Cyber News

A critical vulnerability in Microsoft SharePoint has been actively exploited in the wild since at least July 7, 2025, according to research by Check Point. The initial wave of attacks targeted a major, unnamed Western government and escalated rapidly around July 18–19, spreading across the government, telecommunications, and software sectors in North America and Western […]

Cybersecurity researchers have identified two significant security vulnerabilities in the Sudo command-line utility, commonly used in Linux and Unix-like systems. These flaws could allow local attackers to escalate their privileges and gain root access on affected machines. Sudo is a powerful tool that lets low-privileged users execute commands as another user—typically the superuser—enabling administrative actions

The United States Postal Service (USPS) is alerting the public to a new phishing-related scam called “brushing” — and it’s arriving directly in people’s mailboxes. The scam begins when a person receives an unexpected package, often appearing to come from a well-known retailer or online marketplace. These packages may lack a return address and typically

The U.S. Federal Bureau of Investigation (FBI) has reported that the cybercrime group Scattered Spider is expanding its operations to target the airline industry. In response, the agency is working closely with aviation stakeholders and industry partners to counter the threat and support affected organizations. “These attackers use social engineering tactics, often posing as employees

Hawaiian Airlines Confirms Cybersecurity Incident, Flight Operations Unaffected Hawaiian Airlines announced on Thursday that it is responding to a cybersecurity incident that disrupted portions of its IT infrastructure. Despite the event, the airline emphasized that its flight operations remain unaffected. In a notice posted on its website at 10:45 a.m. PST, the Honolulu-based carrier informed

Multiple caches of login credentials have surfaced online, revealing one of the largest data breaches ever recorded—an astonishing 16 billion exposed usernames and passwords. The troves appear to originate from various infostealing malware strains, quietly harvesting credentials from unsuspecting users. This incident highlights a critical issue: collecting sensitive data, even without malicious intent, can be

The ransomware group known as Interlock publicly claimed responsibility on Wednesday for the ongoing cyberattack targeting Kettering Health, asserting that it exfiltrated nearly 1 terabyte of sensitive data from the healthcare organization. Kettering Health, which operates over 120 medical facilities—including nine major hospitals across Ohio—has been grappling with widespread system outages since first disclosing the

ConnectWise, the company behind the remote access and support platform ScreenConnect, has confirmed it was targeted in a cyberattack believed to have been carried out by a sophisticated nation-state threat actor. In a brief advisory report published on May 28, 2025, the company stated, “ConnectWise recently identified suspicious activity within our systems that we believe

A new malware campaign is targeting misconfigured Docker API instances, converting them into a cryptocurrency mining botnet. The primary goal of the attacks is to mine Dero cryptocurrency, and the campaign is particularly notable for its worm-like ability to spread the infection to other vulnerable Docker instances. According to Kaspersky, an unidentified threat actor gains