Cybersecurity News
Jul 2nd, 2025 - A new Android malware campaign distributing a previously unidentified SMS stealer has infected nearly 100,000 devices, primarily in Uzbekistan. The malware, dubbed Qwizzserial, was identified by Group-IB researchers during a broader investigation into cybercriminal activities linked to the Ajina malware family. Telegram-Fueled Distribution and a Familiar Structure The Qwizzserial malware is being spread via Telegram, where cybercriminals pose as government agencies offering financial aid. ... [Read More]
Source: infosecurity-magazine.com
Jul 1st, 2025 - Google has released emergency updates to patch another Chrome zero-day vulnerability exploited in attacks, marking the fourth such flaw fixed since the start of the year. "Google is aware that an exploit for CVE-2025-6554 exists in the wild," the browser vendor said in a security advisory issued on Monday. "This issue was mitigated on 2025-06-26 by a configuration change pushed out to Stable channel across all platforms." The company fixed the zero-day for users in the Stable ... [Read More]
Source: bleepingcomputer.com
Jul 1st, 2025 - Help Net Security newsletters : Daily and weekly news, cybersecurity jobs, open source projects, breaking news – subscribe here! If you haven't recently updated the Sudo utility on your Linux box(es), you should do so now, to patch two local privilege escalation vulnerabilities (CVE-2025-32462, CVE-2025-32463) that have been disclosed on Monday. What is Sudo? Sudo is command-line utility in Unix-like operating systems that allows a low-privilege user to execute a command as another user, ... [Read More]
Source: helpnetsecurity.com
Jul 1st, 2025 - The lines between cybercrime and espionage are increasingly blurring, eroding the traditional distinctions between criminal hackers and state-sponsored actors. In a report published on June 30, Proofpoint highlighted substantial overlaps between two malicious campaigns. One originated from TA829, a hybrid hacking group that conducts both cyber extortion and pro-Russian cyber espionage activities, and the other from a newly identified cybercriminal cluster tracked as UNK_GreenSec. While it is ... [Read More]
Source: infosecurity-magazine.com
Jun 30th, 2025 - A security company has found eight security vulnerabilities that impact hundreds of Brother printer models. The company has released firmware updates to handle seven of these vulnerabilities, but one security flaw cannot be patched. Brother has indicated that it'll fix the remaining issue during the manufacturing process of future printers, which doesn't help current owners. The company recommends that users change the default main password. Otherwise, bad actors could remotely access impacted ... [Read More]
Source: engadget.com
Jun 30th, 2025 - Security researchers warn of session hijacking and MFA bypass via a critical NetScaler flaw, urging immediate mitigation steps. Citrix users are back in the crosshairs, as a new out-of-bounds read vulnerability, reminiscent of the notorious "Citrix Bleed," has surfaced with signs already pointing to active exploitation. The vulnerability tracked as CVE-2025-5777 and dubbed "Citrix Bleed 2" by the researchers, is an insufficient input validation issue affecting Citrix NetScaler ADC and NetScaler ... [Read More]
Source: csoonline.com
Jun 30th, 2025 - By Zak Doffman If You See These Messages On Your PC, You're Being Hacked Zak Doffman writes about security, surveillance and privacy. , in which you are tricked into hacking your own PC when you follow on-screen instructions to fix a technical issue, open a secure file or website, or prove your human through a popup CAPTCHA challenge. But what should come as more of a surprise is that these attacks are still claiming countless victims, despite being so easy to detect and avoid — in theory ... [Read More]
Source: forbes.com
Jun 27th, 2025 - Frequently asked questions about recent Citrix NetScaler ADC and Gateway vulnerabilities that have reportedly been exploited in the wild, including CVE-2025-5777 known as CitrixBleed 2. Background Tenable's Research Special Operations (RSO) team has compiled this blog to answer Frequently Asked Questions (FAQ) regarding CVE-2025-5777 and CVE-2025-6543, two Citrix NetScaler ADC and Gateway vulnerabilities that have reportedly been exploited in the wild. FAQ What vulnerabilities have been ... [Read More]
Source: securityboulevard.com
Jun 27th, 2025 - If you're still using WinRAR, you should update to version 7.12 as soon as possible. A vulnerability labeled CVE-2025-6218 was recently discovered in older versions of the popular Windows file compression tool. The security vulnerability in question can reportedly be exploited by hackers to bypass the app's built-in security features, increasing the risk of malware execution, reports BleepingComputer . The issue was first reported on June 5th, 2025 through the Zero Day Initiative, and WinRAR ... [Read More]
Source: pcworld.com
Jun 25th, 2025 - Trojanized NetExtender Installer Exfiltrates Data to Hardcoded IP Address Fake versions of SonicWall VPN software contain a credential-stealing Trojan, the California network security company warned Monday. A hacking campaign distributed a tweaked version of NetExtender software enabling remote users to connect and run applications on the company network. The threat actor behind the campaign hosted on websites impersonating SonicWall a malicious version of NetExtender version 10.3.2.27, the ... [Read More]
Source: healthcareinfosecurity.com
Jul 2nd, 2025 - A new Android malware campaign distributing a previously unidentified SMS stealer has infected nearly 100,000 devices, primarily in Uzbekistan. The malware, dubbed Qwizzserial, was identified by Group-IB researchers during a broader investigation into cybercriminal activities linked to the Ajina malware family. Telegram-Fueled Distribution and a Familiar Structure The Qwizzserial malware is being spread via Telegram, where cybercriminals pose as government agencies offering financial aid. ... [Read More]
