372/68 Tuesday, September 30, 2025 The ongoing cyberattacks by the Akira ransomware group, targeting SonicWall SSL VPN appliances, have become increasingly concerning due to their sophistication. Researchers recently discovered that attackers could successfully log into accounts even when Multi-Factor Authentication (MFA) with OTP codes was enabled. Initially, the attacks were suspected to involve a zero-day […]
371/68 Monday, September 29, 2025 Researchers from Noma Labs have disclosed a critical vulnerability in Salesforce Agentforce, dubbed “ForcedLeak” (CVSS 9.4), which could be exploited through indirect prompt injection attacks to gain access to sensitive CRM data. The flaw affects organizations that have enabled the Web-to-Lead feature, stemming from insufficient AI context validation, over-compliance with […]
370/68 Monday, September 29, 2025 Researchers from Forcepoint X-Labs have issued a warning about a new email campaign that uses fake invoices as lures to distribute the XWorm RAT (Remote Access Trojan). This malware allows attackers to remotely control infected machines and steal sensitive user data. The phishing emails are sent with the subject line […]
369/68 Monday, September 29, 2025 Cybersecurity experts have discovered an attack in which hackers used SEO poisoning and search engine ads to promote fraudulent websites offering downloads of Microsoft Teams. Once installed, the victim’s computer becomes infected with the Oyster malware, providing attackers with an initial foothold into the organization’s network. The Oyster malware-also known […]
368/68 Friday, September 26, 2025 KNP Logistics Group (formerly Knights of Old), a historic UK transport company with a legacy of over 158 years, was forced to shut down in June 2025 after falling victim to the Akira ransomware gang. The attackers gained access to the company’s systems through a single weak employee password, without […]
367/68 Friday, September 26, 2025 Italian company Libraesva, developer of the Email Security Gateway (ESG) solution, has issued a security advisory regarding vulnerability CVE-2025-59689, which has been actively exploited by nation-state hackers through specially crafted compressed email attachments. The flaw allows attackers to execute command injection on the system under a non-privileged user account. The […]
366/68 Friday, September 26, 2025 The Python Software Foundation (PSF) has issued a warning about a new phishing campaign targeting Python developers and project maintainers. Threat actors have created fake websites impersonating the Python Package Index (PyPI) – the official repository for Python packages – tricking users into verifying their account credentials under the guise […]
365/68 Thursday, September 25, 2025 Security researchers have warned that the Operation Rewrite campaign is deploying BadIIS malware to conduct SEO poisoning attacks, targeting East Asia and Southeast Asia, particularly Vietnam. The goal is to manipulate search engine rankings, tricking users into visiting compromised websites that then redirect them to spam sites or unwanted content […]
364/68 Thursday, September 25, 2025 SolarWinds has released a hotfix to address a critical vulnerability tracked as CVE-2025-26399 (CVSS 9.8) affecting Web Help Desk. If successfully exploited, the flaw could allow attackers to perform remote code execution (RCE) on affected servers. The vulnerability stems from the deserialization of untrusted data within the AjaxProxy module and […]
363/68 Thursday, September 25, 2025 The U.S. Secret Service announced on Tuesday that it had seized a network of illegal electronic devices deployed across the New York area, which had been used to threaten U.S. government officials and posed a serious national security risk. The operation resulted in the confiscation of over 300 SIM servers […]
