exploit

December 8, 2025

Threat Actors Distribute CoinMiner Malware through USB Drives to Infect Workstations

Cybercriminals continue to exploit USB drives as infection vectors, with recent campaigns delivering sophisticated CoinMiner malware that establishes persistent cryptocurrency-mining…
Read More »
December 7, 2025

Barts Health NHS Reveals Data Breach Linked to Oracle Zero-Day Exploited by Clop Ransomware

Barts Health NHS Trust has disclosed a significant data breach affecting patient and staff information after the Cl0p ransomware gang…
Read More »
December 6, 2025

2.15M Next.js Web Services Exposed Online, Active Attacks Reported

Security teams worldwide are rushing to patch systems after the disclosure of a critical React vulnerability, CVE-2025-55182, widely known as…
Read More »
December 5, 2025

Avast Antivirus Sandbox Vulnerabilities Allow Privilege Escalation

SAFA researchers uncovered four kernel heap overflow vulnerabilities in Avast Antivirus’s aswSnx.sys driver, designated CVE-2025-13032, affecting versions before 25.3 on…
Read More »
December 3, 2025

CISA Issues Alert on Actively Exploited Android Zero-Day Vulnerability

The Cybersecurity and Infrastructure Security Agency (CISA) has added two critical Android Framework vulnerabilities to its Known Exploited Vulnerabilities (KEV)…
Read More »
December 2, 2025

Cyber Startup Frenetik Launches Patented Deception Technology to Counter the AI Arms Race

Bethesda, USA / Maryland, December 2nd, 2025, CyberNewsWire While most cybersecurity companies pour resources into AI models, massive compute, hoovering…
Read More »
November 30, 2025

Mystery OAST Tool Exploits 200 CVEs Using Google Cloud for Large-Scale Attacks

A sophisticated threat actor has been operating a private Out-of-band Application Security Testing (OAST) service hosted on Google Cloud infrastructure…
Read More »
November 26, 2025

A Novel Exploit Leveraging URL Fragments To Deceive AI Browsers

Security researchers at Cato CTRL have uncovered HashJack. This innovative indirect prompt-injection attack hides harmful commands in the fragment portion…
Read More »
November 24, 2025

Metasploit Releases New Exploit for Fresh FortiWeb 0-Day Vulnerabilities

Rapid7’s Metasploit team has released a new exploit module targeting critical zero-day vulnerabilities in Fortinet’s FortiWeb web application firewall, chaining…
Read More »
November 22, 2025

AI-Driven Obfuscated Malicious Apps Bypassing Antivirus Detection to Deliver Malicious Payloads

Cybersecurity researchers have identified a sophisticated malware campaign leveraging artificial intelligence to enhance obfuscation techniques, enabling malicious applications to circumvent…
Read More »
November 15, 2025

Multiple Cisco Unified CCX Vulnerabilities Enable Arbitrary Command Execution by Attackers

Cisco has disclosed critical security vulnerabilities affecting Cisco Unified Contact Center Express (Unified CCX) that could enable unauthenticated, remote attackers…
Read More »
November 14, 2025

Cisco Catalyst Center Vulnerability Allows Attackers to Escalate Privileges

A critical security vulnerability has been identified in the Cisco Catalyst Center Virtual Appliance that could enable authenticated, remote attackers…
Read More »
November 12, 2025

Hackers Exploit SSRF Flaw in Custom GPTs to Steal ChatGPT Secrets

A cybersecurity researcher has uncovered a server-side request forgery (SSRF) vulnerability in OpenAI’s ChatGPT. The flaw, hidden in the Custom…
Read More »
November 10, 2025

HackGPT Launches as AI-Driven Penetration Testing Suite Using GPT-4 and Other Models

HackGPT Enterprise has officially launched as a production-ready, cloud-native AI-powered penetration testing platform designed specifically for enterprise security teams. Created…
Read More »
November 8, 2025

New “LANDFALL” Android Malware Uses Samsung 0-Day Vulnerability Hidden in WhatsApp Images

Cybersecurity researchers at Unit 42 have uncovered a sophisticated Android spyware campaign that exploited a previously unknown zero-day vulnerability in…
Read More »
November 8, 2025

AI-Powered Cyber Threats Rise: Attackers Target Manufacturing Sector

A comprehensive new report reveals that manufacturing organizations are grappling with a dual challenge: rapidly adopting generative AI technologies while…
Read More »
November 5, 2025

Clop Ransomware Group Exploits New 0-Day Vulnerabilities in Active Attacks

The Clop ransomware group continues to pose a significant threat to enterprise organizations worldwide, with recent analysis revealing their exploitation…
Read More »
November 5, 2025

Hackers Exploit AI Tools to Intensify Ransomware Attacks on European Organizations

European organizations are facing an unprecedented surge in ransomware attacks as cybercriminals increasingly adopt artificial intelligence and sophisticated social engineering…
Read More »
November 4, 2025

Open VSX Registry Responds to Leaked Tokens and Malicious Extension Incident

The Open VSX team and Eclipse Foundation have addressed a significant security incident involving leaked authentication tokens and malicious extensions…
Read More »
November 3, 2025

Hackers Actively Scanning TCP Ports 8530/8531 for WSUS CVE-2025-59287

Security researchers at the SANS Internet Storm Center have detected a significant spike in suspicious network traffic targeting Windows Server…
Read More »

Previous page Next page