Data Breach News, Vulnerabilities
July 19, 2025
179 views 11 secs 0

Hackers are trying to steal passwords and sensitive data from users of Signal clone

TechCrunch reports: Hackers are targeting a previously reported bug in the Signal clone app TeleMessage in an effort to steal users’ private data, according to security researchers and a U.S. government agency. TeleMessage, which earlier this year was revealed to be used by high-ranking officials in the Trump administration, already experienced at least one data breach in May. […]

Data Breach News, News, Vulnerabilities
July 13, 2025
191 views 2 secs 0

CISA orders agencies to immediately patch Citrix Bleed 2, saying bug poses ‘unacceptable risk’

Recorded Future reports: The federal cybersecurity watchdog ordered all civilian agencies to immediately patch a vulnerability impacting several NetScaler products used by organizations to manage network traffic. The Cybersecurity and Infrastructure Security Agency (CISA) added the bug — tracked as CVE-2025-5777 — to its catalog of known exploited vulnerabilities on Thursday afternoon but took the extraordinary step […]

Vulnerabilities, Data Breach News
June 29, 2025
774 views 8 secs 0

Citrix Bleed 2 flaw now believed to be exploited in attacks

Bleeping Computer reports: A critical NetScaler ADC and Gateway vulnerability dubbed “Citrix Bleed 2” (CVE-2025-5777) is now likely exploited in attacks, according to cybersecurity firm ReliaQuest, seeing an increase in suspicious sessions on Citrix devices. Citrix Bleed 2, named by cybersecurity researcher Kevin Beaumont due to its similarity to the original Citrix Bleed (CVE-2023-4966), is […]

Vulnerabilities, Data Breach News
June 24, 2025
744 views 59 secs 0

Critical Fortinet Vulnerabilities Exploited by the Qilin Ransomware Group

NetSec reports: The Qilin ransomware group has been noticed exploiting two critical vulnerabilities present in FortiOS/FortiProxy equipment. Although the group seems to be focusing on countries with Spanish language, it is likely that attacks exploiting these vulnerabilities will spread to other countries. The Qilin ransomware-as-a-service (RaaS) operation appeared in August 2022, known first as Agenda. Although it is not […]

Data Breach News, Malware Ransomware, News, Vulnerabilities
June 15, 2025
287 views 2 secs 0

CISA warns of SimpleHelp ransomware compromises after string of retail attacks

The Record reports: Ransomware gangs have been exploiting a vulnerability in remote device control software SimpleHelp during a recent string of attacks, according to federal cybersecurity officials.  The Cybersecurity and Infrastructure Security Agency (CISA) warned on Thursday that CVE-2024-57727 — a vulnerability affecting SimpleHelp’s widely-used remote access tools — was exploited to “compromise customers of […]

Vulnerabilities, Consumer Alerts
June 15, 2025
876 views 39 secs 0

Hackers are using Google.com to deliver malware by bypassing antivirus software. Here’s how to stay safe

TechRadar reports: A new browser-based malware campaign has surfaced, demonstrating how attackers are now exploiting trusted domains like Google.com to bypass traditional antivirus defenses. A report from security researchers at c/side, this method is subtle, conditionally triggered, and difficult for both users and conventional security software to detect. It appears to originate from a legitimate OAuth-related URL, but covertly […]

New Threats, Vulnerabilities
June 13, 2025
744 views 59 secs 0

Unpatched IT Tool Opens Door – Hackers Breach Billing Software Firm via SimpleHelp RMM

GBHackers reports: Cybersecurity professionals and business leaders are on high alert following a confirmed breach of a utility billing software provider, traced to unpatched vulnerabilities in the widely used SimpleHelp Remote Monitoring and Management (RMM) platform. The Cybersecurity and Infrastructure Security Agency (CISA) has issued a critical advisory warning that ransomware actors have leveraged these security gaps […]

Vulnerabilities, Data Breach News
June 02, 2025
763 views 29 secs 0

0day for vBulletin: PoC is already online, but no one is installing the patch

When criminals note that there is an unpatched vulnerability, expect more attacks to follow. A Russian-language forum recently picked up a report from SecurityLab.ru. It begins (translation): Popular forums on vBulletin have once again been found to have holes through which arbitrary code can be executed directly on the server – without a login and […]

Consumer Alerts, Malware Ransomware, Vulnerabilities
May 18, 2025
240 views 57 secs 0

Be Careful What You Search For — Crypto Hackers Are Watching

Forbes reports: When you think of cybercriminal actors watching you, maybe phishing threats such as Hello Pervert, where the attacker claims to know where you live and has proof to back it up, spring to mind. Or how about the ransomware gang that has been found to install employee monitoring software to watch victims at work? Recent reports […]

Consumer Alerts, Vulnerabilities
April 24, 2025
942 views 32 secs 0

Millions of KIA cars at serious risk of being hacked – they only need to know the car’s license plate number to open and start the car

All it took was knowing the license plate, and millions of KIA cars could be hacked in a matter of seconds.   Unión Rayo reports that ethical researchers Sam Curry and Neiko Rivera found the vulnerability. It all starts with the portal Kia offers so users can connect their smartphones to the car. From there, they […]