Cybersecurity News - Page 69

Attackers create a symbolic link within the language files folder of devices with SSL-VPN enabled that connects the user filesystem to the root filesystem.

In brief: Microsoft fixes yet another Windows zero-day, Russian hackers continue to target military missions, and more.

The issue stems from a hardcoded machineKey in the web application’s configuration file.

The advisory focuses on two spyware families, dubbed ‘BadBazaar’ and ‘Moonshine’ masquerading as seemingly legitimate apps.

Researchers believe the hacker behind the breach is likely the same group responsible for the previous BlackBasta leak.

The hackers gained access to the OCC's email system after compromising an administrator’s account, allowing them to monitor email communications of high-ranking officials.

Microsoft said the zero-day flaw has been exploited in the Storm-2460 ransomware attacks to deploy the PipeMagic malware.

His alleged actions included watching the women undress, breastfeed, and engage in private activities such as intimate acts with their husbands.

Experts speculate that the Everest gang’s use of a WordPress template for their leak site might have played a key role in the breach.

The vulnerability, now tracked as CVE-2025-31161, allows attackers to bypass authentication and gain unauthorized access to targeted systems.