Source: infosecurity-magazine.com
Jul 1st, 2025 - Google has released emergency updates to patch another Chrome zero-day vulnerability exploited in attacks, marking the fourth such flaw fixed since the start of the year. "Google is aware that an exploit for CVE-2025-6554 exists in the wild," the browser vendor said in a security advisory issued on Monday. "This issue was mitigated on 2025-06-26 by a configuration change pushed out to Stable channel across all platforms." The company fixed the zero-day for users in the Stable ... [Read More]
Source: bleepingcomputer.com
Jul 1st, 2025 - Help Net Security newsletters : Daily and weekly news, cybersecurity jobs, open source projects, breaking news – subscribe here! If you haven't recently updated the Sudo utility on your Linux box(es), you should do so now, to patch two local privilege escalation vulnerabilities (CVE-2025-32462, CVE-2025-32463) that have been disclosed on Monday. What is Sudo? Sudo is command-line utility in Unix-like operating systems that allows a low-privilege user to execute a command as another user, ... [Read More]
Source: helpnetsecurity.com
Jul 1st, 2025 - The lines between cybercrime and espionage are increasingly blurring, eroding the traditional distinctions between criminal hackers and state-sponsored actors. In a report published on June 30, Proofpoint highlighted substantial overlaps between two malicious campaigns. One originated from TA829, a hybrid hacking group that conducts both cyber extortion and pro-Russian cyber espionage activities, and the other from a newly identified cybercriminal cluster tracked as UNK_GreenSec. While it is ... [Read More]
Source: infosecurity-magazine.com
Jun 30th, 2025 - A security company has found eight security vulnerabilities that impact hundreds of Brother printer models. The company has released firmware updates to handle seven of these vulnerabilities, but one security flaw cannot be patched. Brother has indicated that it'll fix the remaining issue during the manufacturing process of future printers, which doesn't help current owners. The company recommends that users change the default main password. Otherwise, bad actors could remotely access impacted ... [Read More]
Source: engadget.com
Jun 30th, 2025 - Security researchers warn of session hijacking and MFA bypass via a critical NetScaler flaw, urging immediate mitigation steps. Citrix users are back in the crosshairs, as a new out-of-bounds read vulnerability, reminiscent of the notorious "Citrix Bleed," has surfaced with signs already pointing to active exploitation. The vulnerability tracked as CVE-2025-5777 and dubbed "Citrix Bleed 2" by the researchers, is an insufficient input validation issue affecting Citrix NetScaler ADC and NetScaler ... [Read More]
Source: csoonline.com
Jun 30th, 2025 - By Zak Doffman If You See These Messages On Your PC, You're Being Hacked Zak Doffman writes about security, surveillance and privacy. , in which you are tricked into hacking your own PC when you follow on-screen instructions to fix a technical issue, open a secure file or website, or prove your human through a popup CAPTCHA challenge. But what should come as more of a surprise is that these attacks are still claiming countless victims, despite being so easy to detect and avoid — in theory ... [Read More]
Source: forbes.com
Jun 27th, 2025 - Frequently asked questions about recent Citrix NetScaler ADC and Gateway vulnerabilities that have reportedly been exploited in the wild, including CVE-2025-5777 known as CitrixBleed 2. Background Tenable's Research Special Operations (RSO) team has compiled this blog to answer Frequently Asked Questions (FAQ) regarding CVE-2025-5777 and CVE-2025-6543, two Citrix NetScaler ADC and Gateway vulnerabilities that have reportedly been exploited in the wild. FAQ What vulnerabilities have been ... [Read More]
Source: securityboulevard.com
Jun 27th, 2025 - If you're still using WinRAR, you should update to version 7.12 as soon as possible. A vulnerability labeled CVE-2025-6218 was recently discovered in older versions of the popular Windows file compression tool. The security vulnerability in question can reportedly be exploited by hackers to bypass the app's built-in security features, increasing the risk of malware execution, reports BleepingComputer . The issue was first reported on June 5th, 2025 through the Zero Day Initiative, and WinRAR ... [Read More]
Source: pcworld.com
Jun 25th, 2025 - Trojanized NetExtender Installer Exfiltrates Data to Hardcoded IP Address Fake versions of SonicWall VPN software contain a credential-stealing Trojan, the California network security company warned Monday. A hacking campaign distributed a tweaked version of NetExtender software enabling remote users to connect and run applications on the company network. The threat actor behind the campaign hosted on websites impersonating SonicWall a malicious version of NetExtender version 10.3.2.27, the ... [Read More]
Source: healthcareinfosecurity.com
You May Also Like…
How Legacy Systems Increase Cybersecurity Risks in Healthcare
Outdated hospital systems create huge cyber‑exposure. Learn four proven strategies to cut risk and see how ProcessBolt slashed unpatched assets by 42 % in 90 days.
What’s New in HECVAT 4.0 for 2025? Enhancing Vendor Security Standards in Higher Education
The Higher Education Community Vendor Assessment Toolkit (HECVAT) has long served as the gold standard for third-party security evaluations in higher education. With the introduction of HECVAT 4.0,...
Why Security Breaches Are a Growing Concern for EV Charging Stations
Critical security vulnerabilities plague more than 80,000 Electric Vehicle charging stations throughout Europe and North America, creating unprecedented risks for infrastructure operators. These...