Cybersecurity
-
Critical Craft CMS Flaws Exploited in Wild: 300+ Servers Breached, Experts Warn
Cybersecurity experts are warning website owners after hackers began actively exploiting two critical vulnerabilities in Craft CMS, a content management system, leaving hundreds of servers compromised. The flaws — CVE-2024-58136 and CVE-2025-32432 — were discovered by Orange Cyberdefense’s SensePost team during a forensic investigation in mid-February. Their research revealed that attackers are using these bugs…
-
Most CEOs Agree: Business Growth Hinges on Cybersecurity
85% of CEOs say cybersecurity fuels business growth. Learn how AI, global threats, and evolving priorities are reshaping the security landscape.
-
Lotus Panda Hackers Strike Southeast Asian Governments With Browser Stealers, Sideloaded Malware
Chinese-linked group Lotus Panda targeted Southeast Asian governments with sideloaded malware and Chrome credential stealers, says Symantec.
-
Hackers Exploit Russian Host Proton66 for Global Malware Attacks, Researchers Say
A notorious Russian hosting service provider known as Proton66 is at the center of a series of widespread cyberattacks and malware campaigns targeting organizations and users worldwide, according to fresh findings from cybersecurity experts. Researchers at Trustwave SpiderLabs have linked the provider to a surge in dangerous activities — from credential brute-forcing and mass vulnerability…
-
Russian Hackers Target European Diplomats with ‘Wine-Tasting’ Phishing Scams
A Russian state-linked hacking group is ramping up its cyberattacks against diplomatic targets across Europe, using a new stealthy malware tool known as “GrapeLoader” to deliver malicious payloads through cleverly disguised phishing emails. According to Check Point Research, the campaign began in January 2025 and is being carried out by APT29 — also known as…
-
Funding Crisis Averted: US Extends CVE Program Support Amid Outcry and Rising Concerns
The U.S. extends CVE program funding hours before expiration, averting a crisis and prompting moves toward a more sustainable, community-led future.
-
CISA Faces Massive Cuts, Sparking Security Fears and Political Blowback
Massive layoffs loom at CISA, with 40% of staff at risk. Critics warn the cuts could cripple U.S. cyber defenses and threaten national security.
-
USPS Warns Public About Rising Mail, Email Scams—How to Spot and Avoid Them
Discover how evolving USPS mail scams highlight growing cybersecurity risks. Learn how phishing, smishing, and brushing attacks threaten your personal data.
-
ToddyCat Hackers Exploit ESET Flaw to Launch Stealthy TCESB Attack
ToddyCat hackers exploit ESET flaw (CVE-2024-11859) to deploy stealthy TCESB malware using DLL hijacking and a vulnerable Dell driver.
-
Xanthorox AI: A New Breed of Malicious AI Threat Hits the Darknet
Xanthorox AI, a darknet-exclusive tool, uses five custom models to launch advanced, autonomous cyberattacks, ushering in a new AI threat era.
