Home - Cybercory

Cisco ISE RCE Crisis: Critical Unauthenticated Vulnerabilities Demand Immediate Patch

2 days ago 0

Cisco has disclosed three unauthenticated remote code execution (RCE) flaws-CVE‑2025‑20281, CVE‑2025‑20282, and CVE‑2025‑20337-affecting its Identity Services Engine (ISE) and ISE Passive Identity Connector (ISE‑PIC). Scored...

US Nuclear Agency Hacked Through Microsoft SharePoint Flaws

Cyber Attack 14 hours ago

Data Breach

French Police Arrest Five Key Operators Behind BreachForums Data-Theft Platform

On 25 June 2025, France’s specialist cybercrime unit (BL2C) detained five French nationals accused of administering BreachForums, a notorious global data-theft marketplace. This operation marks a...

Breaking news:

Cyber Attack

US Nuclear Agency Hacked Through Microsoft SharePoint Flaws

Microsoft SharePoint has frequently made headlines—and often for negative...

Europe

Key Admin of Russian-Language Cybercrime Forum xss.is Arrested in Ukraine After Europol-Led Crackdown

Kyiv, Ukraine - 22 July 2025: A high-profile administrator...

Saintynet Certification Training Flyer 2025

Saintynet Certification Training Flyer 2025 (1)

Saintynet Certification Training Flyer 2025 (2)

Stay on top of what's going on with our subscription deal!

Worldwide

Open Source Intelligence (OSINT)

Google Launches OSS Rebuild to Reinforce Open Source Supply Chain Security

21 July 2025 - Mountain View, CA - In...

Technology & Telecom

Cisco ISE RCE Crisis: Critical Unauthenticated Vulnerabilities Demand Immediate Patch

Cisco has disclosed three unauthenticated remote code execution (RCE)...

Internet Of Thing Security

Google Takes Legal Action to Disrupt BADBOX 2.0 Botnet of 10 Million+ Infected IoT Devices

Good catch, CISOs and cybersecurity professionals: Google, along with...

Technology & Telecom

Emergency Alert: Critical Unauthenticated RCE Discovered in Cisco ISE/ISE‑PIC

Cisco has patched three severe unauthenticated remote code execution...

Middle East

CPX’ Latest Whitepaper for Securing OT: Trust, Collaboration, and the Future of Industrial Cyber Defense

The UAE-based cybersecurity leader CPX has released a groundbreaking...

Technology & Telecom

NVIDIA Warns of Rowhammer GPU Risk: Activating ECC on A6000 and Enterprise GPUs Essential

NVIDIA has published a Rowhammer Security Notice (updated 9 July 2025)...

Banking & Finance

GMX Suffers Massive $42M DeFi Hack: A Critical Wake‑Up Call for Decentralized Exchanges

On 9 July 2025, the decentralized perpetual exchange GMX-operating...

Advanced Persistent Threat

macOS.ZuRu Resurfaces via Trojanized Termius App Using Modified Khepri C2 Beacon

On 10 July 2025, cybersecurity researchers uncovered a renewed...

America

US Sanctions Russia-Linked Bulletproof Hosting Provider Aeza Group for Enabling Ransomware and Infostealer Operations

The US Department of the Treasury has sanctioned Aeza...

Law Enforcement

Ransomware Gang Hunters International Shuts Down and Offers Free Decryption Keys

The ransomware gang Hunters International announced on 3 July...

Technology & Telecom

CVE‑2025‑20309: Cisco Unified CM Exposes Root via Static SSH Credentials

Cisco disclosed a 10.0 CVSS-critical vulnerability (CVE‑2025‑20309) in its...

Phishing & Solution

PDFs: Portable Documents or Perfect Phishing Vectors?

Cybersecurity professionals are sounding the alarm: PDF attachments are...

Browser & Cybersecurity

Google Urgently Patches CVE‑2025‑6554 Zero‑Day in Chrome 138 Stable Update

On 26 June 2025, Google rapidly deployed a Stable Channel update...

Password Security

ALERT: FBI Warns Scattered Spider Is Now Targeting Airlines with Social Engineering Attacks

What happened, why it matters, why now:The FBI has...

Data Breach

French Police Arrest Five Key Operators Behind BreachForums Data-Theft Platform

On 25 June 2025, France’s specialist cybercrime unit (BL2C) detained five...

Featured Interviews

#Interview: Navigating Security Challenges in the IoT Era: Insights from Industry...

Read The Interview

More...

#Interview: Navigating the Intersection of PCI DSS Compliance and Cyber Law:...

