Cybersecurity News

A new sophisticated DDoS botnet named Eleven11bot has emerged as a significant cybersecurity threat, successfully compromising more than 86,400 IoT devices worldwide. This large-scale infection represents one of the most substantial botnet deployments observed in recent years, raising serious concerns among cybersecurity experts about the vulnerability of connected devices. Global Impact and Distribution Analysis The … Read more

Cybersecurity researchers have uncovered a severe security vulnerability in the Spyzie surveillance application, exposing sensitive data of more than 500,000 Android users and approximately 5,000 iOS device owners. This critical breach has potentially compromised personal information without the knowledge of affected users, marking another significant incident in the surveillance software sector. Vulnerability Analysis and Impact … Read more

Broadcom’s security research team has identified three critical zero-day vulnerabilities in VMware’s virtualization products that are currently being actively exploited by threat actors. The Microsoft Threat Intelligence Center has confirmed these active exploitation attempts, significantly elevating the risk level for organizations utilizing affected VMware solutions. Technical Analysis of the Zero-Day Vulnerabilities The most severe vulnerability, … Read more

A groundbreaking investigation by renowned cybersecurity researcher Brian Krebs has uncovered concerning connections between Kaspersky Lab’s network infrastructure and Prospero, a hosting provider notorious for its associations with cybercriminal activities. This discovery raises significant questions about the intersection of legitimate security services and potentially malicious network operations. Prospero’s Controversial Operations and Criminal Links French cybersecurity … Read more

A joint investigation by Amnesty International and Google’s Threat Analysis Group (TAG) has uncovered a sophisticated cyber surveillance operation utilizing previously unknown vulnerabilities in Android devices. The investigation revealed that law enforcement agencies were exploiting three critical zero-day vulnerabilities in Linux kernel USB drivers to compromise targeted Android devices. Technical Analysis of the Zero-Day Exploit … Read more

A coordinated international cybersecurity operation has successfully disrupted BadBox 2.0, a sophisticated Android botnet that had infected over one million devices worldwide. The operation resulted in the neutralization of malicious activity on 500,000 compromised devices and the removal of 24 malicious applications from the Google Play Store. Technical Analysis of BadBox 2.0 Infrastructure BadBox 2.0 … Read more

YouTube’s cybersecurity team has uncovered a sophisticated phishing operation leveraging artificial intelligence to create convincing deepfake videos of CEO Neal Mohan. This large-scale campaign specifically targets content creators by exploiting concerns about monetization policy changes, marking a significant evolution in social engineering tactics. Sophisticated Phishing Operation Details The attackers have implemented a multi-layered approach, beginning … Read more

Security researchers at SquareX Labs have uncovered a sophisticated polymorphic attack vector targeting Google Chrome users through malicious extensions. This critical vulnerability enables threat actors to create extensions that can dynamically impersonate legitimate password managers, cryptocurrency wallets, and banking applications, potentially exposing sensitive user credentials to unauthorized access. Understanding the Attack Vector: Polymorphic Extension Exploitation … Read more

Kaspersky security researchers have uncovered a sophisticated malware campaign distributing the SilentCryptoMiner malware by exploiting YouTube content creators through blackmail tactics. The operation, specifically targeting Russian users, has already affected over 2,000 confirmed victims, with actual numbers potentially much higher. Sophisticated Distribution Strategy Through Content Creator Exploitation The attackers have implemented a complex scheme targeting … Read more

Cybersecurity researchers have identified active exploitation of a critical vulnerability in the Paragon Partition Manager driver (BioNTdrv.sys), which threat actors are leveraging to conduct ransomware attacks on Windows systems. The vulnerability enables privilege escalation and arbitrary code execution, posing a significant risk to organizational security. Understanding the CVE-2025-0289 Vulnerability Impact According to CERT/CC, this zero-day … Read more