Internet Security

EncryptHub abuses Brave Support in new campaign exploiting MSC EvilTwin flaw

August 16, 2025 add comment
EncryptHub actor exploits Windows flaw CVE-2025-26633 (“MSC EvilTwin”) with rogue MSC files and social engineering to drop malware. The threat actor EncryptHub exploits the now-patched Windows flaw CVE-2025-26633 (“MSC... Read more »

Taiwan Web Infrastructure targeted by APT UAT-7237 with custom toolset

August 16, 2025 add comment
APT group UAT-7237, linked to UAT-5918, targets web infrastructure in Taiwan using customized open-source tools to maintain long-term access. A Chinese-speaking advanced persistent threat (APT) group, tracked as UAT-7237,... Read more »

New NFC-Driven Android Trojan PhantomCard targets Brazilian bank customers

August 15, 2025 add comment
PhantomCard, an NFC-driven Android Trojan in Brazil, relays card data to fraudsters, spread via fake Google Play “card protection” apps. ThreatFabric warns of PhantomCard, a new Android NFC-driven trojan targeting Brazilian... Read more »

‘Blue Locker’ Ransomware Targeting Oil & Gas Sector in Pakistan

August 15, 2025 add comment
Blue Locker ransomware hits Pakistan’s oil & gas sector, severely impacting Pakistan Petroleum; NCERT warns ministries of severe ongoing risk. This week Pakistan’s National Cyber Emergency Response Team (NCERT... Read more »

Cisco fixed maximum-severity security flaw in Secure Firewall Management Center

August 15, 2025 add comment
Cisco patches critical Secure Firewall Management Center flaw allowing remote code execution on vulnerable systems. Cisco released security updates to address a maximum-severity security vulnerability, tracked as CVE-2025-20265 (CVSS... Read more »

Hackers exploit Microsoft flaw to breach Canada ’s House of Commons

August 15, 2025 add comment
Hackers breached Canada ’s House of Commons, exploiting a recent Microsoft flaw, compromising data, according to CBC News. Threat actors reportedly breached Canada’s House of Commons by exploiting a... Read more »

Norway confirms dam intrusion by Pro-Russian hackers

August 14, 2025 add comment
Norway’s security service PST says pro-Russian hackers took over a dam in April, opening outflow valves. Norway’s Police Security Service (PST) says pro-Russian hackers seized control of a dam’s... Read more »

U.S. CISA adds N-able N-Central flaws to its Known Exploited Vulnerabilities catalog

August 14, 2025 add comment
U.S. Cybersecurity and Infrastructure Security Agency (CISA) adds N-able N-Central flaws to its Known Exploited Vulnerabilities catalog. The U.S. Cybersecurity and Infrastructure Security Agency (CISA) added N-able N-Central flaws to... Read more »

Zoom patches critical Windows flaw allowing privilege escalation

August 14, 2025 add comment
Zoom fixed a critical Windows client flaw (CVE-2025-49457, CVSS 9.6) involving an untrusted search path that could enable privilege escalation. Cloud-based video conferencing and online collaboration platform Zoom addressed... Read more »

Manpower data breach impacted 144,180 individuals

August 14, 2025 add comment
Global staffing and workforce solutions firm Manpower reports a January RansomHub ransomware attack that compromised data of 140,000 individuals. Manpower in Lansing, Michigan, reported that the ransomware attack that... Read more »
Subscribe to our Newsletter