Tag: Cyber Alerts 2025

The DollyWay malware operation has been targeting WordPress sites since 2016, compromising over 20,000 sites globally. Initially, it distributed

A critical vulnerability, CVE-2025-23120, has been discovered in Veeam Backup & Replication, affecting versions 12, 12.1, 12.2, and 12.3. This flaw allows

CERT-UA has issued a warning about a targeted malware campaign using Signal to infect Ukrainian defense sectors. The campaign involves sending malicious

A long-running phishing campaign that initially targeted Windows users has recently shifted to macOS users, according to Israeli cybersecurity firm LayerX.

The ClearFake campaign has evolved significantly, particularly with its adoption of new tactics and technologies. As of May 2024, the attackers introduced

A widespread ad fraud campaign has been uncovered, involving hundreds of malicious apps on Google Play. These apps, which appeared as legitimate

Cybersecurity researchers have uncovered a dangerous attack vector called the "Rules File Backdoor" targeting AI-powered code editors.

A new sophisticated cyberattack method has emerged, using DLL side-loading to distribute malicious Python code. This method exploits the DLL

MirrorFace, a China-aligned threat actor, has expanded its operations, targeting a Central European diplomatic institution. Their attack, called Operation AkaiRyū,

CVE-2024-54085 is a critical vulnerability in AMI's MegaRAC Baseboard Management Controller (BMC) software. The flaw allows attackers to bypass authentication