cyberattack Archives • Page 3 of 6 • Daily CyberSecurity

Critical Wazuh RCE (CVE-2025-24016) Actively Exploited by Mirai Botnets Wazuh RCE, Mirai Botnets

Critical Wazuh RCE (CVE-2025-24016) Actively Exploited by Mirai Botnets

Ddos June 9, 2025

Akamai’s Security Intelligence and Response Team (SIRT) has uncovered active exploitation of CVE-2025-24016, a critical remote code...

Signal Phishing Alert: Sophisticated Campaign Targets Armenian Civil Society & Government Signal Phishing, Armenia Cyberattack

Signal Phishing Alert: Sophisticated Campaign Targets Armenian Civil Society & Government

Ddos June 7, 2025

In early March 2025, Armenia became the focal point of a sophisticated spear-phishing campaign that leveraged encrypted...

Alert: Fake DocuSign & Gitcodes Pages Install NetSupport RAT Malware! NetSupport RAT, Phishing Campaign

Alert: Fake DocuSign & Gitcodes Pages Install NetSupport RAT Malware!

Ddos June 5, 2025

Security researchers at DomainTools have uncovered a highly deceptive malware campaign designed to exploit user trust and...

ViperSoftX Evolves: New PowerShell Malware Boasts Stealth & Persistence PowerShell Malware, ViperSoftX

ViperSoftX Evolves: New PowerShell Malware Boasts Stealth & Persistence

Ddos June 5, 2025

K7 Labs has unveiled a detailed analysis of a new PowerShell-based malware campaign that builds on 2024’s...

India SIM-Binding Mandate Messaging App KYC WhatsApp DMA Interoperability BirdyChat Haiket Denmark Social Media Ban CVE-2025-55177 WhatsApp vulnerability, zero-click flaw npm Malware, System Wipe WhatsApp Windows App, WebView2 Downgrade WhatsApp Ban, US House NSO WhatsApp, Pegasus Spyware WhatsApp iPad iPadOS app

NSO Group Ordered to Pay WhatsApp $167M for Pegasus Spyware Attack

Ddos June 3, 2025

The notorious Israeli commercial spyware developer NSO Group has been ordered by a U.S. court jury to...

Checkmarx Breach Supply Chain Attack Ivanti EPMM RCE CVE-2026-1281 Modular DS Vulnerability CVE-2026-23550 D-Link RCE Vulnerability CVE-2026-0625 Christmas 2025 GreyNoise Campaign, Japan-Based Initial Access Broker React2Shell Zero-Day, APT Active Exploitation WordPress vulnerability, authentication bypass FreePBX, zero-day Trend Micro Apex One, Remote Code Execution BitoPro Hack, Crypto Theft UNC5337 - CVE-2022-47945 Safe{Wallet} hack Fortinet vulnerability, CVE-2024-21762, FortiGate attack Balloonfly, Play ransomware Ivanti EPMM CVE-2025-4427 and CVE-2025-4428

BitoPro Silent on $11.5M Hack: Investigator Uncovers Massive Crypto Theft

Ddos June 3, 2025

Cryptocurrency investigator @zachxbt, while analyzing on-chain transactions, uncovered a suspicious movement of funds linked to the Taiwanese...

BitMEX Turns Tables on Lazarus Group: Infiltrates Hacker Infrastructure EV2GO Charging Platform ICSA-26-057-04 Lazarus Group, Crypto Hacks LazyStealer

EV2GO Charging Platform ICSA-26-057-04 Lazarus Group, Crypto Hacks LazyStealer

BitMEX Turns Tables on Lazarus Group: Infiltrates Hacker Infrastructure

Ddos June 3, 2025

In recent years, the North Korean hacking collective known as the Lazarus Group has shifted its focus...

Splunk Issues Patches for Two Security Flaws: Windows Permission Misconfiguration and Reflected XSS Splunk Vulnerabilities, Security Advisory

Splunk Vulnerabilities, Security Advisory

Splunk Issues Patches for Two Security Flaws: Windows Permission Misconfiguration and Reflected XSS

Ddos June 3, 2025

Splunk Inc., a leader in data analytics and security monitoring, has issued security advisories for two newly...

Gh0st in the Machine: ASEC Uncovers Cryptomining Campaign Exploiting Korean Internet Cafés Gh0st RAT, CoinMiner

Gh0st in the Machine: ASEC Uncovers Cryptomining Campaign Exploiting Korean Internet Cafés

Ddos June 3, 2025

In a revealing analysis, the AhnLab Security Intelligence Center (ASEC) has uncovered a sophisticated, ongoing malware campaign...

