Cybersecurity News
Stay up-to-date with the latest cybersecurity news and developments in the cybersecurity landscape. Be the first to know about the latest threats, current innovations, and major trends in the cyber universe. Check our Cyber News section for the freshest information.
Smishing at Scale: Attackers Abuse Milesight Cellular Routers as Decentralized SMS Gateways
Threat researchers at Sekoia have documented ongoing campaigns, active since 2023, in which adversaries compromise Milesight cellular IoT routers and ...
CVE-2025-10547: Critical RCE in DrayTek Vigor Routers — What Admins Must Do Now
DrayTek has disclosed a critical vulnerability, tracked as CVE-2025-10547, that enables unauthenticated remote code execution (RCE) on multiple Vigor router ...
Klopatra: New Android Banking Trojan with Hidden VNC “Black Screen” Remote Control
Security researchers at Cleafy have identified Klopatra, a previously undocumented Android banking trojan combined with a full-fledged remote access tool ...
Ask Brave: A Privacy‑Focused AI Search Chat Built on RAG
Brave Software has introduced Ask Brave, a new interface that merges traditional web search with a generative AI chat in ...
CISA: Critical sudo CVE-2025-32463 actively exploited for Linux privilege escalation
The U.S. Cybersecurity and Infrastructure Security Agency (CISA) has warned that attackers are actively exploiting CVE-2025-32463, a critical flaw in ...
Battering RAM: Hardware Attack Undermines Intel SGX and AMD SEV‑SNP Protections
Researchers from KU Leuven and the University of Birmingham have disclosed Battering RAM, a hardware attack that defeats key confidential ...
UK issues £1.5bn UKEF guarantee to Jaguar Land Rover after cyberattack: what it means for supply chains and cyber resilience
The UK government has approved a £1.5 billion credit guarantee for Jaguar Land Rover (JLR) under UK Export Finance’s Export ...
Western Digital fixes critical My Cloud command injection (CVE-2025-30247) with firmware 5.31.108
Western Digital has released firmware version 5.31.108 for My Cloud network-attached storage (NAS) devices to remediate CVE-2025-30247, a critical command ...
Discord probes third-party support breach as payment and identity data exposed
On 20 September 2025, Discord disclosed a security incident stemming from a compromise of a third‑party customer support provider. The ...
MatrixPDF Builder Turns Benign PDFs into Click‑Through Phishing Lures That Bypass Gmail Filters
Varonis researchers have identified MatrixPDF, a commercial builder that converts legitimate PDF files into interactive phishing decoys. The tool leverages ...
