The threat actor “ToddyCat,” a Chinese-linked threat actor, is being observed exploiting a vulnerability in ESET security software to spread a newly discovered malware strain known as TCESB, a new strain that has recently been discovered. In a recent study…
Category: CySecurity News – Latest Information Security and Hacking Incidents
Serious Flaw Found in Popular File-Sharing Tool Used by IT Providers
A major security problem has been found in a widely used file-sharing platform, and hackers have already started taking advantage of it. This tool, called CentreStack, is often used by IT service providers to help businesses manage and share…
US Tariffs May Lead to Chinese Cyberattacks in Retaliation, Experts Warn
As the trade battle between the United States and China heats up, some cybersecurity and policy experts fear Beijing could retaliate in cyberspace. Shortly after the US raised its tax on imported Chinese goods to 104 percent on Wednesday…
Understanding ACR on Smart TVS and the Reasons to Disable It
Almost all leading TV models in recent years have been equipped with Automatic Content Recognition (ACR), a form of advanced tracking technology designed to analyse and monitor viewing habits that is a key component of most television sets. As…
Ransomware Attacks Surge in Q1 2025 as Immutable Backup Emerges as Critical Defense
Ransomware attacks have seen a dramatic rise in the first quarter of 2025, with new research from Object First revealing an 84% increase compared to the same period in 2024. This alarming trend highlights the growing sophistication and frequency of…
Critical Infrastructure at Risk: Why OT-IT Integration is Key to Innovation and Cybersecurity
As cyberattacks grow more advanced, targeting the essential systems of modern life—from energy pipelines and manufacturing plants to airports and telecom networks—governments are increasing pressure on industries to fortify their digital and physical defenses. A series of high-profile breaches,…
Oracle Faces Data Leak Claims, Clarifies Cloud Services Remain Safe
Oracle has informed its users that a recent cyberattack only affected two outdated servers that are no longer in use. These systems were separate from Oracle’s main cloud services, and the company says that no active customer data or…
Microsoft: CLFS Zero-Day Flaw Exploited in Ransomware Attacks
Ransomware attackers abused a zero-day flaw in a widely used Windows logging system for managing transactional information to launch attacks against organisations in the US real estate sector, Microsoft revealed Tuesday. In a blog post, the tech giant stated…
Smokeloader Malware Clients Detained as Police Seize Critical Servers
It has been reported that law enforcement agencies across Europe and North America have made additional arrests to dismantle the illicit ecosystem supporting malware distribution and deployment as part of a wider global effort. As part of Operation Endgame,…
Windows CLFS Zero-Day CVE-2025-29824 Exploited by Ransomware Group Storm-2460
A newly disclosed Windows zero-day vulnerability, tracked as CVE-2025-29824, is being actively exploited in cyberattacks to deliver ransomware, Microsoft has warned. This flaw affects the Windows Common Log File System (CLFS) driver and enables local privilege escalation—a method often…