Cybersecurity Articles

429/68 Wednesday, October 29, 2025 A recent report from Coveware, a ransomware response specialist, reveals a key statistic: the ransom-payment rate among victimised organisations has fallen to a record low. In the third quarter of 2025 only 23% of attacked companies paid a ransom. This continues a six-year downward trend (compared with 28% in Q1 […]

428/68 Tuesday, October 28, 2025 Security researchers have discovered that threat actors repurposed the open-source penetration-testing tool RedTiger, modifying it into an info-stealer malware. Attackers compile the tool into binaries and give them game- or Discord-related names to trick users into downloading them. When executed, the malware scans for Discord and web browser databases to […]

427/68 Tuesday, October 28, 2025 The Safepay ransomware group has claimed responsibility for a cyberattack that breached the systems of Xortec GmbH, a German provider of CCTV and security solutions. The group listed the company on its Data Leak Site, setting October 27, 2025, as the ransom payment deadline. Xortec, headquartered in Frankfurt with multiple […]

426/68 Tuesday, October 28, 2025 A large-scale attack campaign is targeting WordPress websites running outdated versions of the GutenKit and Hunk Companion plugins. Security company Wordfence reported blocking as many as 8.7 million attack attempts within just two days (October 8–9). The attacks exploit critical vulnerabilities (CVSS 9.8) that allow attackers to install arbitrary plugins […]

425/68 Monday, October 27, 2025 The Federal Service for Veterinary and Phytosanitary Surveillance, under Russia’s Ministry of Agriculture, suffered a major DDoS attack that temporarily disrupted its agricultural and chemical tracking systems, VetIS and Saturn. The incident severely impacted food transportation across the country, particularly the Mercury subsystem, which is used to issue electronic veterinary […]

424/68 Monday, October 27, 2025 Microsoft has released an out-of-band security update to fix a severe vulnerability in Windows Server Update Services (WSUS), tracked as CVE-2025-59287 with a CVSS score of 9.8. The flaw – a deserialization of untrusted data – allows a remote attacker to send a specially crafted cookie to the GetCookie() endpoint […]

423/68 Monday, October 27, 2025 Researchers from Palo Alto Networks Unit 42 have uncovered evidence of a large-scale, ongoing smishing (SMS phishing) operation tied to a China-based threat actor group known as the “Smishing Triad.” The group has been linked to more than 194,000 malicious domains. Since January 1, 2024, the group has been distributing […]

422/68 Friday, October 24, 2025 Meta has introduced a new set of tools designed to help WhatsApp and Messenger users protect themselves from online scammers and enhance account security. Messenger has begun testing an advanced scam detection system that alerts users when a new contact sends a suspicious message. Users can also choose to submit […]

421/68 Friday, October 24, 2025 Researchers from Darktrace have disclosed that the Chinese-linked APT group Salt Typhoon (also known as Earth Estries, FamousSparrow, GhostEmperor, UNC5807, and RedMike) breached a major European telecom company in July 2025 by exploiting a Citrix NetScaler Gateway vulnerability as the initial access vector. The attack began with the exploitation of […]

420/68 Friday, October 24, 2025 Taiwanese networking equipment manufacturer TP-Link has released two security advisories this week regarding four critical vulnerabilities affecting more than ten models of its Omada Gateway devices across the ER, G, and FR series. The company has already issued firmware updates to address these flaws and strongly advises all users of […]