Cybersecurity News
In our connected world today, data breaches pose a constant threat. Companies in every industry face the challenge to… The post The Real Cost of Breaches: A Data-Driven Perspective appeared first on JISA Softech Pvt Ltd. – Read More – JISA Softech Pvt Ltd
Cybersecurity threats have emerged so quickly that most companies struggle to keep up and executives are often the… – Read More – Hackread – Latest Cybersecurity, Hacking News, Tech, AI & Crypto
Threat actors are weaponizing exposed Java Debug Wire Protocol (JDWP) interfaces to obtain code execution capabilities and deploy cryptocurrency miners on compromised hosts. “The attacker used a modified version of XMRig with a hard-“coded configuration, allowing them to avoid suspicious command-line arguments that are often flagged by defenders,” Wiz researchers Yaara Shriki and Gili – … Read More “Alert: Exposed JDWP Interfaces Lead to Crypto Mining, Hpingbot Targets SSH for DDoS – The Hacker News” »
Taiwan’s National Security Bureau (NSB) has warned that China-developed applications like RedNote (aka Xiaohongshu), Weibo, TikTok, WeChat, and Baidu Cloud pose security risks due to excessive data collection and data transfer to China. The alert comes following an inspection of these apps carried out in coordination with the Ministry of Justice Investigation Bureau (MJIB) and … Read More “Taiwan NSB Alerts Public on Data Risks from TikTok, Weibo, and RedNote Over China Ties – The Hacker News” »
Another scummy stalkerware app has spilled its guts, revealing the details of its 62,000 users – and data from thousands of victims’ infected devices. – Read More – Graham Cluley
Nothing says “Holiday Weekend” like a mysterious IT outage. – Read More – Graham Cluley
Cybersecurity researchers have shed light on a previously undocumented threat actor called NightEagle (aka APT-Q-95) that has been observed targeting Microsoft Exchange servers as a part of a zero-day exploit chain designed to target government, defense, and technology sectors in China. According to QiAnXin’s RedDrip Team, the threat actor has been active since 2023 and … Read More “NightEagle APT Exploits Microsoft Exchange Flaw to Target China’s Military and Tech Sectors – The Hacker News” »
In May 2025, the U.S. government sanctioned a Chinese national for operating a cloud provider linked to the majority of virtual currency investment scam websites reported to the FBI. But a new report finds the accused continues to operate a slew of established accounts at American tech companies — including Facebook, Github, PayPal and Twitter/X. … Read More “Big Tech’s Mixed Response to U.S. Treasury Sanctions – Krebs on Security” »
Some admins of Hunters International are now part of the encryption-less cyber extortion group World Leaks – Read More –
The notorious Hunters International ransomware-as-a-service operation has announced that it has shut down, in a message posted on its dark web leak site. In a statement on its extortion site, the ransomware group says that it has not only “decided to close the Hunters International project” but is also offering free decryption tools to its … Read More “Hunters International ransomware group shuts down – but will it regroup under a new guise? – Graham Cluley” »
Effective onboarding is essential in fast-paced hospitality, with high turnover rates and a multitude of expectations as the… – Read More – Hackread – Latest Cybersecurity, Hacking News, Tech, AI & Crypto
Hunters International ransomware gang closes after 55 confirmed and 199 unconfirmed cyberattacks. Read about its rebrand to World… – Read More – Hackread – Latest Cybersecurity, Hacking News, Tech, AI & Crypto
Cisco fixes critical root credential vulnerability in Unified CM rated CVSS 10 urging users to patch now to stop remote admin takeovers. – Read More – Hackread – Latest Cybersecurity, Hacking News, Tech, AI & Crypto
Taiwan warned that popular Chinese-owned apps, including TikTok and Weibo, are harvesting personal data and sending it back to servers in China – Read More –
