Cybersecurity News
Stay informed about the latest cybersecurity incidents, vulnerabilities, and threat landscape changes. We cover data breaches, ransomware campaigns, critical CVEs, and regulatory updates – with context on what it means for you and how to protect yourself.
Secret Blizzard APT Group Targets Diplomats with Fake Kaspersky Antivirus in Sophisticated ISP Attack
Microsoft Threat Intelligence researchers have uncovered a sophisticated cyber espionage campaign targeting foreign diplomatic personnel in Moscow. The Secret Blizzard ...
Critical Vulnerability in Google Gemini CLI Enables Covert Command Execution
Cybersecurity researchers at Tracebit have uncovered a critical security vulnerability in Google’s Gemini CLI tool that allowed attackers to execute ...
Ransomware Groups Escalate to Physical Threats Against IT Staff and Families in 2025
The cybersecurity landscape has witnessed an alarming evolution in ransomware tactics, with threat actors increasingly resorting to physical intimidation against ...
Google Reverses goo.gl Shutdown Decision: Critical Changes for URL Management in 2025
Google has unexpectedly reversed its decision to completely shut down the popular goo.gl URL shortening service, which was scheduled to ...
Microsoft Increases .NET Bug Bounty Rewards to $40,000 for Critical Security Vulnerabilities
Microsoft has announced a substantial overhaul of its bug bounty program targeting .NET ecosystem vulnerabilities, raising maximum rewards to $40,000 ...
Critical SAP NetWeaver Vulnerability CVE-2025-31324 Exploited to Deploy Auto-Color Linux Malware
Cybersecurity researchers at Darktrace have documented a sophisticated cyberattack targeting a major U.S. chemical company, where threat actors successfully exploited ...
Amazon Q AI Assistant Compromised: Critical Security Breach Exposes Cloud Infrastructure Risks
A sophisticated cyberattack targeting Amazon’s AI-powered development assistant has exposed critical vulnerabilities in the tech giant’s security infrastructure. The breach, ...
VK’s Mass PyPI Package Registration Triggers Security False Alarm in Battle Against AI-Generated Threats
In June 2025, the Python Package Index (PyPI) administration encountered what initially appeared to be a massive malicious campaign but ...
Coyote Banking Trojan Exploits Microsoft UI Automation for Advanced Financial Data Theft
Cybersecurity researchers have identified a significant evolution in the Coyote banking trojan, which now leverages Microsoft UI Automation (UIA) technology ...
Critical Windows Vulnerability CVE-2025-47955 Threatens 37 Microsoft Products
A critical security vulnerability designated as CVE-2025-47955 has been discovered by security researchers at Positive Technologies, affecting a staggering 37 ...