Chrome Zero-Day Alert: CVE-2025-5419 Actively Exploited in the Wild CVE-2025-5419 Chrome Update, Zero-Day

Chrome Zero-Day Alert: CVE-2025-5419 Actively Exploited in the Wild

Ddos June 2, 2025

Google has rolled out a critical security update for the Chrome browser in its Stable channel, bumping...

AyySSHush: New Stealthy Botnet Backdoors ASUS Routers, Persists Through Firmware Updates AyySSHush Botnet, ASUS Router Attacks

AyySSHush: New Stealthy Botnet Backdoors ASUS Routers, Persists Through Firmware Updates

Ddos May 31, 2025

A new wave of router-based cyberattacks has emerged in the form of a stealthy and persistent botnet...

Bitter APT Targets Pakistan Telecom Amidst Border Tensions with New Cyberattack! Bitter APT, Pakistan Cyberattack

Bitter APT Targets Pakistan Telecom Amidst Border Tensions with New Cyberattack!

Ddos May 31, 2025

As tensions flared between India and Pakistan during Operation Sindoor on May 7, 2025, a covert cyber...

ConnectWise ScreenConnect Targeted by Nation-State Actor TanStack Typosquatting npm Supply Chain Attack Axios Supply Chain Attack npm Poisoning eScan Supply Chain Attack Antivirus Compromise APT-36, NCERT WhatsApp Advisory FBI alert, Salesforce Salt Typhoon, APT group ConnectWise ScreenConnect hack Nation-state cyberattack FortiGate Leak - zkLend vulnerability - TRIPLESTRENGTH Threat Actor Group Dark Storm

TanStack Typosquatting npm Supply Chain Attack Axios Supply Chain Attack npm Poisoning eScan Supply Chain Attack Antivirus Compromise APT-36, NCERT WhatsApp Advisory FBI alert, Salesforce Salt Typhoon, APT group ConnectWise ScreenConnect hack Nation-state cyberattack FortiGate Leak - zkLend vulnerability - TRIPLESTRENGTH Threat Actor Group Dark Storm

ConnectWise ScreenConnect Targeted by Nation-State Actor

Ddos May 30, 2025

ConnectWise, a prominent provider of IT management solutions, has issued a brief but concerning security advisory disclosing...

Ransomware Attack: MSP’s RMM Tool Abused to Spread DragonForce DragonForce ransomware MSP RMM attack

Ransomware Attack: MSP’s RMM Tool Abused to Spread DragonForce

Ddos May 29, 2025

In a recent targeted cyberattack, a threat actor compromised the remote monitoring and management (RMM) infrastructure of...

Rhadamanthys Stealer Returns: Copyright Phishing Targets Europe lures

Rhadamanthys Stealer Returns: Copyright Phishing Targets Europe

Ddos May 23, 2025

The Rhadamanthys stealer, a notorious information-stealing malware, has returned with a new wave of targeted phishing attacks...

Kuwait Under Attack: 230+ Domains Used in Sophisticated Phishing Operation Kuwait phishing Phishing campaign

Kuwait Under Attack: 230+ Domains Used in Sophisticated Phishing Operation

Ddos May 19, 2025

In a newly published threat intelligence report, Hunt.io researchers have detailed an active and sophisticated phishing campaign...

North Korean APT37’s “ToyBox Story”: Stealthy Attacks Unveiled APT37, RoKRAT

North Korean APT37’s “ToyBox Story”: Stealthy Attacks Unveiled

Ddos May 13, 2025

In a recent expose by Genians Security Center (GSC), North Korean-linked APT group APT37 has once again...

Stealth in Pixels: .NET Malware Hides Payloads in Bitmap Resources steganography malware, Agent Tesla

Stealth in Pixels: .NET Malware Hides Payloads in Bitmap Resources

Ddos May 13, 2025

Palo Alto Networks’ Unit 42 has uncovered a sophisticated obfuscation technique leveraging steganography to hide malware within...

Sophisticated IIS Malware Targets South Korean Web Servers IIS malware, South Korea cyberattack

Sophisticated IIS Malware Targets South Korean Web Servers

Ddos May 9, 2025

In a targeted and technically advanced cyber operation discovered in February 2025, the AhnLab Security Intelligence Center...

DieNet Hacktivist Group Exploits DDoS-as-a-Service in Rapid Attacks DDoS-as-a-service DieNet

DieNet Hacktivist Group Exploits DDoS-as-a-Service in Rapid Attacks

Ddos May 9, 2025

In a newly published report by NETSCOUT, a new hacktivist group known as DieNet has surfaced, claiming...