Home - Cybercory

Emergency Alert: Critical Unauthenticated RCE Discovered in Cisco ISE/ISE‑PIC

5 days ago 0

Cisco has patched three severe unauthenticated remote code execution (RCE) vulnerabilities (CVE‑2025‑20281, CVE‑2025‑20282, CVE‑2025‑20337) in Identity Services Engine (ISE) and its Passive Identity Connector. These...

Singapore Under Siege: UNC3886 Launches Cyber‑Espionage Strikes on Critical Infrastructure

Advanced Persistent Threat 3 days ago

America

Congress Bars WhatsApp on House-Issued Devices Over ‘High-Risk’ Security Concerns

The U.S. House’s chief administrative officer has banned WhatsApp on all government-issued devices, citing a lack of transparency around data protection and insufficient stored...

Breaking news:

Advanced Persistent Threat

Singapore Under Siege: UNC3886 Launches Cyber‑Espionage Strikes on Critical Infrastructure

Singapore is currently facing ongoing cyber-espionage attacks by the...

Internet Of Thing Security

Google Takes Legal Action to Disrupt BADBOX 2.0 Botnet of 10 Million+ Infected IoT Devices

Good catch, CISOs and cybersecurity professionals: Google, along with...

Saintynet Certification Training Flyer 2025

Saintynet Certification Training Flyer 2025 (1)

Saintynet Certification Training Flyer 2025 (2)

Stay on top of what's going on with our subscription deal!

Worldwide

Middle East

CPX’ Latest Whitepaper for Securing OT: Trust, Collaboration, and the Future of Industrial Cyber Defense

The UAE-based cybersecurity leader CPX has released a groundbreaking...

Technology & Telecom

NVIDIA Warns of Rowhammer GPU Risk: Activating ECC on A6000 and Enterprise GPUs Essential

NVIDIA has published a Rowhammer Security Notice (updated 9 July 2025)...

Banking & Finance

GMX Suffers Massive $42M DeFi Hack: A Critical Wake‑Up Call for Decentralized Exchanges

On 9 July 2025, the decentralized perpetual exchange GMX-operating...

Advanced Persistent Threat

macOS.ZuRu Resurfaces via Trojanized Termius App Using Modified Khepri C2 Beacon

On 10 July 2025, cybersecurity researchers uncovered a renewed...

America

US Sanctions Russia-Linked Bulletproof Hosting Provider Aeza Group for Enabling Ransomware and Infostealer Operations

The US Department of the Treasury has sanctioned Aeza...

Law Enforcement

Ransomware Gang Hunters International Shuts Down and Offers Free Decryption Keys

The ransomware gang Hunters International announced on 3 July...

Technology & Telecom

CVE‑2025‑20309: Cisco Unified CM Exposes Root via Static SSH Credentials

Cisco disclosed a 10.0 CVSS-critical vulnerability (CVE‑2025‑20309) in its...

Phishing & Solution

PDFs: Portable Documents or Perfect Phishing Vectors?

Cybersecurity professionals are sounding the alarm: PDF attachments are...

Browser & Cybersecurity

Google Urgently Patches CVE‑2025‑6554 Zero‑Day in Chrome 138 Stable Update

On 26 June 2025, Google rapidly deployed a Stable Channel update...

Password Security

ALERT: FBI Warns Scattered Spider Is Now Targeting Airlines with Social Engineering Attacks

What happened, why it matters, why now:The FBI has...

Data Breach

French Police Arrest Five Key Operators Behind BreachForums Data-Theft Platform

On 25 June 2025, France’s specialist cybercrime unit (BL2C) detained five...

Remote Access

Critical TeamViewer Remote Management Flaw Allows SYSTEM‑Level File Deletion

A high‑severity vulnerability, CVE‑2025‑36537, has been identified in TeamViewer...

Application Security

Windows 10 Support Ends October 14 2025: A Critical Time to Secure Your Environment with Windows 11, Copilot+ PCs, and Windows 365

Microsoft has confirmed that support for Windows 10 will end...

Middle East

UAE Employees Surpass European Peers in Cyber Readiness, Cohesity Study Reveals

Dubai, 23 June 2025 - A new Cohesity study...

Middle East

Iran’s State TV Hijacked to Broadcast Protest Videos Satellite Hack amid Rising Tensions

On 18 June 2025, Iran’s state broadcaster, Islamic Republic of Iran...

Featured Interviews

#Interview: Navigating Security Challenges in the IoT Era: Insights from Industry...

Read The Interview

More...

#Interview: Navigating the Intersection of PCI DSS Compliance and Cyber Law:...

