Cybersecurity Articles

202/68 Thursday, June 5, 2025 Hewlett Packard Enterprise (HPE) has issued a security advisory warning of eight vulnerabilities affecting its StoreOnce data backup and deduplication solution, widely used in enterprise environments. The most critical flaw, CVE-2025-37093 (CVSS 9.8), is an authentication bypass vulnerability caused by a flaw in the machineAccountCheck function. This issue allows attackers […]

201/68 Thursday, June 5, 2025 Cybersecurity experts are warning of a new malware strain called Crocodilus, which is rapidly spreading across Android devices globally. Initially detected in Turkey, Crocodilus disguises itself as fake banking apps, fake browser updates, and malicious ads to infect users. While early tests in March showed it targeting primarily Turkish Android […]

200/68 Wednesday, June 4, 2025 Qualcomm has issued patches to address three zero-day vulnerabilities that have been actively exploited in the wild. These flaws were reported by Google’s Android Security team and are tracked as CVE-2025-21479, CVE-2025-21480, and CVE-2025-27038. The company distributed the patches to OEMs in May 2025 and strongly recommends immediate updates. Details […]

199/68 Wednesday, June 4, 2025 Australia has introduced new regulations mandating organizations with annual revenues of over AUD 3 million (approximately USD 2 million) to report ransomware payments and any related communications within 72 hours of the incident. The move is part of Australia’s broader national cybersecurity strategy, which aims to position the country as […]

198/68 Friday, May 30, 2025 A U.S. court has obtained a guilty plea from Sina Gholinejad, an Iranian national, for his role in the Robbinhood ransomware attacks that severely disrupted city systems in Baltimore and Greenville, United States. The attack caused over $19 million in damages in Baltimore alone, crippling key public services such as […]

197/68 Friday, May 30, 2025 Cybersecurity firm Darktrace has discovered a new botnet dubbed “PumaBot”, which is actively targeting Internet of Things (IoT) devices running on Linux. Unlike traditional widespread scans, PumaBot uses SSH brute-force attacks to compromise devices and expand its botnet network. It pulls a curated list of IP addresses from an external […]

196/68 Thursday, May 29, 2025 The ransomware group DragonForce has been identified as the actor behind a series of supply chain attacks targeting Managed Service Providers (MSPs). The attackers exploited vulnerabilities in SimpleHelp, a widely used Remote Monitoring and Management (RMM) platform, to breach MSP networks, conduct reconnaissance on client environments, exfiltrate sensitive data, and […]

195/68 Thursday, May 29, 2025 Cybersecurity researchers have issued a warning about a large-scale malware campaign spreading across social media platforms, particularly Facebook and LinkedIn. A threat actor known as UNC6032 is exploiting growing public interest in artificial intelligence by distributing fake advertisements promoting AI-powered video generation tools. These ads claim to offer text-to-video AI […]

194/68 Wednesday, May 28, 2025 Nova Scotia Power, a Canadian electric utility company, officially confirmed on May 23, 2025, that it had fallen victim to a ransomware attack. Despite the theft and public exposure of customer data, the company stated that it did not pay any ransom, citing legal considerations related to sanctions and guidance […]

193/68 Wednesday, May 28, 2025 Cybersecurity experts at Trend Micro have uncovered a malicious campaign where cybercriminals are leveraging AI-generated TikTok videos to trick users into executing PowerShell commands that install dangerous malware such as Vidar and StealC. The videos claim to show users how to activate popular software like Windows, Microsoft Office, CapCut, or […]