Read The Interview

More...

#Interview: AI and Machine Learning in Zero Trust: Enhancing Threat Detection...

Read The Interview

More...

Middle East

View All

CPX’ Latest Whitepaper for Securing OT: Trust, Collaboration, and the Future of Industrial Cyber Defense

Ouaissou DEMBELE - July 14, 2025

The UAE-based cybersecurity leader CPX has released a groundbreaking whitepaper, "Securing Operational Technology with Trust and Collaboration" (July...

UAE Employees Surpass European Peers in Cyber Readiness, Cohesity Study Reveals

Ouaissou DEMBELE - June 24, 2025

Dubai, 23 June 2025 - A new Cohesity study on “Employee readiness to confront cyber threats” found that...

Iran’s State TV Hijacked to Broadcast Protest Videos Satellite Hack amid Rising Tensions

June 21, 2025

Jordan’s NCSC Greenlights 2025-2028 National Cybersecurity Strategy to Elevate Regional Digital Security

June 20, 2025

Everest Ransomware Leaks Coca-Cola Employee Data: Middle East Staff Records Exposed Online

May 28, 2025

Mobile Malware Surge in the Middle East: Kaspersky Reports 43% Spike in Q1 2025

May 28, 2025

Dubai Electronic Security Center Wraps Up GISEC Global 2025 With Strategic Milestones and National Cyber Talent Recognition

May 13, 2025

GISEC Global 2025 Makes Cybersecurity History with 11 Guinness World Records and Bold Innovations

May 13, 2025

AI & Cybersecurity

View All

Meta’s Q1 2025 Integrity Reports Reveal Spike in Bullying Content, Rise in Global CyberTips, and New AI Moderation Tools

Ouaissou DEMBELE - May 30, 2025

30 May 2025 - Meta has published its Q1 2025 Integrity Reports, revealing significant shifts in its content moderation strategy, threat disruption...

Cybercriminals Camouflage Malware as AI Tools in Sophisticated New Campaign

May 30, 2025

Google Chrome Introduces AI-Powered Automatic Password Change Feature To Enhance Password Security

May 21, 2025

Meta Faces Legal Backlash Over AI Training Plans: NOYB’s Cease and Desist Sparks Potential EU Class Action

May 16, 2025

Safeguarding Philippine Elections: How AI and Cybersecurity are Defending Democracy

May 12, 2025

The Top 10s

View All

Fortressing Your Business Data: Top 10 Most Secure ERP Systems in 2024

Ouaissou DEMBELE - June 11, 2024

In today's data-driven business landscape, Enterprise Resource Planning (ERP) software plays a critical role. It manages core functionalities like finance, inventory, human...

The Digital Fortress: Top 10 Most Secure Operating Systems in 2024

June 10, 2024

Guarded Gates: Top Best 10 Secure Email Services in 2024

June 10, 2024

Securing the Gateway: Top Best 10 Web Application Firewalls (WAFs) in 2024

June 8, 2024

Safeguarding Your Digital Assets: Top 10 Data Backup Solutions in 2024

June 7, 2024

Africa

View All

Africa

Nigerian Hacker Dupes U.S. President Trump’s 2025 Inauguration Fund in Brazen Cyber Heist

Africa

Cybercriminals Weaponized Open-Source Tools in Sustained Campaign Against Africa’s Financial Sector

Africa

Chad’s ANSICE and Brightway Launch National Cybersecurity Mapping to Bolster Digital Resilience

America

View All

America

US Sanctions Russia-Linked Bulletproof Hosting Provider Aeza Group for Enabling Ransomware and Infostealer Operations

America

How a $2.7K Bribe Enabled a $140 Million PIX Theft from Brazilian Banks

Asia

View All

Advanced Persistent Threat

Singapore Under Siege: UNC3886 Launches Cyber‑Espionage Strikes on Critical Infrastructure

Asia

Taiwan NSB Warns of Critical Cybersecurity Risks in China-Made Mobile Apps

Asia

Malaysian Home Minister’s WhatsApp Hacked via Foreign VPN: Police Launch Cybercrime Probe

How To

View All

How To

How to identify fake social media profiles? A Guide to Unmasking the Imposters & Identifying Fake Social Media Profiles

