Tag: Cyber Alerts 2025

Cybersecurity researchers recently unearthed a deceptive npm package, nodejs-smtp, that poses as the well-known email library nodemailer.

A serious SQL injection vulnerability in the WordPress Paid Membership Subscriptions plugin affects versions 2.15.1 and below, allowing attackers

Security researchers have recently uncovered three new vulnerabilities in the Sitecore Experience Platform, a popular enterprise-level content management system

A new supply chain attack, dubbed s1ngularity, targeted the popular JavaScript build system Nx, affecting thousands of developers and leading to the theft

North Korea's state-sponsored hacking group, ScarCruft (APT37), launched "Operation HanKook Phantom," a phishing campaign using a fake newsletter

ybercriminals have launched a sophisticated campaign on Meta's advertising platforms, luring unsuspecting users with a fraudulent offer for a free TradingView

WhatsApp has issued threat notifications to users who were targeted by advanced, "zero-click" spyware in the last 90 days.

Researchers at cybersecurity firm ESET have recently identified what they claim to be the first piece of AI-powered ransomware in the wild, dubbed PromptLock.

An internet intelligence firm, GreyNoise, has reported a significant spike in scanning activity from nearly 2,000 IP addresses targeting Microsoft

A large-scale cybercrime campaign, ShadowCaptcha, is leveraging social engineering and sophisticated delivery methods to infect users with a variety