APT29 Deploys GRAPELOADER Malware Targeting European Diplomats Through Wine-Tasting Lures
The Russian state-sponsored threat actor APT29 is linked to a sophisticated phishing campaign targeting European diplomatic entities, utilizing a new ...
Sunday, April 20, 2025
Tag: cyber news
ASUS Confirms Critical Flaw in AiCloud Routers; Users Urged to Update Firmware
ASUS has revealed a serious security vulnerability affecting routers with AiCloud enabled, allowing remote attackers to execute unauthorized functions on ...
Experts Uncover New XorDDoS Controller, Infrastructure as Malware Expands to Docker, Linux, IoT
SummaryCybersecurity researchers are raising alarms about the persistent threats from XorDDoS, a distributed denial-of-service (DDoS) malware, which has seen a ...
CVE-2025-24054 Under Active Attack—Steals NTLM Credentials on File Download
The U.S. Cybersecurity and Infrastructure Security Agency (CISA) has added a medium-severity security flaw, CVE-2025-24054 (CVSS score: 6.5), to its ...
Product Walkthrough: A Look Inside Wing Security's Layered SaaS Identity Defense
SaaS applications are crucial for enhancing productivity and efficiency in modern organizations, but they also introduce significant security risks due ...
Crypto Developers Targeted by Python Malware Disguised as Coding Challenges
The North Korea-linked threat actor responsible for the significant Bybit hack in February 2025 has been associated with a new ...
Pakistan-Linked Hackers Expand Targets in India with CurlBack RAT and Spark RAT
A threat actor linked to Pakistan has been identified targeting various sectors in India, employing multiple remote access trojans, including ...
SpyNote, BadBazaar, MOONSHINE Malware Target Android and iOS Users via Fake Apps
Cybersecurity researchers have discovered that threat actors are using deceptive websites on newly registered domains to distribute SpyNote, a known ...
OttoKit WordPress Plugin Admin Creation Vulnerability Under Active Exploitation
A high-severity security flaw affecting OttoKit (formerly SureTriggers), known as CVE-2025-3102 with a CVSS score of 8.1, is being actively ...
AkiraBot Targets 420,000 Sites with OpenAI-Generated Spam, Bypassing CAPTCHA Protections
Cybersecurity researchers have revealed details about AkiraBot, an AI platform used to spam website chats, comment sections, and contact forms ...
Stay informed with News Wave - your reliable source for breaking news, insightful analysis, and engaging stories all in a summarized format.