How To

How to avoid social engineering scams on social media?: The Social Siren Song

How To

How To Avoid Online Shopping Scams?: The Siren Song of Savings

How To

How to protect your credit card information online?: Fort Knox for Your Wallet

What Is

View All

DoS & DDoS

Under Siege: Understanding DoS and DDoS Attacks in Cybersecurity

What Is

What Is VPN? Tunneling Through the Web: A Comprehensive Guide

What Is

What Is A Computer Virus? The Invisible Invaders: A Comprehensive Guide

What Is

What Is Ransomware? Held Hostage in the Digital Age: Understanding the Threat

Europe

Key Admin of Russian-Language Cybercrime Forum xss.is Arrested in Ukraine After Europol-Led Crackdown

Ouaissou DEMBELE - July 24, 2025

Breached

Telefónica Hit with Threat: 106 GB Data Leak Warning by Hellcat Hacker

Ouaissou DEMBELE - July 7, 2025

View All

Oceania

Banking & Finance

ASIC Sues FIIG Securities Over Cybersecurity Failures Leading to Data Theft

The Australian Securities and Investments Commission (ASIC) has launched...

Education System

Cybersecurity Breach at the University of Notre Dame Australia: Investigation Underway

The University of Notre Dame Australia is currently investigating...

Australia

Bunnings Faces Privacy Backlash Over Facial Recognition Technology Use

Bunnings Group Limited, a prominent retail chain in Australia,...

Australia

Taking Actions To Protect Children: Australia’s Stand Against Kids Social Media Risks

The rapid rise of social media has transformed communication,...

Australia

Beware of the Purrfect Trap: GootLoader Targets Bengal Cat Lovers in Australia with SEO Poisoning

As bizarre twist combining pet curiosity with cyber deception,...

Hacked - Breached

Breached

Telefónica Hit with Threat: 106 GB Data Leak Warning by Hellcat Hacker

Banking & Cybersecurity

Hype Alert: “Largest Data Breach” of 16 B Credentials Is Just Recycled Data

Breached

Victoria’s Secret Hit by Security Incident: Website, Email, and Operations Disrupted

Breached

Everest Ransomware Leaks Coca-Cola Employee Data: Middle East Staff Records Exposed Online

Breached

Adidas Customer Data Breach: Contact Information Stolen via Third-Party Provider

View All

Zero-Day

Patch

Chrome Under Active Exploit: Google Patches High-Risk Zero-Day in V8 Engine (CVE-2025-5419)

Website Security

Unpatched Zero-Day in TI WooCommerce Wishlist Plugin Exposes Over 100K Sites to RCE Risk

Cyberespionage Spying

Marbled Dust Exploits Zero-Day in Output Messenger to Spy on Kurdish Targets: Inside a Sophisticated Regional Espionage Campaign

Application Security

Exploiting the Kernel: How Play Ransomware Leveraged a Windows Zero-Day for Privilege Escalation

Worldwide

Hello 0-Days, My Old Friend: A 2024 Zero-Day Exploitation Analysis

View All

Cryptocurrencies

Application Security

Securing Kubernetes: Understanding and Mitigating Threats to Containerized Environments

Advanced Persistent Threat

Trojanized Messaging Apps and Budget Android Devices: A Perfect Storm for Cryptocurrency Theft

Banking & Finance

MorphoBlue Frontend Vulnerability Exploited for $2.6 Million: A Wake-Up Call for DeFi Security

Blockchain & Crypto Security

Triada Returns with a Vengeance: Preinstalled Trojan Targets Cryptocurrency, Messenger Accounts, and Phone Calls

Banking & Finance

$1.5 Billion Bybit Crypto Hack : Largest Digital Heist in History

View All

Cloud Security

Attackers Unleash TeamFiltration: Active Account Takeover Campaign Hits Over 80,000 Users Across Entra ID Ecosystems

Advanced Persistent Threat

APT41 Unmasked: Chinese Cyber-Espionage Group Uses Google Calendar for Covert Attacks

Application Security

Securing Kubernetes: Understanding and Mitigating Threats to Containerized Environments

Cloud Security

ConfusedComposer: How a GCP Privilege Escalation Flaw Exposed Cloud Composer to Takeover

Breached

Oracle Cloud Hit By Alleged Data Breach Exposing 6 Millions Records

View All

Ransomware

America

US Sanctions Russia-Linked Bulletproof Hosting Provider Aeza Group for Enabling Ransomware and Infostealer Operations

Law Enforcement

Ransomware Gang Hunters International Shuts Down and Offers Free Decryption Keys

America

U.S. Treasury Sanctions Aeza Group Bulletproof Russian Bulletproof Hosting Provider in Major Cybercrime Crackdown

Application Security

Black Basta Crumbles: Infamous Ransomware Gang Collapses After Internal Fallout-But Its Legacy Lives On

Advanced Persistent Threat

Cybercriminals Camouflage Malware as AI Tools in Sophisticated New Campaign

View All

Strategic Alliance: SCSC and Fortinet Join Forces to Bolster Sharjah’s Cybersecurity Ecosystem

A Landmark Partnership for Digital Resilience. In a significant move to strengthen the United Arab Emirates' cyber defenses, the Sharjah Cyber Security Center (SCSC)...

