On July 22, 2025, CISA added two major Microsoft SharePoint flaws — CVE-2025-49704 (remote code execution) and CVE-2025-49706 (authentication bypass) — to its Known Exploited Vulnerabilities list after confirming active use in attacks. Federal agencies were ordered to patch by July 23. Microsoft reported that Chinese hacker groups, Linen Typhoon and Violet Typhoon, have been taking advantage of these bugs since early July using a method called “ToolShell,” which also involves...

Google has released an important update for its Chrome browser after discovering a serious security flaw that hackers are already using in real-world attacks.

The issue, found in Chrome’s graphics system, could allow attackers to break out of the browser's security protections just by getting someone to visit a harmful website. This kind of security issue is dangerous because it doesn’t require users to click or download anything — simply opening the page could put their device at...

Cybersecurity experts warn about a growing scam called TOAD (Telephone-Oriented Attack Delivery). Attackers send fake emails that appear to be from trusted brands like Microsoft, DocuSign, PayPal, or Norton. These emails often contain PDFs with QR codes or phone numbers.

Victims are tricked into calling these numbers, where scammers pose as support agents to steal personal information or install malware.

Scammers make these...

Microsoft has announced that it will officially end support for saved passwords in its Authenticator app starting August 1, 2025. Additionally, the app’s autofill feature will stop working in July 2025, marking a significant step in the company’s move toward a passwordless future.

This change is part of a broader effort to improve security and simplify the user experience. Microsoft is shifting its focus to stronger authentication methods like...

Cybersecurity experts have uncovered a global hacking campaign where attackers secretly steal passwords by planting hidden code in Microsoft Exchange email login pages.

The attacks have hit at least 65 organizations across 26 countries, including government offices, banks, schools, and tech companies. Once users enter their login details, the stolen information is either stored on the server or sent directly to the hackers using tools like...

Cybersecurity experts have discovered a new hacker group called Water Curse that uses fake GitHub repositories to spread multi-stage malicious software. Disguised as security or developer tools, the malicious software steals sensitive data like passwords, browser info, and session tokens, and gives hackers remote access to infected systems. It uses Visual Basic Script and PowerShell to run hidden scripts, install malicious apps, and gather system data while avoiding...

Why DNS Security Matters

While firewalls and antivirus tools get most of the attention, DNS is a critical — and often overlooked — layer of cybersecurity. As the system that connects users to websites, apps, and online services, DNS is essential to internet functionality. But because it wasn’t built with security in mind, it's become a prime target for attackers.

Common threats like DNS spoofing, hijacking, and tunneling can redirect users, steal data, or shut...

A Man-in-the-Middle (MiTM) attack places a hacker between your browser and a real website, often using malicious software to spy on or change your data.

A Browser-in-the-Middle (BiTM) attack is trickier. You think you're using your own browser, but you're actually interacting with a browser controlled by a hacker. They can watch, record, and manipulate everything you do online.

How BiTM Attacks Work

1. Phishing – You click a fake link...

   ---

   June 4, 2025 17:38 (on 6/5/25) |  0 | 2 minutes read

The Latrodectus malicious software now uses a trick called ClickFix to spread and run in a computer’s memory, making it hard to detect. It downloads other harmful software like ransomware and was first reported in April 2024. A big cleanup operation in May 2025 shut down many servers linked to it. Recent attacks trick users into running commands that secretly install malicious software without saving files. It often hides inside real apps like NVIDIA installers. Experts suggest turning off...

Cybercriminals are using fake Facebook pages and ads to impersonate Kling AI, a popular AI tool for creating images and videos. These ads lead users to fake websites like klingaimedia[.]com, which claim to offer AI services but instead trick visitors into downloading malicious software. The malicious files are hidden in ZIP archives and install a remote access trojan (RAT) that allows attackers to control the victim’s device and steal sensitive information such as passwords and...