240/68 Wednesday, July 2, 2025 The U.S. Cybersecurity and Infrastructure Security Agency (CISA) has added a newly identified vulnerability in Citrix NetScaler to its Known Exploited Vulnerabilities (KEV) Catalog. The vulnerability, tracked as CVE-2025-6543, has a CVSS score of 9.2 and is classified as a memory overflow flaw. If exploited, it could lead to unintended […]
239/68 Wednesday, July 2, 2025 A concerning incident occurred in April when unidentified hackers gained access to the control systems of the Lake Risevatnet dam, located near the town of Svelgen in southwestern Norway. The attackers managed to fully open the dam’s water discharge valves for a continuous period of four hours. The dam’s owner, […]
238/68 Tuesday, July 1, 2025 Cloudflare has launched an End-to-End Encryption (E2EE) feature for its video calling platform Orange Meets and released the source code as open source to promote transparency and allow developers, researchers, and security professionals to freely study or build upon the platform. Orange Meets was originally developed as a demo project […]
237/68 Tuesday, July 1, 2025 Cybersecurity researchers have disclosed critical vulnerabilities in Airoha Bluetooth chipsets used in over 29 popular audio devices from 10 leading manufacturers, including Beyerdynamic, Bose, Sony, Marshall, Jabra, and JBL. These vulnerabilities could allow attackers to eavesdrop on conversations or even steal sensitive user data. The affected devices include wireless speakers, […]
236/68 Monday, June 30, 2025 Researchers from the STRIKE team at SecurityScorecard have uncovered a cyber-espionage campaign known as “LapDogs,” which is linked to China-nexus threat actors. The operation involves the compromise of over 1,000 SOHO (Small Office/Home Office) devices, creating a covert network called the Operational Relay Box (ORB). This network is used to […]
235/68 Monday, June 30, 2025 France’s cybercrime unit, the Brigade de Lutte contre la Cybercriminalité (BL2C), has arrested five individuals believed to be senior members of BreachForums—a notorious dark web marketplace known for trafficking in leaked data, hacking tools, and breached databases. Among the four most recently arrested suspects are individuals known by the aliases […]
234/68 Friday, June 27, 2025 Citrix has released a security update addressing a critical vulnerability (CVE-2025-6543) in its NetScaler ADC product, which carries a CVSS severity score of 9.2. The flaw is categorized as a memory overflow, which may lead to unintended code execution and potentially enable Denial-of-Service (DoS) attacks. The vulnerability affects systems configured […]
233/68 Friday, June 27, 2025 Researchers from Rapid7 have discovered eight security vulnerabilities affecting up to 748 models of printers, scanners, and label printers from five major manufacturers. Among these, 689 models are from Japanese manufacturer Brother, with 695 models affected by a critical vulnerability tracked as CVE-2024-51978, which cannot be patched via firmware. This […]
232/68 Thursday, June 26, 2025 On June 13, 2025, the U.S. Department of Homeland Security (DHS) issued a cybersecurity warning, citing an increased risk of domestic cyber threats in the wake of U.S. airstrikes targeting Iranian nuclear infrastructure. The warning comes amid escalating tensions between Iran and Israel. DHS stated that pro-Iranian hacktivist groups and […]
231/68 Thursday, June 26, 2025 Cybersecurity firm Kaspersky has identified a new strain of spyware called SparkKitty, discovered hiding in applications on both the Apple App Store and Google Play Store. The spyware’s primary objective is to steal all images from a victim’s phone—specifically looking for pictures containing cryptocurrency-related information, such as wallet recovery phrases, […]