Conference & Events

AI vs. Cybercriminals: How GISEC 2025 Tackles the Escalating AI Arms Race

The rise of artificial intelligence has ushered in a new era of cyber warfare one where attackers and defenders are locked in an escalating...

Advanced Persistent Threat

APT29’s GRAPELOADER Onslaught: New Russian-Backed Phishing Campaign Targets European Diplomats

A Vintage Cyberattack with a Malicious Aftertaste. In April 2025, cybersecurity researchers at Check Point Research (CPR) uncovered a sophisticated phishing campaign targeting European...

Africa

Cybersecurity Awareness Day Empowers Algerian Secondary Students with Digital Responsibility Skills

In a move to bolster national cyber hygiene and instill digital responsibility among the youth, Algeria’s National Agency for Information Systems Security (ANSSI), under...

Advanced Persistent Threat

Trojanized Messaging Apps and Budget Android Devices: A Perfect Storm for Cryptocurrency Theft

In an era where digital communication and cryptocurrency transactions are ubiquitous, the security of our devices and applications is paramount. Recent investigations have uncovered...

Threat Intelligence and Analysis

End of an Era? MITRE’s CVE Project Faces Uncertain Future After Funding Loss

U.S. government is set to discontinue funding for MITRE's Common Vulnerabilities and Exposures (CVE) program, effective April 16, 2025. Since 1999, this program has...

Network Security

Fortinet Vulnerabilities Under Siege: How Known Flaws Became a Cybercriminal Goldmine in 2025

In April 2025, cybersecurity professionals were once again reminded of a harsh truth: patching is not optional it’s a frontline defense. Fortinet, a globally...

Advanced Persistent Threat

Gleaming Pisces Exploits Python Ecosystem to Deliver PondRAT Malware Targeting Developers

A new cyber threat has emerged, targeting software developers through malicious Python packages. The North Korea-linked advanced persistent threat (APT) group known as Gleaming...

AI & Cybersecurity

Meta’s AI Training in Europe: Navigating Privacy, Compliance, and Cultural Nuance

In April 2025, Meta Platforms announced the resumption of training its artificial intelligence (AI) models using publicly available content from adult users in the...

Africa

Spyware Surge: Kaspersky Reports 14% Rise in Attacks on African Businesses at GITEX Africa 2025

At GITEX Africa 2025 in Morocco, cybersecurity giant Kaspersky unveiled alarming findings from its latest Africa Cyberthreat Landscape Report, revealing a 14% increase in...

Application Security

Palo Alto Networks Alerts: Brute-Force Assaults on PAN-OS GlobalProtect Gateways Signal Heightened Threat Landscape

In a stark reminder of the evolving threat landscape, Palo Alto Networks has recently reported a surge in brute-force login attempts targeting PAN-OS GlobalProtect...

Network Security

Fortinet Warns: Attackers Retain FortiGate Access Post-Patching via SSL-VPN Symlink Exploit

On April 10, 2025, Fortinet issued an urgent security advisory detailing a sophisticated post-patching exploit in FortiGate devices. Cybercriminals are leveraging a newly uncovered...

AI & Cybersecurity

10 Critical Bugs Found in Perplexity AI’s Chatbot Android App Expose Major Security Flaws

In today’s rapidly evolving digital landscape, artificial intelligence (AI) applications are pushing technological boundaries while simultaneously introducing new vulnerabilities. Recently, security researchers identified ten...

Banking & Finance

MorphoBlue Frontend Vulnerability Exploited for $2.6 Million: A Wake-Up Call for DeFi Security

On April 11, 2025, the decentralized finance (DeFi) community was shaken by a significant exploit targeting MorphoBlue, a prominent DeFi protocol. An attacker, identified...

Application Security

100,000+ WordPress Sites at Risk: Administrative User Creation Vulnerability in SureTriggers Plugin Exposes Critical Weakness

A critical vulnerability has been identified in the popular SureTriggers WordPress plugin, affecting over 100,000 active installations. This vulnerability enables unauthenticated attackers to create...

America

Hackers Compromise 150,000 Emails in U.S. Treasury’s OCC Email Breach

A significant cybersecurity incident, the U.S. Department of the Treasury's Office of the Comptroller of the Currency (OCC) disclosed that unauthorized actors had accessed...

