Cybersecurity researchers have identified a significant spike in exploitation attempts targeting TVT NVMS9000 digital video recorders (DVRs), with activity surging to three times normal levels in early April 2025. This new campaign appears to be linked to the infamous Mirai…
Tag: Cyber Security News
Linux Firewall IPFire 2.29 Released With Support for Post-Quantum Cryptography & Core Updates
IPFire has announced the release of version 2.29 (Core Update 193), introducing significant enhancements to the Linux-based firewall distribution. This update brings forward-thinking security features, including post-quantum cryptography support for IPsec tunnels and major toolchain upgrades that strengthen the system’s…
Authorities Seized Smokeloader Malware Operators & Seized Servers
Law enforcement agencies across Europe and North America have arrested five individuals linked to the Smokeloader botnet service as part of Operation Endgame’s second phase. This follow-up action, conducted in early April 2025, specifically targeted the “customers” of the notorious…
Microsoft Identity Web Package Vulnerability Exposes Client Secrets & Certificate Information
A moderate-severity vulnerability has been identified in Microsoft Identity Web. Under specific conditions, it could potentially expose sensitive client secrets and certificate information in service logs. The flaw, tracked as CVE-2025-32016, impacts versions 3.2.0 through 3.8.1 of the library and…
North Korean Hackers Employs Social Engineering Tactics & Python Script to Execute Hidden Commands
Cybersecurity experts have identified a sophisticated campaign by North Korean state-sponsored hackers who are leveraging Python-based lures and social engineering tactics to breach highly secure networks. The attackers employ a dual approach: meticulously crafted social engineering schemes combined with elegantly…
Scattered Spider Employs Sophisticated Attacks to Steal Login Credentials & MFA Tokens
Scattered Spider, a notorious hacker collective active since at least 2022, continues to launch increasingly sophisticated social engineering attacks aimed at stealing usernames, login credentials, and multifactor authentication (MFA) tokens. The group, also known as UNC3944, Star Fraud, Octo Tempest,…
CISA Warns of Linux USB-Audio Driver Out-of-Bounds Vulnerability Exploited in the Wild
The Cybersecurity and Infrastructure Security Agency (CISA) has added two significant Linux kernel vulnerabilities to its Known Exploited Vulnerabilities (KEV) catalog yesterday, confirming both flaws are being actively weaponized in targeted attacks. Federal agencies have been mandated to patch affected…
New Double-Edged Email Attack Stealing Office365 Credentials and Deliver Malware
A sophisticated cyber attack campaign has emerged, employing a dual-threat approach to simultaneously steal Microsoft Office365 credentials and deliver malware to unsuspecting victims. This hybrid attack begins with deceptive emails disguised as file deletion reminders from legitimate file-sharing services, creating…
Hackers Allegedly Claiming WooCommerce Breach, 4.4 Million Customer Details Stolen
A hacker known by the alias “Satanic” has claimed responsibility for a massive data breach involving WooCommerce, one of the most widely used eCommerce platforms on the web. The breach, which reportedly occurred on April 6, 2025, involves the theft…
How Banking Trojan Grandoreiro is Evolving Tactics To Attack Victims in LATAM
A new wave of phishing emails is sweeping across Latin America, and once again, Grandoreiro is behind it. This banking trojan is no newcomer; it’s been active for years, evolving steadily into a more sophisticated and evasive threat. With targeted…