Cybersecurity News
Stay informed about the latest cybersecurity incidents, vulnerabilities, and threat landscape changes. We cover data breaches, ransomware campaigns, critical CVEs, and regulatory updates – with context on what it means for you and how to protect yourself.
Afghanistan’s Nationwide Internet Blackout on 29 September 2025: What Happened and What Comes Next
Afghanistan experienced a nationwide internet blackout on 29 September 2025, confirmed by monitoring platforms NetBlocks and Cloudflare Radar. The disruption ...
Georgia Tech finds privacy vulnerabilities in Tile Bluetooth trackers
Researchers from the Georgia Institute of Technology have disclosed multiple privacy weaknesses in Tile Bluetooth trackers that could enable long-term ...
Google’s AI boosts Drive for desktop with ransomware detection, sync pause, and guided recovery
Google has rolled out an AI-driven ransomware defense for Drive for desktop on Windows and macOS that detects behaviors typical ...
PyPI Revokes Compromised Tokens After GhostAction Attack, Urges Shift to Short-Lived Credentials
The Python Software Foundation (PSF) has invalidated all PyPI tokens compromised during the GhostAction supply chain campaign uncovered in early ...
Fake GitHub Repositories Push Atomic Stealer (AMOS) to macOS Users via SEO Poisoning
Threat actors are abusing search engine optimization (SEO) to seed fake GitHub repositories that impersonate well-known macOS software and redirect ...
Critical OxygenOS flaw CVE-2025-10184 exposes SMS on OnePlus phones
Security researchers at Rapid7 have disclosed a critical flaw in multiple versions of OxygenOS, the Android-based firmware used on OnePlus ...
BO Team rewrites BrockenDoor in C# and expands ZeronetKit as phishing targets Russian organizations
At the start of September 2025, Kaspersky researchers observed a renewed campaign by the hacktivist collective BO Team—also tracked as ...
Cisco zero‑day in IOS/IOS XE SNMP (CVE‑2025‑20352) enables DoS and potential RCE: what to do now
Cisco has disclosed an actively exploited zero‑day vulnerability, CVE‑2025‑20352, that affects all supported releases of IOS and IOS XE. The ...
PSF warns of new PyPI phishing campaign targeting maintainers and developers
The Python Software Foundation (PSF) has alerted the community to a fresh wave of phishing emails impersonating Python Package Index ...
New XCSSET macOS variant hijacks clipboard and steals Firefox data
Microsoft Threat Intelligence has identified a refreshed iteration of the modular macOS malware XCSSET. The campaign introduces two high‑impact capabilities—clipboard ...
