npm Phishing Emails Target Developer Logins
A highly sophisticated phishing campaign has been uncovered, specifically targeting Node.js developers through an elaborate impersonation of the
Tag: Cyber Alerts 2025
Lumma Stealer Returns with New Tactics
The Lumma infostealer malware-as-a-service (MaaS) platform, despite facing a significant law enforcement operation in May that resulted
MuddyWater Emerges Amid Iran-Israel Clash
Lookout recently uncovered new samples of DCHSpy, an Android surveillanceware tool utilized by the Iranian cyber espionage group MuddyWater,
CrushFTP Warns of Exploit in the Wild
The popular file transfer company CrushFTP said it has discovered a previously unknown vulnerability being exploited by hackers.
3.5K Sites Hijacked to Secretly Mine Crypto
A sophisticated new attack campaign has resurfaced browser-based cryptojacking, compromising over 3,500 websites worldwide with stealthy
7-Zip Flaw Lets Malicious Files Crash PCs
A significant denial-of-service vulnerability, identified as CVE-2025-53816, has been found within the popular compression software 7-Zip.
Microsoft Patch Fixes SharePoint RCE Issue
Microsoft recently issued critical security patches for its on-premises SharePoint Servers, addressing an actively exploited remote code execution vulnerability (CVE-2025-53770)
Microsoft AppLocker Bug Enables Bypass
Microsoft recently issued critical security patches for its on-premises SharePoint Servers, addressing an actively exploited remote code execution vulnerability (CVE-2025-53770)
PoisonSeed Hackers Bypass FIDO Keys
A novel attack technique has emerged, enabling threat actors to bypass the robust protections offered by Fast IDentity Online (FIDO) keys.
Matanbuchus Malware Spread via Teams Voice
The Matanbuchus malware loader is currently being distributed through social engineering tactics via Microsoft Teams calls, with attackers impersonating
© 2025 | CyberMaterial | All rights reserved