208/68 Tuesday, June 10, 2025 The FBI has issued a warning about the widespread outbreak of BadBox 2.0 malware, which is reportedly infecting millions of IoT devices globally. The affected devices are primarily manufactured in China, including smart TV boxes, projectors, and infotainment systems, many of which are preloaded with malware either during manufacturing or […]
207/68 Tuesday, June 10, 2025 Cybersecurity experts are warning about a new variant of the Mirai malware that exploits a Command Injection vulnerability, tracked as CVE-2024-3721, to hijack TBK DVR-4104 and DVR-4216 digital video recorder devices, commonly used in CCTV systems. The vulnerability was disclosed by a researcher known as “netsecfish” in April 2024, along […]
206/68 Monday, June 9, 2025 Cybersecurity researchers from Cisco Talos have uncovered a new data-wiping malware called PathWiper, used in targeted attacks against Ukraine’s critical infrastructure. The malware is designed to destroy data and disrupt operations. Attackers reportedly used a legitimate endpoint administration tool to deploy the payload, indicating that they had likely obtained admin-level […]
205/68 Monday, June 9, 2025 Cybersecurity researchers are warning of a new and increasingly sophisticated phishing technique known as “ClickFix,” which is rapidly gaining traction and targeting businesses worldwide. The technique represents a significant evolution in social engineering attacks, as it lures victims into performing seemingly routine or benign tasks that ultimately lead to malware […]
204/68 Friday, June 6, 2025 Cybersecurity researchers have disclosed a critical vulnerability tracked as CVE-2025-49113 (CVSS score: 9.9) in Roundcube Webmail, a widely used open-source webmail platform that has been in operation for over 10 years. The flaw allows authenticated attackers to execute arbitrary code remotely (Remote Code Execution) and potentially take full control of […]
203/68 Friday, June 6, 2025 Ukrainian police have arrested a 35-year-old man accused of hacking into more than 5,000 user accounts from international hosting companies to illegally mine cryptocurrency using unauthorized server resources. The operation, which caused an estimated $4.5 million in damages, involved hijacking customer accounts used for website and platform hosting, installing and […]
202/68 Thursday, June 5, 2025 Hewlett Packard Enterprise (HPE) has issued a security advisory warning of eight vulnerabilities affecting its StoreOnce data backup and deduplication solution, widely used in enterprise environments. The most critical flaw, CVE-2025-37093 (CVSS 9.8), is an authentication bypass vulnerability caused by a flaw in the machineAccountCheck function. This issue allows attackers […]
201/68 Thursday, June 5, 2025 Cybersecurity experts are warning of a new malware strain called Crocodilus, which is rapidly spreading across Android devices globally. Initially detected in Turkey, Crocodilus disguises itself as fake banking apps, fake browser updates, and malicious ads to infect users. While early tests in March showed it targeting primarily Turkish Android […]
200/68 Wednesday, June 4, 2025 Qualcomm has issued patches to address three zero-day vulnerabilities that have been actively exploited in the wild. These flaws were reported by Google’s Android Security team and are tracked as CVE-2025-21479, CVE-2025-21480, and CVE-2025-27038. The company distributed the patches to OEMs in May 2025 and strongly recommends immediate updates. Details […]
199/68 Wednesday, June 4, 2025 Australia has introduced new regulations mandating organizations with annual revenues of over AUD 3 million (approximately USD 2 million) to report ransomware payments and any related communications within 72 hours of the incident. The move is part of Australia’s broader national cybersecurity strategy, which aims to position the country as […]
