News Archives ⋆ CyberHood Sentinel

Google Patches Actively Exploited Android Vulnerability CVE-2025-27363 in May 2025 Security Bulletin

May 6, 2025 TeamHood

May 6, 2025 — Google has issued its monthly Android security bulletin, highlighting a major vulnerability—CVE-2025-27363—that is confirmed to have been actively exploited in the wild. The critical flaw is…

News

Wormable AirPlay Flaws Allow Zero-Click Attacks on Apple and Third-Party Devices

May 5, 2025 TeamHood

Cybersecurity researchers have uncovered a series of critical vulnerabilities in Apple’s AirPlay protocol, collectively dubbed “AirBorne,” that could allow attackers to take control of devices without user interaction. These flaws,…

News

Critical Commvault Vulnerability Actively Exploited, Added to CISA’s KEV Catalog

May 5, 2025 TeamHood

The U.S. Cybersecurity and Infrastructure Security Agency (CISA) has added a critical vulnerability affecting Commvault’s Command Center to its Known Exploited Vulnerabilities (KEV) catalog, following confirmed reports of active exploitation.…

News

SentinelOne Uncovers Chinese APT ‘PurpleHaze’ Targeting Global Enterprises in Espionage Campaign

April 30, 2025 TeamHood

Cybersecurity firm SentinelOne has identified a sophisticated cyber-espionage campaign attributed to a China-linked threat cluster known as “PurpleHaze.” This group has been conducting reconnaissance operations against SentinelOne’s infrastructure and several…

News

Over 1,200 SAP NetWeaver Servers Exposed to Critical Vulnerability Actively Exploited in the Wild

April 28, 2025 TeamHood

A critical security flaw in SAP NetWeaver Application Server has left over 1,200 servers exposed to potential attacks, with threat actors actively exploiting the vulnerability to gain unauthorized access and…

News

Supply Chain Cyberattack Hits South Korean Firms: Lazarus Group Behind Operation

April 24, 2025 TeamHood

In a recent surge of cyber activity attributed to North Korea’s notorious Lazarus Group, six South Korean firms across various industries have fallen victim to a targeted supply chain cyberattack…

News

Phishers Exploit Google Sites and DKIM Protections to Launch Sophisticated Attacks

April 22, 2025 TeamHood

In a concerning development, cybercriminals are exploiting trusted Google services—particularly Google Sites and DomainKeys Identified Mail (DKIM)—to bypass traditional security mechanisms and execute highly deceptive phishing campaigns. This evolving tactic…

News

Chinese Hackers Deploy Upgraded MysterySnail RAT to Target Russian and Mongolian Governments

April 18, 2025 TeamHood

A suspected Chinese state-sponsored hacking group, known as IronHusky, has launched a sophisticated cyber-espionage campaign targeting Russian and Mongolian government institutions. The attack involves a revamped version of the MysterySnail…

News

Windows Vulnerability CVE-2025-24054 Actively Exploited to Steal NTLM Credentials

April 18, 2025 TeamHood

A medium-severity vulnerability in Microsoft Windows, identified as CVE-2025-24054, is currently under active exploitation, enabling attackers to steal NTLM credentials through minimal user interaction. The U.S. Cybersecurity and Infrastructure Security…

News

U.S. Government Extends Funding for MITRE’s CVE Program Amid Cybersecurity Concerns

April 16, 2025 TeamHood

In a critical move to maintain global cybersecurity infrastructure, the U.S. Cybersecurity and Infrastructure Security Agency (CISA) has extended its contract with the MITRE Corporation to continue operating the Common…

Category: News

You missed