The complexity of modern cybersecurity threats has reached new heights as hackers uncover sophisticated methods to bypass defenses. One such method involves exploiting vulnerabilities in Microsoft Teams to circumvent Windows Defender Application Control (WDAC), raising significant security concerns for countless users. This security lapse underscores how even trusted applications can become gateways for malicious activities, challenging the robustness of existing
Malware loaders continue to evolve, employing advanced techniques to avoid detection and ensure their persistence in compromised systems. Among the latest developments are the Hijack Loader and SHELBY malware loader, each incorporating sophisticated evasion tactics and leveraging platforms like GitHub for command-and-control (C2). These advancements highlight the ever-present threat posed by cybercriminals and the ongoing challenge for cybersecurity professionals. As
Tether’s recent acquisition of 8,888 Bitcoin (BTC) has ignited significant discussions within the cryptocurrency community, reflecting a notable shift in their reserve management strategy. Known for issuing the USDT stablecoin, Tether’s purchase, worth approximately $735 million, has increased its Bitcoin holdings to 92,647 BTC, valued at around $7.64 billion. This strategic move raises questions about the implications for both Tether
The CrushFTP file transfer server has recently been plagued by a critical vulnerability, identified as CVE-2025-2825, which has already come under attack only a short time after its discovery. This severe flaw allows attackers to bypass authentication measures, potentially granting unauthorized access to server ports. Earning a CVSS score of 9.8, this vulnerability is particularly alarming due to its remote
Sam’s Club is actively investigating claims made by the Clop ransomware gang regarding a potential compromise related to vulnerabilities in Cleo file transfer software. Despite being mentioned on a leak site by Clop, specific data related to Sam’s Club has not yet been released. Researchers have attributed a series of recent attacks on Cleo Harmony, VL Trader, and LexiCom software
As the digital landscape evolves, cybercrime is escalating at an alarming rate, costing businesses billions every year and threatening the stability of critical operations globally. In this context, protecting cloud environments through proactive security measures has become a pressing concern. This article examines the increasing need for robust cloud security strategies, focusing on combating zero-day exploits and addressing the vulnerabilities
Bitcoin, the pioneering cryptocurrency, has continuously faced challenges pertaining to scalability and data transparency. Recently, a strategic partnership between B² Network and Orochi Network has emerged, promising to address these concerns. B² Network, recognized as a practical Layer 2 (L2) solution for Bitcoin, collaborates with Orochi Network, renowned for its verifiable data infrastructure. This alliance aims to advance blockchain scalability,
The rise of Earth Alux, a new China-linked threat actor, has raised significant concerns in the cybersecurity community. This cyber espionage group has been actively targeting critical sectors in the Asia-Pacific (APAC) and Latin American (LATAM) regions. Initially identified in APAC in the second quarter of 2023 and later in Latin America by mid-2024, Earth Alux has focused its attacks
In an alarming wave of targeted cyber activity, the security of Palo Alto Networks PAN-OS GlobalProtect gateways has come under intense scrutiny. Recent reports have revealed a surge in suspicious login scanning efforts involving nearly 24,000 unique IP addresses attempting access. This coordinated cyber attack began on March 17 and peaked with 23,958 unique IP address attempts, only to diminish
In a concerning development for WordPress site owners, security researchers have identified two critical vulnerabilities in the WP Ultimate CSV Importer plugin, a tool used by over 20,000 websites. The flaws were discovered through Wordfence’s Bug Bounty Program and have been deemed high-risk due to their potential impact. These vulnerabilities allow authenticated users, including those with subscriber-level access, to upload
On March 24, Ukraine’s railway systems faced a significant cyber-attack, which has since been attributed by the Ukrainian government to Russian-backed hackers. This event caused a disruption in Ukrzaliznytsia’s online ticketing system, though train operations remained unaffected thanks to robust pre-prepared protocols. Yevheniia Nakonechna from the State Cyber Protection Centre highlighted that the Government Computer Emergency Response Team of Ukraine
A newly discovered malware variant dubbed RESURGE has been identified by the US Cybersecurity and Infrastructure Security Agency (CISA). This sophisticated malware targets Ivanti Connect Secure appliances by exploiting a critical vulnerability. This vulnerability, known as CVE-2025-0282, allows hackers to create web shells, manipulate system files, and maintain access to compromised systems even after they reboot. The significance of this