Read The Interview

More...

#Interview: AI and Machine Learning in Zero Trust: Enhancing Threat Detection...

Read The Interview

More...

Middle East

View All

CPX’ Latest Whitepaper for Securing OT: Trust, Collaboration, and the Future of Industrial Cyber Defense

Ouaissou DEMBELE - July 14, 2025

The UAE-based cybersecurity leader CPX has released a groundbreaking whitepaper, "Securing Operational Technology with Trust and Collaboration" (July...

UAE Employees Surpass European Peers in Cyber Readiness, Cohesity Study Reveals

Ouaissou DEMBELE - June 24, 2025

Dubai, 23 June 2025 - A new Cohesity study on “Employee readiness to confront cyber threats” found that...

Iran’s State TV Hijacked to Broadcast Protest Videos Satellite Hack amid Rising Tensions

June 21, 2025

Jordan’s NCSC Greenlights 2025-2028 National Cybersecurity Strategy to Elevate Regional Digital Security

June 20, 2025

Everest Ransomware Leaks Coca-Cola Employee Data: Middle East Staff Records Exposed Online

May 28, 2025

Mobile Malware Surge in the Middle East: Kaspersky Reports 43% Spike in Q1 2025

May 28, 2025

Dubai Electronic Security Center Wraps Up GISEC Global 2025 With Strategic Milestones and National Cyber Talent Recognition

May 13, 2025

GISEC Global 2025 Makes Cybersecurity History with 11 Guinness World Records and Bold Innovations

May 13, 2025

AI & Cybersecurity

View All

Meta’s Q1 2025 Integrity Reports Reveal Spike in Bullying Content, Rise in Global CyberTips, and New AI Moderation Tools

Ouaissou DEMBELE - May 30, 2025

30 May 2025 - Meta has published its Q1 2025 Integrity Reports, revealing significant shifts in its content moderation strategy, threat disruption...

Cybercriminals Camouflage Malware as AI Tools in Sophisticated New Campaign

May 30, 2025

Google Chrome Introduces AI-Powered Automatic Password Change Feature To Enhance Password Security

May 21, 2025

Meta Faces Legal Backlash Over AI Training Plans: NOYB’s Cease and Desist Sparks Potential EU Class Action

May 16, 2025

Safeguarding Philippine Elections: How AI and Cybersecurity are Defending Democracy

May 12, 2025

The Top 10s

View All

Fortressing Your Business Data: Top 10 Most Secure ERP Systems in 2024

Ouaissou DEMBELE - June 11, 2024

In today's data-driven business landscape, Enterprise Resource Planning (ERP) software plays a critical role. It manages core functionalities like finance, inventory, human...

The Digital Fortress: Top 10 Most Secure Operating Systems in 2024

June 10, 2024

Guarded Gates: Top Best 10 Secure Email Services in 2024

June 10, 2024

Securing the Gateway: Top Best 10 Web Application Firewalls (WAFs) in 2024

June 8, 2024

Safeguarding Your Digital Assets: Top 10 Data Backup Solutions in 2024

June 7, 2024

Africa

View All

Africa

Cybercriminals Weaponized Open-Source Tools in Sustained Campaign Against Africa’s Financial Sector

Africa

Chad’s ANSICE and Brightway Launch National Cybersecurity Mapping to Bolster Digital Resilience

Africa

ANSSI Elevates Cyber Defense Capabilities with FBI-Led Training

America

View All

America

US Sanctions Russia-Linked Bulletproof Hosting Provider Aeza Group for Enabling Ransomware and Infostealer Operations

America

How a $2.7K Bribe Enabled a $140 Million PIX Theft from Brazilian Banks

Asia

View All

Advanced Persistent Threat

Singapore Under Siege: UNC3886 Launches Cyber‑Espionage Strikes on Critical Infrastructure

Asia

Taiwan NSB Warns of Critical Cybersecurity Risks in China-Made Mobile Apps

Asia

Malaysian Home Minister’s WhatsApp Hacked via Foreign VPN: Police Launch Cybercrime Probe

How To

View All

How To

How to identify fake social media profiles? A Guide to Unmasking the Imposters & Identifying Fake Social Media Profiles

