Tag: Cyber Alerts 2025

A new cyberattack technique called "Cookie-Bite" enables attackers to bypass multi-factor authentication (MFA) and gain unauthorized access to cloud systems.

A newly discovered vulnerability, dubbed ConfusedComposer, was found in Google Cloud Platform's (GCP) Cloud Composer service, which could enable privilege

FortiGuard Labs has uncovered a sophisticated botnet called "RustoBot," which uses Rust, a powerful systems programming language. This botnet targets

A new cryptojacking campaign is targeting Docker environments using a novel mining technique. Researchers from Darktrace and Cado Security Labs

A recent attack has compromised the Ripple cryptocurrency npm JavaScript library, xrpl.js, to steal private keys. The backdoor was introduced by unknown

Cybersecurity researchers have uncovered a massive ad fraud operation known as "Scallywag," which exploits WordPress plugins to generate

A critical security vulnerability, identified as CVE-2025-25364, was discovered in Speedify VPN’s macOS application. This flaw exposed users

A critical flaw in SSL.com’s domain validation system allowed attackers to fraudulently obtain TLS certificates for major domains, including aliyun.com, Alibaba

A critical vulnerability in WinZip, tracked as CVE-2025-33028, compromises Windows' Mark-of-the-Web (MotW) security feature. This flaw, present in WinZip

Kaspersky researchers have identified the reemergence of the MysterySnail RAT, a malware previously linked to the Chinese IronHusky APT group.