Home - Cybercory

Breaking News: Supply-Chain Breach Hits Palo Alto Networks and Zscaler via Salesloft’s Drift App

September 4, 2025 0

A widespread supply-chain cyberattack has unfolded, centering on OAuth tokens stolen from the Salesloft - Drift application - a third-party AI-powered sales tool that integrates...

Securing Critical Infrastructure: Insights from Evgeny Kurtukov at Dubai Cyber Show

Podcast & Cyber Talks 3 days ago

Virtual private networks (VPNs)

Coordinated Brute-Force Campaign Targets Fortinet SSL VPN and FortiManager Services

On 3 August 2025, threat intelligence firm GreyNoise detected an unprecedented surge in brute-force attempts against Fortinet SSL VPNs - over 780 unique IPs...

Breaking news:

Podcast & Cyber Talks

Securing Critical Infrastructure: Insights from Evgeny Kurtukov at Dubai Cyber Show

At the recent 100 CISO Summit in Dubai, Ouaissou...

Advanced Persistent Threat

Salt Typhoon & UNC4841: Silent Push Uncovers New Domains in Global Espionage Campaign

Silent Push threat analysts have uncovered dozens of new...

Saintynet Certification Training Flyer 2025

Saintynet Certification Training Flyer 2025 (1)

Saintynet Certification Training Flyer 2025 (2)

Stay on top of what's going on with our subscription deal!

Worldwide

AI & Cybersecurity

Breaking News: Supply-Chain Breach Hits Palo Alto Networks and Zscaler via Salesloft’s Drift App

A widespread supply-chain cyberattack has unfolded, centering on OAuth...

National Security

Iran-Nexus Spear-Phishing Masquerades as Omani MFA to Target Global Governments

In August 2025, Dream’s Cyber Threat Intelligence (CTI) agents...

AI & Cybersecurity

Ooredoo and Qatar Airways Sign MoU to Establish Qatar as Regional AI, Cloud & Cybersecurity Innovation Hub

On 30 August 2025, Ooredoo and Qatar Airways signed...

Application Security

Malicious Versions of Nx NPM Packages Published: Developers Urged to Update Immediately

Cybersecurity researchers have discovered that malicious versions of the...

Africa

EFCC Arrests 37 Suspected Internet Fraudsters in Wukari, Taraba State

On 27 August 2025, the Economic and Financial Crimes...

AI & Cybersecurity

PromptLock: ESET Uncovers First Known AI-Powered Ransomware

ESET researchers published on 27 August 2025 that they...

Banking & Cybersecurity

Hook Version 3 Emerges: Banking Trojan Gains Ransomware Overlays, NFC Tricks, Screen-Streaming – Enterprise Security at Risk

On 25 August 2025, Zimperium’s zLabs disclosed the release...

Africa

Nigeria Deports 42 Foreign Cybercriminals After Historic EFCC Raid; 150 More to Follow

On 18 August 2025, the Nigerian Immigration Service, in...

Middle East

PipeMagic Resurfaces: Kaspersky and BI.ZONE Report New Backdoor Activity in GCC and Latin America

On 19 August 2025, Kaspersky and BI.ZONE disclosed the...

Blockchain & Crypto Security

Google Play Enforces Stricter Global Licensing Rules for Cryptocurrency Apps

Google Play has introduced new, jurisdiction-specific licensing requirements for...

Patch

Microsoft Patches 111 CVEs in August 2025 Security Update, Including Critical Azure OpenAI Flaw

On 13 August 2025, Microsoft released its monthly security...

Virtual private networks (VPNs)

Coordinated Brute-Force Campaign Targets Fortinet SSL VPN and FortiManager Services

On 3 August 2025, threat intelligence firm GreyNoise detected...

Europe

Dutch NCSC Confirms Advanced Zero-Day Attacks on Citrix NetScaler: Multiple Critical Organizations Breached

On 11 August 2025, the Dutch National Cyber Security...

Africa

Nigeria Convicts 21 Foreign Hackers, Fines Each ₦1 Million, Orders Deportation in Six Days

On 8 August 2025, the Federal High Court in...

Phishing & Solution

The Cost of a Call: How Voice Phishing Campaigns Escalated into Salesforce Data Extortion

A sophisticated cybersecurity campaign leveraging voice phishing (vishing) has...

Featured Interviews

#Interview: Navigating Security Challenges in the IoT Era: Insights from Industry...

Read The Interview

More...

#Interview: Navigating the Intersection of PCI DSS Compliance and Cyber Law:...

Read The Interview

More...

#Interview: AI and Machine Learning in Zero Trust: Enhancing Threat Detection...