How To

How to avoid social engineering scams on social media?: The Social Siren Song

How To

How To Avoid Online Shopping Scams?: The Siren Song of Savings

How To

How to protect your credit card information online?: Fort Knox for Your Wallet

What Is

View All

DoS & DDoS

Under Siege: Understanding DoS and DDoS Attacks in Cybersecurity

What Is

What Is VPN? Tunneling Through the Web: A Comprehensive Guide

What Is

What Is A Computer Virus? The Invisible Invaders: A Comprehensive Guide

What Is

What Is Ransomware? Held Hostage in the Digital Age: Understanding the Threat

Europe

Breached

Telefónica Hit with Threat: 106 GB Data Leak Warning by Hellcat Hacker

Ouaissou DEMBELE - July 7, 2025

Data Breach

French Police Arrest Five Key Operators Behind BreachForums Data-Theft Platform

Ouaissou DEMBELE - June 26, 2025

View All

Oceania

Banking & Finance

ASIC Sues FIIG Securities Over Cybersecurity Failures Leading to Data Theft

The Australian Securities and Investments Commission (ASIC) has launched...

Education System

Cybersecurity Breach at the University of Notre Dame Australia: Investigation Underway

The University of Notre Dame Australia is currently investigating...

Australia

Bunnings Faces Privacy Backlash Over Facial Recognition Technology Use

Bunnings Group Limited, a prominent retail chain in Australia,...

Australia

Taking Actions To Protect Children: Australia’s Stand Against Kids Social Media Risks

The rapid rise of social media has transformed communication,...

Australia

Beware of the Purrfect Trap: GootLoader Targets Bengal Cat Lovers in Australia with SEO Poisoning

As bizarre twist combining pet curiosity with cyber deception,...

Hacked - Breached

Breached

Telefónica Hit with Threat: 106 GB Data Leak Warning by Hellcat Hacker

Banking & Cybersecurity

Hype Alert: “Largest Data Breach” of 16 B Credentials Is Just Recycled Data

Breached

Victoria’s Secret Hit by Security Incident: Website, Email, and Operations Disrupted

Breached

Everest Ransomware Leaks Coca-Cola Employee Data: Middle East Staff Records Exposed Online

Breached

Adidas Customer Data Breach: Contact Information Stolen via Third-Party Provider

View All

Zero-Day

Patch

Chrome Under Active Exploit: Google Patches High-Risk Zero-Day in V8 Engine (CVE-2025-5419)

Website Security

Unpatched Zero-Day in TI WooCommerce Wishlist Plugin Exposes Over 100K Sites to RCE Risk

Cyberespionage Spying

Marbled Dust Exploits Zero-Day in Output Messenger to Spy on Kurdish Targets: Inside a Sophisticated Regional Espionage Campaign

Application Security

Exploiting the Kernel: How Play Ransomware Leveraged a Windows Zero-Day for Privilege Escalation

Worldwide

Hello 0-Days, My Old Friend: A 2024 Zero-Day Exploitation Analysis

View All

Cryptocurrencies

Application Security

Securing Kubernetes: Understanding and Mitigating Threats to Containerized Environments

Advanced Persistent Threat

Trojanized Messaging Apps and Budget Android Devices: A Perfect Storm for Cryptocurrency Theft

Banking & Finance

MorphoBlue Frontend Vulnerability Exploited for $2.6 Million: A Wake-Up Call for DeFi Security

Blockchain & Crypto Security

Triada Returns with a Vengeance: Preinstalled Trojan Targets Cryptocurrency, Messenger Accounts, and Phone Calls

Banking & Finance

$1.5 Billion Bybit Crypto Hack : Largest Digital Heist in History

View All

Cloud Security

Attackers Unleash TeamFiltration: Active Account Takeover Campaign Hits Over 80,000 Users Across Entra ID Ecosystems

Advanced Persistent Threat

APT41 Unmasked: Chinese Cyber-Espionage Group Uses Google Calendar for Covert Attacks

Application Security

Securing Kubernetes: Understanding and Mitigating Threats to Containerized Environments

Cloud Security

ConfusedComposer: How a GCP Privilege Escalation Flaw Exposed Cloud Composer to Takeover

Breached

Oracle Cloud Hit By Alleged Data Breach Exposing 6 Millions Records

View All

Ransomware

America

US Sanctions Russia-Linked Bulletproof Hosting Provider Aeza Group for Enabling Ransomware and Infostealer Operations

Law Enforcement

Ransomware Gang Hunters International Shuts Down and Offers Free Decryption Keys

America

U.S. Treasury Sanctions Aeza Group Bulletproof Russian Bulletproof Hosting Provider in Major Cybercrime Crackdown

Application Security

Black Basta Crumbles: Infamous Ransomware Gang Collapses After Internal Fallout-But Its Legacy Lives On

Advanced Persistent Threat

Cybercriminals Camouflage Malware as AI Tools in Sophisticated New Campaign

View All

Singapore Under Siege: UNC3886 Launches Cyber‑Espionage Strikes on Critical Infrastructure

Singapore is currently facing ongoing cyber-espionage attacks by the UNC3886 Advanced Persistent Threat (APT) group, an operation directly targeting its critical infrastructure, including energy,...

