Cybersecurity News

Security researchers have discovered a critical vulnerability dubbed “Wallbleed” in the Great Firewall of China (GFW), providing unprecedented insights into the world’s most sophisticated internet filtering system. The vulnerability, actively exploited for research purposes from 2021 to 2024, has revealed crucial technical details about the firewall’s internal operations and architecture. Technical Analysis of the Wallbleed … Read more

In a groundbreaking development for mobile device security, Qualcomm and Google have announced a strategic partnership that will enable unprecedented eight-year security support for Android devices. This initiative marks a significant advancement in long-term mobile security protection, setting new standards for the industry and addressing growing cybersecurity concerns. Enhanced Security Timeline for Premium Android Devices … Read more

Microsoft has implemented an immediate suspension of the Windows 11 version 24H2 update distribution for systems running AutoCAD 2022. This decisive action comes in response to the discovery of a critical compatibility issue that renders the popular engineering software inoperable following the operating system update installation. Impact Assessment and Version Specificity The compatibility conflict is … Read more

Bitdefender Labs has uncovered a sophisticated phishing campaign targeting Counter-Strike 2 players, exploiting the anticipation surrounding upcoming major tournaments IEM Katowice 2025 and PGL Cluj-Napoca 2025. The operation combines social engineering tactics with fraudulent streaming content to compromise Steam accounts and steal cryptocurrency assets from unsuspecting victims. Advanced Social Engineering Tactics in Gaming Communities The … Read more

A significant security vulnerability (CVE-2024-34331) has been identified in Parallels Desktop for Mac, potentially allowing attackers to gain administrator privileges across all current versions of the popular virtualization software. Security researcher Mickey Jin has disclosed technical details of two distinct exploit methods that circumvent the platform’s security measures. Technical Analysis of the Vulnerability The core … Read more

Cybersecurity researchers at XLab have uncovered a massive malware campaign that has successfully compromised over 1.59 million Android TV devices across 226 countries. The newly evolved Vo1d botnet reached its peak activity on January 14, 2025, and currently maintains control over approximately 800,000 devices, marking it as one of the largest smart TV-focused malware operations … Read more

Cybersecurity researchers at Cyfirma have uncovered a sophisticated malware campaign distributing SpyLend through the Google Play Store. The malicious application, disguised as a legitimate financial tool called “Finance Simplified,” has accumulated over 100,000 downloads and is specifically targeting users in India as part of a broader SpyLoan fraud scheme. Understanding SpyLend: A Sophisticated Financial Trojan … Read more

Cybersecurity researchers at Proofpoint have uncovered a sophisticated new information-stealing malware dubbed FrigidStealer, specifically targeting macOS users. This advanced threat actor leverages compromised websites and fake browser update notifications to harvest sensitive user data, marking a significant evolution in macOS-targeted cyber attacks. Threat Actor Groups and Distribution Infrastructure Two distinct threat groups, identified as TA2726 … Read more

Security researchers at Qualys have discovered two significant vulnerabilities in OpenSSH, exposing systems to Man-in-the-Middle (MitM) and Denial of Service (DoS) attacks. Most concerning is the revelation that one of these vulnerabilities remained undetected for over a decade, potentially compromising countless systems worldwide. Long-standing MitM Vulnerability Threatens SSH Communications The more severe vulnerability (CVE-2025-26465) was … Read more

Kaspersky Lab researchers have uncovered a sophisticated malware campaign dubbed “StaryDobry” that specifically targets users of pirated video games. The operation deploys the XMRig cryptocurrency miner through modified versions of popular games, utilizing victims’ computing resources to mine Monero cryptocurrency while evading detection. Campaign Timeline and Targeted Games The malicious campaign gained significant momentum during … Read more