Three critical vulnerabilities in XenServer VM Tools for Windows allow attackers to execute arbitrary code and escalate privileges within guest operating systems. The flaws, identified as CVE-2025-27462, CVE-2025-27463, and CVE-2025-27464, affect all versions of XenServer VM Tools for Windows before…
Tag: Cyber Security News
The Future of Cybersecurity – Trends Shaping the Industry
As digital transformation accelerates across industries, the cybersecurity landscape is changing. 2025 marks a pivotal moment, with organizations worldwide facing increasingly sophisticated cyber threats, regulatory demands, and technological disruptions. Here’s a deep dive into the trends shaping the future of…
WordPress TI WooCommerce Wishlist Plugin Vulnerability Exposes 100,000+ Websites To Cyberattack
A critical security vulnerability in the popular TI WooCommerce Wishlist plugin has left over 100,000 WordPress websites exposed to potential cyberattacks, with security researchers warning of imminent exploitation risks. The vulnerability, designated as CVE-2025-47577 and assigned the maximum CVSS score…
93+ Billion Stolen Users’ Cookies Flooded by Hackers on the Dark Web
Security researchers have uncovered a significant cybercrime operation involving 93.7 billion stolen browser cookies circulating on dark web marketplaces, representing a 74% increase from the previous year’s findings. The comprehensive analysis, conducted by NordStellar threat exposure management platform, reveals that…
Incident Response Planning – Preparing for Data Breaches
As the digital threat landscape intensifies and new technologies reshape business operations, cybersecurity budgeting in 2025 will be significantly transformed. Organizations worldwide are increasing their security spending and rethinking how to allocate resources most effectively to defend against evolving risks…
Threat Actors Impersonate Fake Docusign Notifications To Steal Corporate Data
Cybercriminals have increasingly targeted Docusign, the popular electronic signature platform, to orchestrate sophisticated phishing campaigns aimed at stealing corporate credentials and sensitive data. With Docusign claiming 1.6 million customers worldwide, including 95% of Fortune 500 companies and over one billion…
251 Malicious IPs Attacking Cloud-Based Devices Leveraging 75 Exposure Points
A highly coordinated reconnaissance campaign that deployed 251 malicious IP addresses in a single-day operation targeting cloud-based infrastructure. The attack, which occurred on May 8, 2025, demonstrated unprecedented coordination as threat actors leveraged 75 distinct exposure points to probe vulnerable…
Hackers Allegedly Claim AT&T Data Leak – 31M Records Exposed
A threat actor has allegedly leaked sensitive data belonging to telecommunications giant AT&T, claiming to possess 31 million customer records totaling 3.1GB of information available in both JSON and CSV formats. The alleged breach was posted on a prominent dark…
Cybersecurity Budgeting – Prioritizing Investments in 2025
As the digital threat landscape intensifies and new technologies reshape business operations, cybersecurity budgeting in 2025 will be significantly transformed. Organizations worldwide are increasing their security spending and rethinking how to allocate resources most effectively to defend against evolving risks…
Hackers Exploiting Craft CMS Vulnerability To Inject Crypto Miner Malware
A sophisticated cyber campaign has emerged targeting a critical vulnerability in Craft Content Management System, with threat actors successfully deploying cryptocurrency mining malware across compromised servers. The vulnerability, designated CVE-2025-32432, represents a remote code execution flaw that requires no authentication…