Tuesday august 2025. These updates address performance issues reported since May 2025, including frame rate drops in games like Fortnite and device […]

The post Microsoft Releases Windows 11 Cumulative Updates (KB5063878, KB5063875) August 2025 with New Features appeared first on Cyber Security News.

Electronic Arts has revealed that their Javelin anti-cheat system successfully prevented 330,000 attempts to cheat or tamper with anti-cheat controls during the Battlefield 6 Open Beta launch period. The gaming giant’s SPEAR Anti-Cheat Team disclosed these statistics while addressing community concerns about cheating incidents in the highly anticipated military shooter’s beta testing phase. The cheating […]

The post Electronic Arts Blocked 300,000 Attempts Following Battlefield 6 Beta Launch appeared first on Cyber Security News.

Microsoft disclosed a significant remote code execution (RCE) vulnerability in its Teams collaboration software as part of its August 2025 Patch Tuesday updates. The critical flaw, identified as CVE-2025-53783, could allow an unauthorized attacker to read, write, and even delete user messages and data by executing code over a network. The vulnerability is a heap-based […]

The post Microsoft Teams RCE Vulnerability Let Attackers Read, Write and Delete Messages appeared first on Cyber Security News.

Microsoft released its August Patch Tuesday security updates, addressing a total of 107 vulnerabilities across its product ecosystem. The update includes fixes for 90 vulnerabilities, classified as follows: 13 are Critical, 76 are Important, one is Moderate, and one is Low. Notably, none of these vulnerabilities are listed as actively exploited zero-days, which provides some […]

The post Microsoft Patch Tuesday August 2025 Released – 107 Vulnerabilities Fixed Including 36 RCE appeared first on Cyber Security News.

In recent months, a new phishing toolkit known as PoisonSeed has emerged, targeting both individual users and enterprise organizations with unprecedented sophistication. Unlike traditional phishing kits that harvest only usernames and passwords, PoisonSeed employs an adversary-in-the-middle (AitM) approach to intercept multi-factor authentication (MFA) tokens and session cookies. Victims receive spear-phishing emails masquerading as notifications from […]

The post PoisonSeed Phishing Kit Bypasses MFA to Acquire Credentials from Individuals and Organizations appeared first on Cyber Security News.