“Arda” PowerLess Malware
2025-03-07
A well-known hacking group called GreenCharlie (also known as APT42, TA453, or Mint Sandstorm) has set up new online infrastructure between January and February 2025, which is believed to beRead More →
“mr. Guram” is back
2025-03-05
A cybercriminal named “mr. Guram,” affiliated with the notorious “Ramp” group, has launched Mimic v.10, a new Ransomware-as-a-Service (RaaS) program, allowing hackers and Initial Access Brokers (IABs) to distribute ransomwareRead More →
“Hackers’ New Playbook: How MSFTRecon Uncovers Microsoft 365 and Azure Weaknesses Without a Password!”
2025-02-26
On February 21, 2025, cybersecurity expert Jason Haddix, from Arcanum Information Security, released MSFTRecon—a powerful tool designed to scan Microsoft 365 and Azure for security loopholes, misconfigurations, and attack pathsRead More →
A Malware That EDR Can’t See?If You Rely on Antivirus for Protection, Read This Before It’s Too Late!
2025-02-19
A sophisticated cyberespionage group known as Earth Preta (also called Mustang Panda) has been identified using advanced techniques to infiltrate systems and evade detection. Their stealthy approach involves leveraging legitimateRead More →
“7****7” is selling a database of 45,000 Chinese women
2025-02-19
A cybercriminal known as “7****7” is selling a database of 45,000 Chinese women living in the US on a dark web marketplace called Chang’An Sleepless Night for $350. The databaseRead More →
Hacker’s Google Search Gave Him Away – You Won’t Believe What He Looked Up!
2025-02-12
Washington, D.C. – In a landmark case highlighting the growing cybersecurity threats to financial institutions and digital platforms, Eric Council Jr., a 25-year-old Alabama resident, has pleaded guilty to conductingRead More →
50,000 Users Hacked via WhatsApp!
2025-02-12
A large-scale malware campaign, dubbed FatBoyPanel, is targeting Android users in India, compromising over 50,000 victims. Security researchers from Zimperium attribute this attack to a single threat actor deploying overRead More →
GhostGPT is out – Write your own Malicious Code
2025-02-04
A new artificial intelligence (AI) tool called GhostGPT is being misused by cybercriminals to create harmful programs, hack systems, and send convincing phishing emails. Security researchers from Abnormal Security foundRead More →
Hackers Can Manipulate Your Heart Rate Monitor – Unbelievable Security Flaw!
2025-02-03
In a critical security disclosure, the Cybersecurity and Infrastructure Security Agency (CISA) and the U.S. Food and Drug Administration (FDA) have warned healthcare providers and cybersecurity professionals about a high-riskRead More →
“Enter0” is selling access
2025-01-31
There is a secretive online place called Exploit, which is like a dark web forum where hackers and cybercriminals gather to discuss and sell illegal things, like stolen data, hackedRead More →
Record breaking 5,600,000 megabits per second (Mbps) DDoS attack
2025-01-23
In October 2024, a very powerful cyberattack was launched. This attack was a type of DDoS attack. DDoS means “Distributed Denial of Service,” where hackers use many devices to overwhelmRead More →
Phishing youtube channels and links are stealing credentials
2025-01-21
Recently, cybercriminals launched a phishing attack using fake YouTube links to steal user login credentials. These links were cleverly disguised to look legitimate and used redirections through multiple websites toRead More →
Are Your Driving Habits and Location for Sale? GM Says Yes, FTC Says No
2025-01-20
The Federal Trade Commission (FTC) has initiated enforcement actions against General Motors (GM) and its subsidiary OnStar for unauthorized and misleading practices involving the collection and sale of sensitive driverRead More →
How Microsoft 365 account are getting hacked
2025-01-17
Introduction: In recent cyber incidents, attackers have been targeting Microsoft 365 accounts using a sophisticated and fast-paced method. On January 6, 2025, cybercriminals began exploiting a tool called “FastHTTP” toRead More →
GoDaddy Claimed to Be the Safest, but the U.S. Government Just Crowned It the Most Insecure Hosting Provider
2025-01-16
In a world where small businesses depend on the digital frontier for survival, a shadow loomed large over one of the industry’s titans. GoDaddy, the once-revered web hosting giant, isRead More →
FortiGate Firewalls Zero-Day Chaos: How Hackers Are Gaining Control of Firewalls Worldwide – Is Your Network at Risk?
2025-01-14
In December 2024, Arctic Wolf Labs uncovered a targeted campaign exploiting Fortinet FortiGate firewalls via publicly exposed management interfaces. This campaign enabled threat actors to gain unauthorized access, alter configurations,Read More →
How Hackers Remotely Control Any Samsung S23 and S24 in the World: Zero-Click Vulnerability & Exploit Explained
2025-01-10
A new zero-click vulnerability, CVE-2024-49415, has been uncovered by a Google Project Zero researcher, highlighting a critical flaw in Samsung’s implementation of Rich Communication Services (RCS). This vulnerability, with aRead More →
U.S. Cyber Trust Mark: The Label That Guarantees IoT Device Security: Everything You Need to Know
2025-01-09
In a move aimed at bolstering consumer cybersecurity, the Federal Communications Commission (FCC) has introduced the U.S. Cyber Trust Mark program. This voluntary initiative focuses on helping consumers identify InternetRead More →
How Hackers Can Hijack Your Device Without You Knowing – MediaTek’s RCE Flaw Explained
2025-01-07
MediaTek’s January 2025 Product Security Bulletin has highlighted a critical Remote Code Execution (RCE) vulnerability, identified as CVE-2024-20154, which affects millions of devices using MediaTek chipsets. This vulnerability is presentRead More →
Hacking Active Directory: Learn How LDAPNightmare Flaw Shuts Down AD Services
2025-01-03
The LDAPNightmare Proof-of-Concept (PoC) exploit, leveraging the critical vulnerability CVE-2024-49113, has brought to light serious weaknesses in Windows Server environments. This vulnerability targets the Local Security Authority Subsystem Service (LSASS),Read More →
