News

Cyber Security News
cyberpress. org > seo-poisoning-spreads-screenconnect

Screen Connect Malware Campaign Uses SEO Poisoning to Target Freeware Downloads

2+ hour, 26+ min ago  (358+ words) The threat actors employ sophisticated search engine optimization (SEO) poisoning to push malicious websites to the top of Google and Bing search results, tricking users into downloading what appears to be legitimate freeware. This highly coordinated attack ultimately deploys the…...

Cyber Security News
cyberpress. org > apple-privacy-feature-fails-hide-real-email

Apple Privacy Feature Fails to Hide Real Email Addresses Due to Unpatched Flaw

4+ hour, 58+ min ago  (417+ words) A long-standing vulnerability in Apple's "Hide My Email" feature allows almost anyone to uncover the real email address behind a supposedly anonymous alias, and Apple has failed to fix the issue for more than a year despite being warned. The…...

Symbols: cert.pl
Cyber Security News
cyberpress. org > jadepuffer-breaches-production-database

JADEPUFFER Uses Min IO Default Credentials and Nacos Takeover to Breach Production Database

5+ hour, 54+ min ago  (342+ words) Ransomware operations have historically relied on human operators, but a new era of automated threats has arrived. Security researchers have identified JADEPUFFER, an Agentic Threat Actor (ATA) that executed the first documented end-to-end extortion campaign driven entirely by a Large…...

Symbols: nyse:path
Cyber Security News
cyberpress. org > stealth-webshell-mimikatz-attack

Threat Actor Uses Steganographic Webshell and Mimikatz After Disabling Endpoint Defenses

6+ hour, 22+ min ago  (324+ words) A recent incident response investigation has exposed a sophisticated attack chain in which threat actors used steganographic webshells and extensive defense-evasion techniques to compromise a web server. The attack underscores the critical importance of comprehensive remediation, as the attackers repeatedly…...

Symbols: cwe-59
Cyber Security News
cyberpress. org > lshiy-password-spray-campaign

LSHIY Password Spray Campaign Targets Microsoft 365 Accounts With 81 Million Login Attempts

6+ hour, 3+ min ago  (559+ words) A massive automated password-spray campaign against Microsoft's Azure command-line interface has racked up more than 81 million login attempts in just two weeks. Huntress researchers traced the attack to an IPv6 range controlled by internet infrastructure provider LSHIY LLC (AS32167). Between June 12 and…...

Cyber Security News
cyberpress. org > cursor-ide-critical-rce-flaws

Cursor IDE Critical RCE Flaws Let Attackers Overwrite System Files via Prompt Injection

6+ hour, 48+ min ago  (467+ words) Two critical remote code execution flaws in Cursor IDE let attackers exploit prompt injection to escape the editor's sandbox and take over developer machines. Cato AI Labs has disclosed these vulnerabilities, collectively named "Dune Slide," affecting the AI-powered code editor…...

Symbols: cwe-78
Cyber Security News
cyberpress. org > ai-built-browser-ransomware-workflows

Deep Seek-Generated Malware Shows How AI Can Build Browser-Native Ransomware Workflows

7+ hour, 24+ min ago  (421+ words) Large language models have drastically changed software development, and cybercriminals are quickly adopting these tools to build malicious payloads. While vendors like Open AI and Anthropic have implemented strict cyber-safety guardrails to block harmful requests, other models present a different…...

Symbols: btc-usd,^n2250,eth-usd
Cyber Security News
cyberpress. org > fortibleed-credential-theft-campaign

Forti Bleed Credential Theft Campaign Tied to INC and Lynx Ransomware Attacks

7+ hour, 35+ min ago  (530+ words) Forti Bleed, the sprawling credential-harvesting campaign that has quietly compromised hundreds of thousands of Forti Gate firewalls, now has a confirmed link to active ransomware operations. SOCRadar's Threat Research Unit (STRU) found an operator with access to Forti Bleed's infrastructure…...

Symbols: btc-usd,^n2250,eth-usd
Cyber Security News
cyberpress. org > fake-claude-code-google-ad-delivers-macsync-stealer-hijacks-ledger-wallets

Fake "Claude Code" Google Ad Delivers Mac Sync Stealer, Hijacks Ledger Wallets on mac OS

21+ hour, 18+ min ago  (1082+ words) A malicious Google Ads campaign impersonating Anthropic's Claude Code installer is targeting mac OS users with a credential-stealing malware strain known as Mac Sync Stealer. According to research by Giovanni Braccini of Beelzebub Labs, the operation used a fake Google…...

Cyber Security News
cyberpress. org > citrix-netscaler-adc-and-gateway-flaws

Citrix Net Scaler ADC and Gateway Flaws Expose Appliances to Do S and File Read Attacks

1+ day, 5+ hour ago  (362+ words) Cloud Software Group has disclosed six vulnerabilities affecting Net Scaler ADC and Net Scaler Gateway, several of which carry High severity ratings and could allow attackers to trigger denial-of-service conditions, read arbitrary files, or overread sensitive memory. The most severe…...

Symbols: cwe-78,cwe-89,cwe-22