Read The Interview

More...

Middle East

View All

Ooredoo and Qatar Airways Sign MoU to Establish Qatar as Regional AI, Cloud & Cybersecurity Innovation Hub

Ouaissou DEMBELE - September 1, 2025

On 30 August 2025, Ooredoo and Qatar Airways signed a landmark Memorandum of Understanding to establish Qatar as...

PipeMagic Resurfaces: Kaspersky and BI.ZONE Report New Backdoor Activity in GCC and Latin America

Ouaissou DEMBELE - August 20, 2025

On 19 August 2025, Kaspersky and BI.ZONE disclosed the reemergence of the PipeMagic backdoor, a malware strain first...

Oman’s Civil Aviation Authority Boosts Cybersecurity Awareness at Muscat and Salalah Airports

August 4, 2025

Jordan’s Cyber Incidents Soar: NCC Reports 6,758 Attacks in 2024

August 1, 2025

CPX’ Latest Whitepaper for Securing OT: Trust, Collaboration, and the Future of Industrial Cyber Defense

July 14, 2025

UAE Employees Surpass European Peers in Cyber Readiness, Cohesity Study Reveals

June 24, 2025

Iran’s State TV Hijacked to Broadcast Protest Videos Satellite Hack amid Rising Tensions

June 21, 2025

Jordan’s NCSC Greenlights 2025-2028 National Cybersecurity Strategy to Elevate Regional Digital Security

June 20, 2025

AI & Cybersecurity

View All

Breaking News: Supply-Chain Breach Hits Palo Alto Networks and Zscaler via Salesloft’s Drift App

Ouaissou DEMBELE - September 4, 2025

A widespread supply-chain cyberattack has unfolded, centering on OAuth tokens stolen from the Salesloft - Drift application - a third-party AI-powered sales...

Ooredoo and Qatar Airways Sign MoU to Establish Qatar as Regional AI, Cloud & Cybersecurity Innovation Hub

September 1, 2025

PromptLock: ESET Uncovers First Known AI-Powered Ransomware

August 28, 2025

MTN South Africa Launches Nation’s First Re-Usable Biometric Digital ID Across All Stores

August 8, 2025

CVE‑2025‑7847: Arbitrary File Upload in AI Engine Puts 100K+ WordPress Sites at Risk of RCE

August 2, 2025

The Top 10s

View All

Fortressing Your Business Data: Top 10 Most Secure ERP Systems in 2024

Ouaissou DEMBELE - June 11, 2024

In today's data-driven business landscape, Enterprise Resource Planning (ERP) software plays a critical role. It manages core functionalities like finance, inventory, human...

The Digital Fortress: Top 10 Most Secure Operating Systems in 2024

June 10, 2024

Guarded Gates: Top Best 10 Secure Email Services in 2024

June 10, 2024

Securing the Gateway: Top Best 10 Web Application Firewalls (WAFs) in 2024

June 8, 2024

Safeguarding Your Digital Assets: Top 10 Data Backup Solutions in 2024

June 7, 2024

Africa

View All

Africa

EFCC Arrests 37 Suspected Internet Fraudsters in Wukari, Taraba State

Africa

African Authorities Dismantle Massive Cybercrime Networks in INTERPOL-Led Crackdown

Africa

Nigeria Deports 42 Foreign Cybercriminals After Historic EFCC Raid; 150 More to Follow

America

View All

America

Chinese National Sentenced to Four Years for Deploying “Kill Switch” on Employer’s Network

America

SIM-Swapper “Scattered Spider” Hacker Sentenced to 10 Years, Ordered to Pay $13 Million

Asia

View All

Advanced Persistent Threat

Singapore Under Siege: UNC3886 Launches Cyber‑Espionage Strikes on Critical Infrastructure

Asia

Taiwan NSB Warns of Critical Cybersecurity Risks in China-Made Mobile Apps

Asia

Malaysian Home Minister’s WhatsApp Hacked via Foreign VPN: Police Launch Cybercrime Probe

How To

View All

How To

How to identify fake social media profiles? A Guide to Unmasking the Imposters & Identifying Fake Social Media Profiles

How To

How to avoid social engineering scams on social media?: The Social Siren Song

How To

How To Avoid Online Shopping Scams?: The Siren Song of Savings

How To

How to protect your credit card information online?: Fort Knox for Your Wallet

What Is

View All

DoS & DDoS

Under Siege: Understanding DoS and DDoS Attacks in Cybersecurity

What Is

What Is VPN? Tunneling Through the Web: A Comprehensive Guide

What Is

What Is A Computer Virus? The Invisible Invaders: A Comprehensive Guide

What Is

What Is Ransomware? Held Hostage in the Digital Age: Understanding the Threat

Europe

Data Breach

Berlin Charges Alleged German “Anonymous” Member for Major Rosneft Cyberattack

Ouaissou DEMBELE - August 29, 2025

Europe

Dutch NCSC Confirms Advanced Zero-Day Attacks on Citrix NetScaler: Multiple Critical Organizations Breached

Ouaissou DEMBELE - August 12, 2025

View All

Oceania

America

US Deports Notorious Australian Hacker After Landmark Cybercrime Conviction

DENVER/ADELAIDE – United States Immigration and Customs Enforcement (ICE)...

