Subscribe
Saturday, May 2, 2026
type here...
Subscribe
HomeCyber News

Cyber News

AI-Powered Email Attacks – Iranian Threat Groups Targeting Cybersecurity Experts and Academics

Iranian state-sponsored cyber groups have significantly enhanced their offensive capabilities in the aftermath of June 2025 military strikes, deploying sophisticated AI-crafted phishing campaigns that specifically target cybersecurity researchers and academic institutions. The escalation represents a concerning evolution in Tehran's cyber warfare tactics, with Advanced...
Read more

OVERSTEP Ransomware Deployed Through Exploited 0-Day RCE Vulnerability in SonicWall SMA Devices

Google Threat Intelligence Group (GTIG) has uncovered a sophisticated campaign by the financially motivated threat actor UNC6148, targeting fully patched end-of-life SonicWall Secure Mobile Access (SMA) 100 series appliances. The campaign leverages previously stolen credentials and one-time password (OTP) seeds to maintain persistent access...
Read more

Exploiting SVG Files – How Threat Actors Are Using Them to Deliver Malicious JavaScript

Cybersecurity researchers have uncovered a sophisticated new attack campaign where threat actors are weaponizing Scalable Vector Graphics (SVG) files to deliver malicious JavaScript payloads and redirect unsuspecting users to attacker-controlled infrastructure. This emerging technique exploits the trusted nature of image files to bypass traditional...
Read more

28+ New Packages Used by Threat Actors to Spread Protestware

Socket's Threat Research Team has uncovered a significant supply chain security incident involving protestware that has spread across at least 28 new npm packages with nearly 2,000 versions. The malicious code targets Russian-language users visiting Russian or Belarusian websites, disabling UI interactions and playing...
Read more

Exploiting Microsoft Teams – A New Method for Deploying Matanbuchus Ransomware

Cybersecurity researchers have identified a sophisticated new attack campaign in which threat actors are exploiting Microsoft Teams to deploy the Matanbuchus 3.0 ransomware loader, representing a significant evolution in social engineering tactics. In a recent incident in July 2025, attackers successfully compromised a Morphisec...
Read more

Critical Vulnerabilities in Sophos Intercept X for Windows Allow Arbitrary Code Execution

Sophos has disclosed three high-severity security vulnerabilities in its Intercept X for Windows endpoint protection software that could allow local attackers to gain system-level privileges and execute arbitrary code. The cybersecurity company released patches for all three vulnerabilities on July 17, 2025, following responsible...
Read more

About us

The Cyber News is an online community for security professionals. It features articles from top security researchers, CISOs, and technology experts.

Company

The latest

Burp Suite Supercharges Its Scanning Capabilities With React2Shell Vulnerability Detection

Cybersecurity News 0
PortSwigger has leveled up Burp Suite's scanning arsenal with...

Malicious MCP Servers Enable New Prompt Injection Attack To Drain Resources

Cybersecurity News 0
Unit 42 researchers at Palo Alto Networks exposed serious...

Law Enforcement Detains Hackers Equipped With Specialized Flipper Hacking Tools

Cyber News 0
Polish police have arrested three Ukrainian men traveling through...

Subscribe

© 2025 the Cyber News