A new zero-day vulnerability has been discovered in Sitecore, and attackers are already taking advantage of it. The flaw is tracked as CVE-2025-53690 and has been linked to active exploitation in the wild. Security researchers from Mandiant revealed that hackers are using this weakness to run malicious code on vulnerable servers, giving them a direct … Continued
Security researchers have discovered a cyber campaign where Chinese-linked hackers are secretly manipulating Google search results to push gambling websites. The operation, uncovered by cybersecurity company ESET, has been named GhostRedirector. Evidence shows it started in August 2024 and was still active in June 2025, running undetected for many months. The attackers managed to compromise … Continued
Japan, South Korea, and the United States recently held a joint forum in Tokyo to tackle a sophisticated scam. In this scheme, individuals connected to North Korea pretend to be IT professionals. They apply for remote jobs, get hired by unsuspecting companies, then steal data, funnel money back to North Korea, or launder payroll. At … Continued
A new cyber-espionage campaign has come to light, this time linked to hackers connected with Iran. Security researchers discovered that attackers compromised more than 100 embassy and government email accounts to target diplomats around the world. By abusing official mailboxes, the hackers were able to make their phishing messages look completely authentic. Investigators found that … Continued
WordPress, the world’s most widely used website platform, is facing yet another wave of security issues. Researchers have revealed that many WordPress sites are being compromised and abused through malicious or vulnerable plugins. These hacked sites are being used to spread two major threats, known as ClickFix attacks and Traffic Distribution Systems (TDS). Both of … Continued
A Ukrainian network known as FDN3 has been identified as the source of large brute-force attacks targeting SSL VPNs and Remote Desktop Protocol (RDP) devices. Security researchers observed these attacks during June and July 2025, with the most intense surge recorded between July 6 and July 8. Instead of quick hits, some of the campaigns … Continued
A new malicious npm package has been discovered, and this time the target was not just developers but also cryptocurrency users. The package, named nodejs-smtp, was designed to look like the widely used Nodemailer library. On the surface, it worked like a normal tool for sending emails, but hidden inside was code that attempted to … Continued
ScarCruft, a North Korean state-linked hacking group also known as APT37, has recently carried out a new cyber-espionage operation that researchers have named Operation HanKook Phantom. This campaign is focused on South Korean academics, researchers, and policy experts, and its main weapon is a malware strain called RokRAT. The operation was uncovered by Seqrite and … Continued
FreePBX servers have come under attack after hackers found a new zero-day vulnerability. The company behind the software, Sangoma, has confirmed that criminals are already using this flaw to break into systems. An emergency patch has now been released to fix the issue, and all administrators are being told to act quickly. The problem is … Continued
Cybersecurity researchers have recently exposed a dangerous new malware campaign that hides inside what looks like a harmless PDF editing tool. Attackers are disguising their malicious software as “AppSuite PDF Editor,” which is being pushed through fake advertisements online. The campaign has already affected multiple organizations in Europe and poses a serious threat to anyone … Continued