Data Breach

Australia’s Privacy Alarm Bells: A Deep Dive into the Notifiable Data Breaches Report (July-December 2024)

In an era where cyber threats are escalating with...

Banking & Finance

ASIC Sues FIIG Securities Over Cybersecurity Failures Leading to Data Theft

The Australian Securities and Investments Commission (ASIC) has launched...

Education System

Cybersecurity Breach at the University of Notre Dame Australia: Investigation Underway

The University of Notre Dame Australia is currently investigating...

Australia

Bunnings Faces Privacy Backlash Over Facial Recognition Technology Use

Bunnings Group Limited, a prominent retail chain in Australia,...

Hacked - Breached

Breached

Tenable and Qualys Disclose Impact from Salesloft Drift Supply-Chain Breach

AI & Cybersecurity

Breaking News: Supply-Chain Breach Hits Palo Alto Networks and Zscaler via Salesloft’s Drift App

Breached

Bouygues Telecom Cyberattack Exposes 6.4 Million Customers Second Telecom Breach in France This Month

Breached

Air France & KLM Hit in Supply-Chain CRM Breach; ShinyHunters Behind Salesforce Attacks on Global Giants

America

Allianz Life Suffers Data Breach via External Hack: Consumer Data at Risk

View All

Zero-Day

Europe

Dutch NCSC Confirms Advanced Zero-Day Attacks on Citrix NetScaler: Multiple Critical Organizations Breached

Patch

Apple Urges Immediate Update as July 2025 Security Patches Address Multiple Zero‑Days

Patch

Chrome Under Active Exploit: Google Patches High-Risk Zero-Day in V8 Engine (CVE-2025-5419)

Website Security

Unpatched Zero-Day in TI WooCommerce Wishlist Plugin Exposes Over 100K Sites to RCE Risk

Cyberespionage Spying

Marbled Dust Exploits Zero-Day in Output Messenger to Spy on Kurdish Targets: Inside a Sophisticated Regional Espionage Campaign

View All

Cryptocurrencies

Blockchain & Crypto Security

Google Play Enforces Stricter Global Licensing Rules for Cryptocurrency Apps

Application Security

Securing Kubernetes: Understanding and Mitigating Threats to Containerized Environments

Advanced Persistent Threat

Trojanized Messaging Apps and Budget Android Devices: A Perfect Storm for Cryptocurrency Theft

Banking & Finance

MorphoBlue Frontend Vulnerability Exploited for $2.6 Million: A Wake-Up Call for DeFi Security

Blockchain & Crypto Security

Triada Returns with a Vengeance: Preinstalled Trojan Targets Cryptocurrency, Messenger Accounts, and Phone Calls

View All

Cloud Security

AI & Cybersecurity

Ooredoo and Qatar Airways Sign MoU to Establish Qatar as Regional AI, Cloud & Cybersecurity Innovation Hub

Application Security

Microsoft Patches Critical Exchange Hybrid Vulnerability Allowing Cloud Privilege Escalation

Cloud Security

Attackers Unleash TeamFiltration: Active Account Takeover Campaign Hits Over 80,000 Users Across Entra ID Ecosystems

Advanced Persistent Threat

APT41 Unmasked: Chinese Cyber-Espionage Group Uses Google Calendar for Covert Attacks

Application Security

Securing Kubernetes: Understanding and Mitigating Threats to Containerized Environments

View All

Ransomware

AI & Cybersecurity

PromptLock: ESET Uncovers First Known AI-Powered Ransomware

Africa

African Authorities Dismantle Massive Cybercrime Networks in INTERPOL-Led Crackdown

Advanced Persistent Threat

New Charon Ransomware Adopts Earth Baxia APT Techniques to Target Enterprises

Ransomware

Muddled Libra Rebounds: Cybercrime Group Now Faster, Farther-Reaching, and More Impactful in 2025

America

US Sanctions Russia-Linked Bulletproof Hosting Provider Aeza Group for Enabling Ransomware and Infostealer Operations

View All

Crocodilus Mobile Malware Evolves: Banking Trojan Expands Global Reach with Enhanced Capabilities

03 June 2025 - A once regionally focused Android banking Trojan called Crocodilus has surged onto the global stage with advanced capabilities. Newly discovered...

