Cybersecurity News
Stay informed about the latest cybersecurity incidents, vulnerabilities, and threat landscape changes. We cover data breaches, ransomware campaigns, critical CVEs, and regulatory updates – with context on what it means for you and how to protect yourself.
Chinese APT24 Uses New BadAudio Malware in Multi‑Year Cyber Espionage Campaign
Google Threat Intelligence Group (GTIG) has detailed a multi‑year cyber espionage operation attributed to the Chinese threat actor APT24 (also ...
Microsoft to Integrate Sysmon Natively into Windows 11 and Windows Server 2025
Microsoft has announced plans to add Sysmon (System Monitor) as a native, installable component in Windows 11 and Windows Server ...
CrowdStrike Insider Leak Exposes SSO Risks and the Evolving Insider Threat Landscape
In the second half of last month, CrowdStrike, one of the leading global cybersecurity vendors, confirmed an insider-driven data leak ...
CVE-2025-41115: Critical SCIM Vulnerability in Grafana Enterprise Enables Admin Account Takeover
A critical security flaw tracked as CVE-2025-41115 has been discovered in the commercial edition of Grafana Enterprise, scoring the maximum ...
Unpatched D-Link DIR-878 Vulnerabilities Put Home and Office Routers at Risk
The popular dual-band router D-Link DIR-878, widely used in homes and small offices, has been found to contain several serious ...
Microsoft Shuts Down KMS38 Offline Activation: Security and Compliance Implications for Windows Environments
Microsoft has effectively shut down one of the most widely used illicit activation methods for Windows—KMS38. Users report that the ...
RondoDox Botnet Exploits Critical XWiki CVE-2025-24893 RCE Vulnerability
A critical remote code execution (RCE) vulnerability CVE-2025-24893 in XWiki Platform is being actively exploited by the emerging RondoDox botnet, ...
Anthropic’s 90% Automated Cyberespionage Claim Draws Industry Skepticism—and Practical Lessons for Defenders
Anthropic reports it detected and disrupted a large-scale cyberespionage operation attributed to Chinese-linked group GTG-1002, asserting that up to 90% ...
Fortinet warns of active attacks exploiting FortiWeb CVE‑2025‑64446
Fortinet has confirmed broad, in‑the‑wild exploitation of a critical zero‑day vulnerability in the FortiWeb web application firewall (WAF). Tracked as ...
Protei Cyberattack Exposes DPI/SORM Vendor Risks for Global Telecom Operators
An extensive cybersecurity incident has reportedly hit international telecom solutions vendor Protei, with an unknown hacking group claiming to have ...