Law Enforcement

Operation Endgame: Law Enforcement’s Continued Crackdown on Cybercrime

In May 2024, Operation Endgame marked a significant milestone in the global fight against cybercrime, leading to the dismantling of major botnets such as...

AI & Cybersecurity

When Bots Get Smarter: How AkiraBot Is Exploiting AI to Evade Defenses and Pollute the Web

In an era where generative AI and automation are transforming cybersecurity and cybercrime AkiraBot stands as a prime example of how malicious actors are...

Africa

Empowering the Next Generation: UNDP Calls for Applications to Cybersecurity Training for Youth in West and Central Africa

Cybercrime has no borders, and its impact is especially felt in developing regions where digital infrastructure is evolving faster than security policies. In response,...

Ransomware

Zero-Day Exploitation of CLFS Elevates Ransomware Threat: A Wake-Up Call for Cybersecurity Defenders

A sophisticated wave of ransomware activity has recently shaken multiple sectors globally, exploiting a previously unknown vulnerability in Microsoft’s Common Log File System (CLFS)....

1...678...68 Page 7 of 68

- Gain full access to our premium content

- Never miss a story with active notifications

- Browse free from up to 5 devices at once

Patched

Browser & Cybersecurity

Google Urgently Patches CVE‑2025‑6554 Zero‑Day in Chrome 138 Stable Update

On 26 June 2025, Google rapidly deployed a Stable Channel update...

Access Control Systems

HPE Issues Emergency Patch for Critical StoreOnce Vulnerabilities Enabling Remote Authentication Bypass and Code Execution

Hewlett Packard Enterprise (HPE) has released urgent security patches...

Patch

Chrome Under Active Exploit: Google Patches High-Risk Zero-Day in V8 Engine (CVE-2025-5419)

On 2 June 2025, Google issued an urgent Stable...

View All

Bug Bounty

Bug Bounty Bonanza: WazirX Launches Program After $230 Million Cyberattack

In the ever-changing landscape of cybersecurity, the Indian cryptocurrency...

Bug Bounty

Why Your Company Needs a Bug Bounty Program: A Proactive Approach to Cybersecurity

In today's ever-evolving digital landscape, cybersecurity threats are a...

Bug Bounty

Big Bucks for Bugs: Google’s $10 Million Bug Bounty Award and Lessons for Responsible Disclosure

In the ever-evolving battle against cybercrime, bug bounty programs...

View All

ISC/SCADA Security

Advanced Persistent Threat

Singapore Under Siege: UNC3886 Launches Cyber‑Espionage Strikes on Critical Infrastructure

Singapore is currently facing ongoing cyber-espionage attacks by the...

Middle East

CPX’ Latest Whitepaper for Securing OT: Trust, Collaboration, and the Future of Industrial Cyber Defense

The UAE-based cybersecurity leader CPX has released a groundbreaking...

Network Security

ViciousTrap Turns 15,000+ Edge Devices into Global Honeypots – New Tactics Threaten Critical Infrastructure Visibility

On 18 May 2025, threat intelligence firm Sekoia.io revealed...

View All

IAM

Access Control Systems

HPE Issues Emergency Patch for Critical StoreOnce Vulnerabilities Enabling Remote Authentication Bypass and Code Execution

Hewlett Packard Enterprise (HPE) has released urgent security patches...

Identity & Access Management

Critical Exploit Attempts Targeting Cisco Smart Licensing Utility: What Security Teams Need to Know

In September 2024, Cisco disclosed two critical vulnerabilities in...

Digital Transformation & Security

Empowering Digital Security: ZainTECH Enhances Its Offerings with WSO2’s Asgardeo IDaaS Solution

In a move that underscores the growing need for...

View All

cybercory.comcybercory.com

Cybercory Magazine

Cybercory.com serves as a platform for promoting, motivating, and educating its audience on cybersecurity matters, contributing to a more secure digital environment. Cybercory is a part of Sainttly Group.

Popular:

Breaking news:

Featured Interviews

.tdi_194{margin-bottom:10px!important}#Interview: Navigating the Intersection of PCI DSS Compliance and Cyber Law:...

.tdi_218{margin-bottom:10px!important}#Interview: AI and Machine Learning in Zero Trust: Enhancing Threat Detection...

Cybercory Magazine

Latest

Popular

Sitemap

#Interview: Navigating the Intersection of PCI DSS Compliance and Cyber Law:...

#Interview: AI and Machine Learning in Zero Trust: Enhancing Threat Detection...