Law Enforcement

Major Cybercrime Blow: Authorities Seize Websites Selling Hacking Tools to Cybercriminals

Global Cybercrime Disruption Hits Underground Malware Ecosystem. On 27 May 2025, a sweeping international law enforcement operation resulted in the seizure of multiple domains...

AI & Cybersecurity

Meta’s Q1 2025 Integrity Reports Reveal Spike in Bullying Content, Rise in Global CyberTips, and New AI Moderation Tools

30 May 2025 - Meta has published its Q1 2025 Integrity Reports, revealing significant shifts in its content moderation strategy, threat disruption efforts, and...

Advanced Persistent Threat

Cybercriminals Camouflage Malware as AI Tools in Sophisticated New Campaign

A surge of new cybersecurity threats has been uncovered by Cisco Talos, revealing a campaign in which malicious actors disguise malware and ransomware as...

Breached

Victoria’s Secret Hit by Security Incident: Website, Email, and Operations Disrupted

On 28 May 2025, Victoria’s Secret & Co. suffered a significant security incident that disrupted its digital infrastructure, including website availability, internal email systems,...

Website Security

Unpatched Zero-Day in TI WooCommerce Wishlist Plugin Exposes Over 100K Sites to RCE Risk

A critical unauthenticated file upload flaw in the TI WooCommerce Wishlist plugin, tracked as CVE-2025-47577, remains unpatched leaving over 100,000 WordPress e-commerce sites exposed...

Advanced Persistent Threat

APT41 Unmasked: Chinese Cyber-Espionage Group Uses Google Calendar for Covert Attacks

On 23 October 2024, Google’s Threat Intelligence Group (GTIG) revealed a sophisticated campaign by Chinese state-linked threat actor APT41, leveraging Google Calendar as command-and-control...

Breached

Everest Ransomware Leaks Coca-Cola Employee Data: Middle East Staff Records Exposed Online

On 22 May 2025, cybersecurity sources confirmed a major data breach targeting Coca-Cola Company’s Middle East operations. Claimed by the Everest ransomware group, the...

Press Release

Global WAAP Attacks Surge to 887.4 Billion: CDNetworks Report Warns of AI-Driven Cyber Onslaught in 2024

SINGAPORE | 28 May 2025 - CDNetworks’ 2024 State of Web Application and API Protection (WAAP) Report reveals a staggering 887.4 billion web and...

Middle East

Mobile Malware Surge in the Middle East: Kaspersky Reports 43% Spike in Q1 2025

In the first quarter of 2025, mobile cyberattacks in the Middle East surged by 43%, reaching over 57,000 incidents, according to Kaspersky's latest findings....

Cyberespionage Spying

Void Blizzard: Russia-Linked Threat Actor Escalates Cyberespionage on Critical Sectors Globally

A newly identified Russia-affiliated threat actor Void Blizzard (also tracked as LAUNDRY BEAR) has ramped up cyberespionage campaigns against key sectors across Europe, North...

America

Silent Ransom Group Launches Cyber Extortion Campaigns Against Law Firms Using Callback Phishing

The cyber threat actor Silent Ransom Group (SRG) also known as Luna Moth, Chatty Spider, and UNC3753 is aggressively targeting U.S. law firms with...

Advanced Persistent Threat

Russia-Aligned TAG-110 Targets Tajikistan with Macro-Enabled Word Documents

Between January and February 2025, TAG-110, a Russia-aligned cyber-espionage group linked to APT28, launched a targeted phishing campaign against Tajikistan using macro-enabled Word template...

Africa

ANSSI Elevates Cyber Defense Capabilities with FBI-Led Training

Joint cybersecurity initiative with FBI boosts Ivorian agency's technical readiness amid escalating threats From 19 to 23 May 2025, Côte d’Ivoire’s National Agency for the...

Advanced Persistent Threat

Winos 4.0 Campaign Unmasked NSIS Abuse, sRDI Shellcode, and a Stealthy Global Threat

A stealth malware campaign leveraging trojanized NSIS installers and advanced in-memory shellcode execution has been tracked by Rapid7 since February 2025. Known as “Winos...

Africa

ANSSI-CI Releases 2024 Cybercrime Report and Legal Security Guide at Côte d’Ivoire’s First Digital Rights Days

ABIDJAN, Côte d’Ivoire - 22 May 2025 - The National Agency for the Security of Information Systems of Côte d’Ivoire (ANSSI-CI) has unveiled its...