Internet Of Thing Security

Google Takes Legal Action to Disrupt BADBOX 2.0 Botnet of 10 Million+ Infected IoT Devices

Good catch, CISOs and cybersecurity professionals: Google, along with partners HUMAN Security and Trend Micro, has filed a lawsuit in New York federal court...

Cyberespionage Spying

Phish and Chips: China‑Aligned Espionage Surge Targeting Taiwan Semiconductor Industry

Between March and June 2025, Proofpoint researchers tracked three distinct China‑aligned threat actors launching spear‑phishing campaigns against Taiwanese semiconductor firms, design houses, service providers, and...

Technology & Telecom

Emergency Alert: Critical Unauthenticated RCE Discovered in Cisco ISE/ISE‑PIC

Middle East

CPX’ Latest Whitepaper for Securing OT: Trust, Collaboration, and the Future of Industrial Cyber Defense

The UAE-based cybersecurity leader CPX has released a groundbreaking whitepaper, "Securing Operational Technology with Trust and Collaboration" (July 2025), urging a global rethink of...

Technology & Telecom

NVIDIA Warns of Rowhammer GPU Risk: Activating ECC on A6000 and Enterprise GPUs Essential

NVIDIA has published a Rowhammer Security Notice (updated 9 July 2025) in response to customer concerns following new research that demonstrated a practical Rowhammer-style memory‑bit‑flip exploit-dubbed...

Banking & Finance

GMX Suffers Massive $42M DeFi Hack: A Critical Wake‑Up Call for Decentralized Exchanges

On 9 July 2025, the decentralized perpetual exchange GMX-operating on Arbitrum V1-was robbed of approximately $42 million in crypto assets from its GLP liquidity pool,...

Advanced Persistent Threat

macOS.ZuRu Resurfaces via Trojanized Termius App Using Modified Khepri C2 Beacon

On 10 July 2025, cybersecurity researchers uncovered a renewed campaign of the macOS.ZuRu backdoor, this time embedded within a doctored version of the popular...

Banking & Finance

Fake News for Real Scams: Inside the Global Threat of Baiting News Sites and Crypto Investment Fraud

In July 2025, Bahrain-based cybersecurity firm CTM360 released a bombshell report exposing the alarming global rise of Baiting News Sites (BNS) fraudulent news platforms...

America

US Sanctions Russia-Linked Bulletproof Hosting Provider Aeza Group for Enabling Ransomware and Infostealer Operations

The US Department of the Treasury has sanctioned Aeza Group - a Russia-based bulletproof hosting (BPH) provider - and four associated entities and individuals...

Law Enforcement

Ransomware Gang Hunters International Shuts Down and Offers Free Decryption Keys

The ransomware gang Hunters International announced on 3 July 2025 that it is shutting down its operations and offering free decryption keys to previously...

America

How a $2.7K Bribe Enabled a $140 Million PIX Theft from Brazilian Banks

In a dramatic cyber heist on 30 June 2025, hackers paid just R$15,000 (~$2,760) for insider credentials at C&M Software then orchestrated Brazil's largest digital banking...

Breached

Telefónica Hit with Threat: 106 GB Data Leak Warning by Hellcat Hacker

A hacker known as “Rey,” affiliated with the Hellcat ransomware group, claims to have stolen 106 GB of internal data from Spanish telecom giant Telefónica...

Asia

Taiwan NSB Warns of Critical Cybersecurity Risks in China-Made Mobile Apps

Taiwan’s National Security Bureau (NSB) has flagged five popular Chinese-made mobile apps-including TikTok, Weibo, WeChat, RedNote, and Baidu Cloud-as posing significant cybersecurity risks, citing...

Advanced Persistent Threat

macOS NimDoor Malware: DPRK Hackers Target Web3 and Crypto Platforms with Nim-Based Precision

North Korean threat actors have launched a sophisticated macOS malware campaign targeting Web3 and cryptocurrency companies using a rare Nim-based backdoor known as NimDoor....

Technology & Telecom

CVE‑2025‑20309: Cisco Unified CM Exposes Root via Static SSH Credentials

Cisco disclosed a 10.0 CVSS-critical vulnerability (CVE‑2025‑20309) in its Unified Communications Manager (Unified CM) and Session Management Edition (SME) on 2 July 2025, enabling...

Phishing & Solution

PDFs: Portable Documents or Perfect Phishing Vectors?