Cybersecurity researchers have disclosed two security flaws in the Sudo command-line utility for Linux and Unix-like operating systems that could enable local attackers to escalate their privileges to root on susceptible machines. A brief description of the vulnerabilities is below – CVE-2025-32462 (CVSS score: 2.8) – Sudo before 1.9.17p1, when used with a sudoers file … Read More “Critical Sudo Vulnerabilities Let Local Users Gain Root Access on Linux, Impacting Major Distros – The Hacker News” »
Generative AI is changing how businesses work, learn, and innovate. But beneath the surface, something dangerous is happening. AI agents and custom GenAI workflows are creating new, hidden ways for sensitive enterprise data to leak—and most teams don’t even realize it. If you’re building, deploying, or managing AI systems, now is the time to ask: … Read More “Your AI Agents Might Be Leaking Data — Watch this Webinar to Learn How to Stop It – The Hacker News” »
The EU’s Quantum Strategy includes plans to develop secure quantum communication infrastructure across the region – Read More –
Google has been ordered by a court in the U.S. state of California to pay $314 million over charges that it misused Android device users’ cellular data when they were idle to passively send information to the company. The verdict marks an end to a legal class-action complaint that was originally filed in August 2019. … Read More “Google Ordered to Pay $314M for Misusing Android Users’ Cellular Data Without Permission – The Hacker News” »
Email is still the backbone of how businesses communicate, with more than 300 billion messages sent every day.… – Read More – Hackread – Latest Cybersecurity, Hacking News, Tech, AI & Crypto
A severe flaw identified in the Forminator WordPress plugin allows arbitrary file deletion and potential site takeover – Read More –
Silent Push exposes thousands of fake e-commerce websites spoofing major brands like Apple and Michael Kors. Learn how this Chinese phishing scam targets shoppers and steals financial data, impacting global consumers. – Read More – Hackread – Latest Cybersecurity, Hacking News, Tech, AI & Crypto
Multiple critical infrastructure sectors were hit last year during an attack spree in France via a trio of zero-day vulnerabilities affecting Ivanti Cloud Services Appliance devices, the country’s cybersecurity agency said in a report released Tuesday. Government agencies and organizations in the telecommunications, media, finance and transportation industries were impacted by widespread zero-day exploits of … Read More “China-linked attacker hit France’s critical infrastructure via trio of Ivanti zero-days last year – CyberScoop” »
View CSAF 1. EXECUTIVE SUMMARY CVSS v4 6.9 ATTENTION: Exploitable remotely/Low attack complexity Vendor: Mitsubishi Electric Corporation Equipment: MELSEC iQ-F Series Vulnerability: Overly Restrictive Account Lockout Mechanism 2. RISK EVALUATION Successful exploitation of this vulnerability could result in a denial-of-service condition for legitimate users for a certain period by repeatedly attempting to log in with … Read More “Mitsubishi Electric MELSEC iQ-F Series – All CISA Advisories” »
View CSAF 1. EXECUTIVE SUMMARY CVSS v4 7.1 ATTENTION: Exploitable remotely/low attack complexity Vendor: Hitachi Energy Equipment: Relion 670/650 and SAM600-IO series Vulnerability: Improper Check for Unusual or Exceptional Conditions 2. RISK EVALUATION An authenticated user with file access privilege via FTP access can cause the Relion 670/650 and SAM600-IO series device to reboot due … Read More “Hitachi Energy Relion 670/650 and SAM600-IO Series – All CISA Advisories” »
View CSAF 1. EXECUTIVE SUMMARY CVSS v3 8.1 ATTENTION: Exploitable remotely/low attack complexity Vendor: Mitsubishi Electric Equipment: MELSOFT Update Manager Vulnerabilities: Integer Underflow (Wrap or Wraparound), Protection Mechanism Failure 2. RISK EVALUATION Successful exploitation of these vulnerabilities could allow an attacker to execute arbitrary code, disclose information, alter information, or cause a denial-of-service (DoS) condition. … Read More “Mitsubishi Electric MELSOFT Update Manager – All CISA Advisories” »