Network Security

ViciousTrap Turns 15,000+ Edge Devices into Global Honeypots – New Tactics Threaten Critical Infrastructure Visibility

On 18 May 2025, threat intelligence firm Sekoia.io revealed an ongoing cyber campaign dubbed ViciousTrap, which has compromised over 15,000 edge devices worldwide primarily...

Breached

Adidas Customer Data Breach: Contact Information Stolen via Third-Party Provider

Global sportswear brand Adidas has disclosed a data breach involving unauthorized access to consumer contact information through a third-party customer service vendor. The incident...

Law Enforcement

Operation ENDGAME Strikes Again: Global Law Enforcement Breaks Ransomware Kill Chain at the Source

In a sweeping international crackdown, law enforcement agencies dismantled the infrastructure behind multiple ransomware operations from 19 to 22 May 2025. Dubbed Operation ENDGAME,...

AI & Cybersecurity

Google Chrome Introduces AI-Powered Automatic Password Change Feature To Enhance Password Security

In a groundbreaking update announced on 15 May 2025, Google revealed a sweeping overhaul to Chrome’s identity and authentication framework introducing unified sign-in flows,...

1...567...70 Page 6 of 70

- Gain full access to our premium content

- Never miss a story with active notifications

- Browse free from up to 5 devices at once

Patched

Patch

Microsoft Patches 111 CVEs in August 2025 Security Update, Including Critical Azure OpenAI Flaw

On 13 August 2025, Microsoft released its monthly security...

Application Security

Microsoft Patches Critical Exchange Hybrid Vulnerability Allowing Cloud Privilege Escalation

On 6 August 2025, Microsoft released a critical security...

Patch

Apple Urges Immediate Update as July 2025 Security Patches Address Multiple Zero‑Days

Apple has rolled out a major security update on...

View All

Bug Bounty

Bug Bounty Bonanza: WazirX Launches Program After $230 Million Cyberattack

In the ever-changing landscape of cybersecurity, the Indian cryptocurrency...

Bug Bounty

Why Your Company Needs a Bug Bounty Program: A Proactive Approach to Cybersecurity

In today's ever-evolving digital landscape, cybersecurity threats are a...

Bug Bounty

Big Bucks for Bugs: Google’s $10 Million Bug Bounty Award and Lessons for Responsible Disclosure

In the ever-evolving battle against cybercrime, bug bounty programs...

View All

ISC/SCADA Security

National Security

Cybercrime Surge, State-Sponsored Faketivists, and Evolving OT Threats: Key Insights from 2025H1

Forescout’s newly released 2025H1 Threat Review (5 August 2025)...

Advanced Persistent Threat

Singapore Under Siege: UNC3886 Launches Cyber‑Espionage Strikes on Critical Infrastructure

Singapore is currently facing ongoing cyber-espionage attacks by the...

Middle East

CPX’ Latest Whitepaper for Securing OT: Trust, Collaboration, and the Future of Industrial Cyber Defense

The UAE-based cybersecurity leader CPX has released a groundbreaking...

View All

IAM

Africa

FABMISR Deploys SailPoint IAM Tool with Hemaya IT, Strengthening Cybersecurity and Digital Governance in Egypt

On 19 August 2025, First Abu Dhabi Bank Misr...

Access Control Systems

MTN South Africa Launches Nation’s First Re-Usable Biometric Digital ID Across All Stores

On 8 August 2025, MTN South Africa announced the...

Access Control Systems

HPE Issues Emergency Patch for Critical StoreOnce Vulnerabilities Enabling Remote Authentication Bypass and Code Execution

Hewlett Packard Enterprise (HPE) has released urgent security patches...

View All

cybercory.comcybercory.com

Cybercory Magazine

Cybercory.com serves as a platform for promoting, motivating, and educating its audience on cybersecurity matters, contributing to a more secure digital environment. Cybercory is a part of Sainttly Group.

Popular:

Breaking news:

Featured Interviews

.tdi_194{margin-bottom:10px!important}#Interview: Navigating the Intersection of PCI DSS Compliance and Cyber Law:...

.tdi_218{margin-bottom:10px!important}#Interview: AI and Machine Learning in Zero Trust: Enhancing Threat Detection...

Cybercory Magazine

Latest

Popular

Sitemap

#Interview: Navigating the Intersection of PCI DSS Compliance and Cyber Law:...

#Interview: AI and Machine Learning in Zero Trust: Enhancing Threat Detection...