Cybersecurity professionals are sounding the alarm: PDF attachments are increasingly leveraged in sophisticated phishing campaigns. Cisco Talos’ July 2, 2025 investigation reveals how threat actors use...

America

U.S. Treasury Sanctions Aeza Group Bulletproof Russian Bulletproof Hosting Provider in Major Cybercrime Crackdown

On 1 July 2025, the U.S. Department of the Treasury’s Office of Foreign Assets Control (OFAC) sanctioned Aeza Group, a Russia‑based bulletproof hosting service, for enabling...

Browser & Cybersecurity

Google Urgently Patches CVE‑2025‑6554 Zero‑Day in Chrome 138 Stable Update

On 26 June 2025, Google rapidly deployed a Stable Channel update (Chrome 138) to address CVE‑2025‑6554, a high‑severity type‑confusion vulnerability in the V8 JavaScript engine, actively...

Password Security

ALERT: FBI Warns Scattered Spider Is Now Targeting Airlines with Social Engineering Attacks

What happened, why it matters, why now:The FBI has issued a rare airline-sector alert after observing the cybercriminal group Scattered Spider pivoting to target...

12 3...68 Page 1 of 68

- Gain full access to our premium content

- Never miss a story with active notifications

- Browse free from up to 5 devices at once

Patched

Browser & Cybersecurity

Google Urgently Patches CVE‑2025‑6554 Zero‑Day in Chrome 138 Stable Update

On 26 June 2025, Google rapidly deployed a Stable Channel update...

Access Control Systems

HPE Issues Emergency Patch for Critical StoreOnce Vulnerabilities Enabling Remote Authentication Bypass and Code Execution

Hewlett Packard Enterprise (HPE) has released urgent security patches...

Patch

Chrome Under Active Exploit: Google Patches High-Risk Zero-Day in V8 Engine (CVE-2025-5419)

On 2 June 2025, Google issued an urgent Stable...

View All

Bug Bounty

Bug Bounty Bonanza: WazirX Launches Program After $230 Million Cyberattack

In the ever-changing landscape of cybersecurity, the Indian cryptocurrency...

Bug Bounty

Why Your Company Needs a Bug Bounty Program: A Proactive Approach to Cybersecurity

In today's ever-evolving digital landscape, cybersecurity threats are a...

Bug Bounty

Big Bucks for Bugs: Google’s $10 Million Bug Bounty Award and Lessons for Responsible Disclosure

In the ever-evolving battle against cybercrime, bug bounty programs...

View All

ISC/SCADA Security

Advanced Persistent Threat

Singapore Under Siege: UNC3886 Launches Cyber‑Espionage Strikes on Critical Infrastructure

Singapore is currently facing ongoing cyber-espionage attacks by the...

Middle East

CPX’ Latest Whitepaper for Securing OT: Trust, Collaboration, and the Future of Industrial Cyber Defense

The UAE-based cybersecurity leader CPX has released a groundbreaking...

Network Security

ViciousTrap Turns 15,000+ Edge Devices into Global Honeypots – New Tactics Threaten Critical Infrastructure Visibility

On 18 May 2025, threat intelligence firm Sekoia.io revealed...

View All

IAM

Access Control Systems

HPE Issues Emergency Patch for Critical StoreOnce Vulnerabilities Enabling Remote Authentication Bypass and Code Execution

Hewlett Packard Enterprise (HPE) has released urgent security patches...

Identity & Access Management

Critical Exploit Attempts Targeting Cisco Smart Licensing Utility: What Security Teams Need to Know

In September 2024, Cisco disclosed two critical vulnerabilities in...

Digital Transformation & Security

Empowering Digital Security: ZainTECH Enhances Its Offerings with WSO2’s Asgardeo IDaaS Solution

In a move that underscores the growing need for...

View All

cybercory.comcybercory.com

Cybercory Magazine

Cybercory.com serves as a platform for promoting, motivating, and educating its audience on cybersecurity matters, contributing to a more secure digital environment. Cybercory is a part of Sainttly Group.

Popular:

Breaking news:

Featured Interviews

.tdi_194{margin-bottom:10px!important}#Interview: Navigating the Intersection of PCI DSS Compliance and Cyber Law:...

.tdi_218{margin-bottom:10px!important}#Interview: AI and Machine Learning in Zero Trust: Enhancing Threat Detection...

Cybercory Magazine

Latest

Popular

Sitemap

#Interview: Navigating the Intersection of PCI DSS Compliance and Cyber Law:...

#Interview: AI and Machine Learning in Zero Trust: Enhancing Threat Detection...