ToyMaker Exploits Backdoors for Ransomware
In 2023, cybersecurity experts uncovered a large-scale compromise involving critical infrastructure enterprises by a threat actor group known as ToyMaker.
Read more
Alerts
Attackers Target MS SQL Servers with Malware
A new cyberattack campaign targets poorly managed Microsoft SQL servers to deploy malicious tools like Ammyy Admin and PetitPotato malware.
Read more
Russian Hackers Target Microsoft 365 Users
Since early March 2025, suspected Russia-linked hackers have been targeting individuals and organizations tied to Ukraine and human rights.
Read more
FireEye EDR Agent Flaw Exposes Endpoints
A critical vulnerability has been discovered in the FireEye Endpoint Detection and Response (EDR) agent, tracked as CVE-2025-0618.
Read more
SonicWall Warns of Remote Crash Flaw
SonicWall has issued an urgent advisory regarding a high-severity vulnerability in its SSLVPN Virtual Office interface. The vulnerability, tracked as
Read more
Cybercriminals Use Google Forms for Phishing
Cybercriminals have increasingly adopted Google Forms as a tool to conduct stealthy phishing attacks across many industries. Its legitimacy as...
Read more
GitLab Urges Users to Patch Critical Bugs
GitLab has released critical security updates for its Community and Enterprise Editions to fix multiple high-risk vulnerabilities. These flaws include
Read more
Cookie-Bite Attack Bypasses MFA in Cloud
A new cyberattack technique called "Cookie-Bite" enables attackers to bypass multi-factor authentication (MFA) and gain unauthorized access to cloud systems.
Read more
GCP Composer Bug Allows Privilege Escalation
A newly discovered vulnerability, dubbed ConfusedComposer, was found in Google Cloud Platform's (GCP) Cloud Composer service, which could enable privilege
Read more
© 2025 | CyberMaterial | All rights reserved