Google Issues Emergency Patch for Actively Exploited Chrome Zero-Day Vulnerability
Google has released an emergency out-of-band update to address a critical zero-day vulnerability in its Chrome browser, identified as CVE-2025-5419. This high-severity flaw, with a CVSS score of 8.8, affects…
Qualcomm Patches Three Actively Exploited Zero-Day Vulnerabilities in Adreno GPU
On June 2, 2025, Qualcomm released critical security updates addressing three zero-day vulnerabilities in its Adreno Graphics Processing Unit (GPU) drivers. These vulnerabilities, identified as CVE-2025-21479, CVE-2025-21480, and CVE-2025-27038, have…
Europol’s Operation Endgame Dismantles Global Ransomware Infrastructure
In a significant blow to cybercriminal networks, Europol, in collaboration with international law enforcement agencies, has executed a large-scale operation targeting the infrastructure supporting ransomware activities. Dubbed “Operation Endgame,” this…
TikTok Becomes a New Vector for Malware Distribution
In a concerning development, cybercriminals are exploiting TikTok’s vast user base by disseminating AI-generated videos that instruct viewers to execute PowerShell commands under the guise of activating software like Windows,…
Chinese Hackers Deploy ‘MarsSnake’ Backdoor in Multi-Year Espionage Campaign Targeting Saudi Organization
In a newly uncovered cyber-espionage campaign attributed to a Chinese state-aligned threat group, researchers have identified a custom malware dubbed MarsSnake that was used to infiltrate a Saudi Arabian organization…
Mozilla Addresses Critical Zero-Day Flaws in Firefox
On May 19, 2025, Mozilla released urgent security updates for its Firefox browser, addressing two critical zero-day vulnerabilities actively exploited during the Pwn2Own Berlin hacking competition. These vulnerabilities, identified as…
DefendNot: New Tool Exploits Windows Security Center to Disable Microsoft Defender
Cybersecurity researchers have unveiled a controversial new tool named DefendNot, capable of disabling Microsoft Defender Antivirus by spoofing the presence of a third-party antivirus product. The tool exploits undocumented behavior…
Marks & Spencer Breach: A Business and Security Wake-Up Call for Retail
In April 2025, retail giant Marks & Spencer (M&S) was struck by a major cyberattack, resulting in the exposure of data belonging to over 9 million customers. The attackers—allegedly the…
Emerging Threats: HTTPBot Botnet Targets Gaming and Tech Sectors
A newly identified botnet named “HTTPBot” has emerged as a significant cybersecurity threat, executing over 200 precision-targeted distributed denial-of-service (DDoS) attacks since April 2025. This malware primarily targets the gaming…
Russian APT28 Hackers Exploit Zero-Day in MDaemon Webmail in Operation RoundPress
A newly uncovered cyber-espionage campaign, Operation RoundPress, has been linked to the Russian state-sponsored threat actor APT28, also known as Fancy Bear, Sednit, and BlueDelta. The attackers exploited multiple webmail…