CISA released four Industrial Control Systems (ICS) advisories on July 3, 2025. These advisories provide timely information about current security issues, vulnerabilities, and exploits surrounding ICS. ICSA-25-184-01 Hitachi Energy Relion 670/650 and SAM600-IO Series ICSA-25-184-02 Hitachi Energy MicroSCADA X SYS600 ICSA-25-184-03 Mitsubishi Electric MELSOFT Update Manager ICSA-25-184-04 Mitsubishi Electric MELSEC iQ-F Series CISA encourages users … Read More “CISA Releases Four Industrial Control Systems Advisories – All CISA Advisories” »
View CSAF 1. EXECUTIVE SUMMARY CVSS v4 7.1 ATTENTION: Exploitable remotely/low attack complexity Vendor: Hitachi Energy Equipment: MicroSCADA X SYS600 Vulnerabilities: Incorrect Default Permissions, External Control of File Name or Path, Improper Validation of Integrity Check Value, Exposure of Sensitive Information Through Data Queries, Improper Certificate Validation 2. RISK EVALUATION Successful exploitation of these vulnerabilities … Read More “Hitachi Energy MicroSCADA X SYS600 – All CISA Advisories” »
A mobile ad fraud operation dubbed IconAds that consisted of 352 Android apps has been disrupted, according to a new report from HUMAN. The identified apps were designed to load out-of-context ads on a user’s screen and hide their icons from the device home screen launcher, making it harder for victims to remove them, per … Read More “Massive Android Fraud Operations Uncovered: IconAds, Kaleidoscope, SMS Malware, NFC Scams – The Hacker News” »
A critical Azure Machine Learning flaw allows privilege escalation, risking subscription compromise – Read More –
Post Content – Read More – IC3.gov News
The CVE Board has launched a Consumer Working Group and a Researcher Working Group, allowing new stakeholders to shape the future of the CVE Program – Read More –
SentinelLabs uncovers NimDoor, new North Korea-aligned macOS malware targeting Web3 and crypto firms. Exploits Nim, AppleScript, and steals Keychain, browser, shell, and Telegram data. – Read More – Hackread – Latest Cybersecurity, Hacking News, Tech, AI & Crypto
ReliaQuest warns that initial access vulnerability exploitation is driving successful ransomware attacks – Read More –
Cybersecurity researchers have uncovered over 40 malicious browser extensions for Mozilla Firefox that are designed to steal cryptocurrency wallet secrets, putting users’ digital assets at risk. “These extensions impersonate legitimate wallet tools from widely-used platforms such as Coinbase, MetaMask, Trust Wallet, Phantom, Exodus, OKX, Keplr, MyMonero, Bitget, Leap, Ethereum Wallet, and Filfox – Read More … Read More “Over 40 Malicious Firefox Extensions Target Cryptocurrency Wallets, Stealing User Assets – The Hacker News” »
SentinelLabs observed North Korean actors deploying novel TTPs to target crypto firms, including a mix of programming languages and signal-based persistence – Read More –
The French cybersecurity agency on Tuesday revealed that a number of entities spanning governmental, telecommunications, media, finance, and transport sectors in the country were impacted by a malicious campaign undertaken by a Chinese hacking group by weaponizing several zero-day vulnerabilities in Ivanti Cloud Services Appliance (CSA) devices. The campaign, detected at the beginning of – … Read More “Chinese Hackers Exploit Ivanti CSA Zero-Days in Attacks on French Government, Telecoms – The Hacker News” »
If you’re evaluating AI-powered SOC platforms, you’ve likely seen bold claims: faster triage, smarter remediation, and less noise. But under the hood, not all AI is created equal. Many solutions rely on pre-trained AI models that are hardwired for a handful of specific use cases. While that might work for yesterday’s SOC, today’s reality is … Read More “The Hidden Weaknesses in AI SOC Tools that No One Talks About – The Hacker News” »
Once upon a time, say, 2016, Ethereum was a curious new arrival in the crypto space. It promised… – Read More – Hackread – Latest Cybersecurity, Hacking News, Tech, AI & Crypto
ANSSI report details the Chinese UNC5174 linked Houken cyberattack using Ivanti zero-days (CVE-2024-8190, 8963, 9380) against the French government, defence and finance sector. – Read More – Hackread – Latest Cybersecurity, Hacking News, Tech, AI & Crypto
