Security News

Filter by:

Police disrupts Rhadamanthys, VenomRAT, and Elysium malware operations

Law enforcement authorities from 9 countries have taken down 1,025 servers used by the Rhadamanthys infolstealer, VenomRAT, and Elysium botnet malware operations in the latest phase of Operation Endgame, an international action targeting cybercrime. [...]
Bleepingcomputer 13 Nov 2025 1759 Views

Popular Android-based photo frames download malware on boot

Uhale Android-based digital picture frames come with multiple critical security vulnerabilities and some of them download and execute malware at boot time. [...]
Bleepingcomputer 13 Nov 2025 1658 Views

Hackers abuse Triofox antivirus feature to deploy remote access tools

Hackers exploited a critical vulnerability and the built-in antivirus feature in Gladinet's Triofox file-sharing and remote-access platform to achieve remote code execution with SYSTEM privileges. [...]
Bleepingcomputer 12 Nov 2025 1809 Views

Synology fixes BeeStation zero-days demoed at Pwn2Own Ireland

Synology has addressed a critical-severity remote code execution (RCE) vulnerability in BeeStation products that was demonstrated at the recent Pwn2Own hacking competition. [...]
Bleepingcomputer 12 Nov 2025 1567 Views

Seven QNAP Zero-Day Vulnerabilities Exploited at Pwn2Own 2025 Now Patched

QNAP has addressed seven critical zero-day vulnerabilities in its network-attached storage (NAS) operating systems, following their successful exploitation by security researchers at Pwn2Own Ireland 2025. These flaws, identified as CVE-2025-62847, CVE-2025-62848, ...
Cyber Security News 8 Nov 2025 8780 Views

Cisco warns of 'new attack variant' battering firewalls under exploit for 6 months

Plus 2 new critical vulns - patch now Cisco warned customers about another wave of attacks against its firewalls, which have been battered by intruders for at least six months. It also patched two critical bugs in its Unified Contact Center Express (UCCX) software that...
The Register 7 Nov 2025 5870 Views

Nikkei Suffers Breach Via Slack Compromise

The Japanese media giant said thousands of employee and business partners were impacted by an attack that compromised Slack account data and chat histories.
Dark Reading 6 Nov 2025 15779 Views

Malicious Android apps on Google Play downloaded 42 million times

Hundreds of malicious Android apps on Google Play were downloaded more than 40 million times between June 2024 and May 2025, notes a report from cloud security company Zscaler. [...]
Bleepingcomputer 5 Nov 2025 1503 Views

Fake Solidity VSCode extension on Open VSX backdoors developers

A remote access trojan dubbed SleepyDuck, and disguised as the well-known Solidity extension in the Open VSX open-source registry, uses an Ethereum smart contract to establish a communication channel with the attacker...
Bleepingcomputer 4 Nov 2025 1583 Views

700+ Malicious Android Apps Abusing NFC Relay to Exfiltrate Banking Login Credentials

A sophisticated malware campaign exploiting Near Field Communication technology on Android devices has expanded dramatically since its emergence in April 2024. What began as isolated incidents has escalated into a widespread threat, with over 760 malicious applications now circulating in the wild. These malicious apps abuse NFC...
Cyber Security News 31 Oct 2025 1809 Views

We use cookies to give you the best possible experience on our website. By continuing to browse this site, you give consent for cookies to be used. For more details please read our Cookie Policy.

PRIVACY POLICY