information security news

Google fixed the first actively exploited Chrome zero-day since the start of the yearGoogle fixed the first actively exploited Chrome zero-day since the start of the year

Google fixed the first actively exploited Chrome zero-day since the start of the year

Google fixed a flaw in the Chrome browser for Windows that was actively exploited in attacks targeting organizations in Russia.…

1 week ago
Authentication bypass CVE-2025-22230 impacts VMware Windows ToolsAuthentication bypass CVE-2025-22230 impacts VMware Windows Tools

Authentication bypass CVE-2025-22230 impacts VMware Windows Tools

Broadcom addressed a high-severity authentication bypass vulnerability, tracked as CVE-2025-22230, in VMware Tools for Windows. Broadcom released security updates to…

1 week ago
Android malware campaigns use .NET MAUI to evade detectionAndroid malware campaigns use .NET MAUI to evade detection

Android malware campaigns use .NET MAUI to evade detection

Researchers warn of a new Android malware that uses .NET MAUI to mimic legit services and evade detection. McAfee researchers…

1 week ago
Astral Foods, South Africa’s largest poultry producer, lost over $1M due to a cyberattackAstral Foods, South Africa’s largest poultry producer, lost over $1M due to a cyberattack

Astral Foods, South Africa’s largest poultry producer, lost over $1M due to a cyberattack

Astral Foods, South Africa’s largest poultry producer, lost over $1M due to a cyberattack disrupting deliveries and impacting operations. Astral…

1 week ago
Chinese APT Weaver Ant infiltrated a telco in Asia for over four yearsChinese APT Weaver Ant infiltrated a telco in Asia for over four years

Chinese APT Weaver Ant infiltrated a telco in Asia for over four years

China-linked APT Weaver Ant infiltrated the network of a telecommunications services provider for over four years.  The China-linked threat actor…

2 weeks ago
Medusa ransomware uses malicious Windows driver ABYSSWORKER to disable security toolsMedusa ransomware uses malicious Windows driver ABYSSWORKER to disable security tools

Medusa ransomware uses malicious Windows driver ABYSSWORKER to disable security tools

Medusa ransomware uses a malicious Windows driver ABYSSWORKER to disable security tools, making detection and mitigation more difficult. Elastic Security…

2 weeks ago
Attackers can bypass middleware auth checks by exploiting critical Next.js flaw<gwmw style="display:none;"></gwmw><gwmw style="display:none;"></gwmw>Attackers can bypass middleware auth checks by exploiting critical Next.js flaw<gwmw style="display:none;"></gwmw><gwmw style="display:none;"></gwmw>

Attackers can bypass middleware auth checks by exploiting critical Next.js flaw<gwmw style="display:none;"></gwmw><gwmw style="display:none;"></gwmw>

A critical flaw in the Next.js React framework could be exploited to bypass authorization checks under certain conditions. Maintainers of…

2 weeks ago
FBI warns of malicious free online document converters spreading malware<gwmw style="display: none; background-color: transparent;"></gwmw>FBI warns of malicious free online document converters spreading malware<gwmw style="display: none; background-color: transparent;"></gwmw>

FBI warns of malicious free online document converters spreading malware<gwmw style="display: none; background-color: transparent;"></gwmw>

The FBI warns of a significant increase in scams involving free online document converters to infect users with malware. The…

2 weeks ago
Cloak ransomware group hacked the Virginia Attorney General’s OfficeCloak ransomware group hacked the Virginia Attorney General’s Office

Cloak ransomware group hacked the Virginia Attorney General’s Office

The Cloak ransomware group claims responsibility for a cyberattack on the Virginia Attorney General’s Office that occurred in February. The…

2 weeks ago
SECURITY AFFAIRS MALWARE NEWSLETTER ROUND 38SECURITY AFFAIRS MALWARE NEWSLETTER ROUND 38

SECURITY AFFAIRS MALWARE NEWSLETTER ROUND 38

Security Affairs Malware newsletter includes a collection of the best articles and research on malware in the international landscape Decrypting…

2 weeks ago