Security News

Filter by:

Experts Warn of Widespread SonicWall VPN Compromise Impacting Over 100 Accounts

Cybersecurity company Huntress on Friday warned of "widespread compromise" of SonicWall SSL VPN devices to access multiple customer environments. "Threat actors are authenticating into multiple accounts rapidly across compromised devices," it said. "The speed and scale of these attacks imply that the attackers appear to...
The Hacker News 11 Oct 2025 2143 Views

7-Zip Vulnerabilities Let Attackers Execute Arbitrary Code Remotely

Two high-severity vulnerabilities have been discovered in the popular open-source file archiver, 7-Zip, which could allow remote attackers to execute arbitrary code. Identified as CVE-2025-11001 and CVE-2025-11002, the flaws affect all versions...
Cyber Security News 10 Oct 2025 2236 Views

New Android spyware ClayRat imitates WhatsApp, TikTok, YouTube

A new Android spyware called ClayRat is luring potential victims by posing as popular apps and services like WhatsApp, Google Photos, TikTok, and YouTube. [...]
Bleepingcomputer 10 Oct 2025 2269 Views

Cybercrims claim raid on 28,000 Red Hat repos, say they have sensitive customer files

A hacking crew claims to have broken into Red Hat's private GitLab repositories, exfiltrating some 570GB of compressed data, including sensitive documents belonging to customers. […]
The Register 5 Oct 2025 8088 Views

Hackers exploited Zimbra flaw as zero-day using iCalendar files

Researchers monitoring for larger .ICS calendar attachments found that a flaw in Zimbra Collaboration Suite (ZCS) was used in zero-day attacks at the beginning of the year. [...]
Bleepingcomputer 5 Oct 2025 2498 Views

VMware Tools and Aria Operations Vulnerabilities Let Attackers Escalate Privileges to Root

VMware has released an advisory to address three high-severity vulnerabilities in VMware Aria Operations, VMware Tools, VMware Cloud Foundation, VMware Telco Cloud Platform, and VMware Telco Cloud Infrastructure. […] The post VMware Tools and Aria Operations Vulnerabilities Let Attackers Escalate Privileges to Root appeared...
Cyber Security News 2 Oct 2025 2606 Views

Akira ransomware breaching MFA-protected SonicWall VPN accounts

Ongoing Akira ransomware attacks targeting SonicWall SSL VPN devices continue to evolve, with the threat actors found to be successfully authenticating despite OTP MFA being enabled on accounts. Researchers suspect this may through the use of previously stolen OTP seeds, though the exact method remains unconfirmed at...
Bleepingcomputer 29 Sep 2025 2923 Views

Unitree 機械人爆「殭屍網絡」漏洞 可被黑客遙距控制、自動感染同類

中國機械人製造商宇樹科技 (Unitree) 旗下多款機械人爆出嚴重安全漏洞,黑客可輕易控制這些機械人,更可怕的是漏...
Cyber Security News 29 Sep 2025 2186 Views

WhatsApp 0-Click Vulnerability Exploited Using Malicious DNG File

WhatsApp -click remote code execution (RCE) vulnerability affecting Apple’s iOS, macOS, and iPadOS platforms, detailed with a proof of concept demonstration. The attack chain exploits two distinct vulnerabilities, identified as CVE-2025-55177 and CVE-2025-...
Cyber Security News 29 Sep 2025 2369 Views

Fake Microsoft Teams installers push Oyster malware via malvertising

Hackers have been spotted using SEO poisoning and search engine advertisements to promote fake Microsoft Teams installers that infect Windows devices with the Oyster backdoor, providing initial access to corporate networks. [...]
Bleepingcomputer 28 Sep 2025 2412 Views

We use cookies to give you the best possible experience on our website. By continuing to browse this site, you give consent for cookies to be used. For more details please read our Cookie Policy.

PRIVACY POLICY