Compliance to industry standards and regulations is frequently considered the gold standard for data security in today’s hyperconnected world…. The post Why Compliance Alone Isn’t Enough: CryptoBind’s Vision appeared first on JISA Softech Pvt Ltd. – Read More – JISA Softech Pvt Ltd
Two elevation of privilege vulnerabilities have been discovered on the popular Sudo utility, affecting 30-50 million endpoints in the US alone – Read More –
A Vulnerability has been discovered in Google Chrome which could allow for arbitrary code execution. Successful exploitation of the the vulnerability could allow for arbitrary code execution in the context of the logged on user. Depending on the privileges associated with the user an attacker could then install programs; view, change, or delete data; or … Read More “A Vulnerability in Google Chrome Could Allow for Arbitrary Code Execution – Cyber Security Advisories – MS-ISAC” »
Cisco has released security updates to address a maximum-severity security flaw in Unified Communications Manager (Unified CM) and Unified Communications Manager Session Management Edition (Unified CM SME) that could permit an attacker to login to a susceptible device as the root user, allowing them to gain elevated privileges. The vulnerability, tracked as CVE-2025-20309, carries a … Read More “Critical Cisco Vulnerability in Unified CM Grants Root Access via Static Credentials – The Hacker News” »
A Mexican drug cartel spies on the FBI using traffic cameras and spyware — because “ubiquitous technical surveillance” is no longer just for dystopian thrillers. Graham digs into a chilling new US Justice Department report that shows how surveillance tech was weaponised to deadly effect. Meanwhile, Carole checks the rear-view mirror on the driverless car … Read More “Smashing Security podcast #424: Surveillance, spyware, and self-driving snafus – Graham Cluley” »
Threat actors with ties to North Korea have been observed targeting Web3 and cryptocurrency-related businesses with malware written in the Nim programming language, underscoring a constant evolution of their tactics. “Unusually for macOS malware, the threat actors employ a process injection technique and remote communications via wss, the TLS-encrypted version of the WebSocket protocol,” – … Read More “North Korean Hackers Target Web3 with Nim Malware and Use ClickFix in BabyShark Campaign – The Hacker News” »
CISA has added one new vulnerability to its Known Exploited Vulnerabilities (KEV) Catalog, based on evidence of active exploitation. CVE-2025-6554 Google Chromium V8 Type Confusion Vulnerability These types of vulnerabilities are frequent attack vectors for malicious cyber actors and pose significant risks to the federal enterprise. Binding Operational Directive (BOD) 22-01: Reducing the Significant Risk of … Read More “CISA Adds One Known Exploited Vulnerability to Catalog – All CISA Advisories” »
The Chinese hackers behind the massive telecommunications sector breach are “largely contained” and “dormant” in the networks, “locked into the location they’re in” and “not actively infiltrating information,” the top FBI cyber official told CyberScoop. But Brett Leatherman, new leader of the FBI Cyber division, said in a recent interview that doesn’t mean the hackers, … Read More “Top FBI cyber official: Salt Typhoon ‘largely contained’ in telecom networks – CyberScoop” »
The Swiss government has issued a warning after a third-party service provider suffered a ransomware attack, which saw sensitive information stolen from its systems and leaked onto the dark web. Read more in my article on the Fortra blog. – Read More – Graham Cluley
Qantas has confirmed a data breach after attackers gained access through a third-party call centre platform, affecting millions… – Read More – Hackread – Latest Cybersecurity, Hacking News, Tech, AI & Crypto
On July 2, the Cyber Threat Alert Level was evaluated and is remaining at Blue (Guarded) due to vulnerabilities in Cisco and Citrix products. On June 25, the MS-ISAC released an advisory for multiple vulnerabilities in Cisco ISE and ISE-PIC that could allow for remote code execution. On June 27, the MS-ISAC released an advisory … Read More “Threat Level – GUARDED – Cyber Threat Alert” »
