Latest News

When Your Email Guardian Needs Guarding: Libraesva’s Emergency Fix

Libraesva has rolled out an emergency security update for its Email Security Gateway (ESG) after confirming that a command injection vulnerability, tracked as CVE-2025-59689, was ...

StratosAlly

Latest News

Stellantis Data Breach Tied to Salesforce Vendor Compromise

Stellantis, the multinational automaker behind Chrysler, Dodge, Jeep, Peugeot, and a dozen other brands, has confirmed that customer information was compromised in a recent cyber ...

StratosAlly

Latest News

MalTerminal: Security Teams Warn After Discovery of GPT-4-Driven Malware Prototype

Cybersecurity researchers at SentinelOne have come across a curious sample that may be the first malware to actually embed a Large Language Model (LLM). The ...

StratosAlly

Latest News

Fake GitHub Pages Deliver Atomic Stealer in macOS Malware Campaign

LastPass has warned of a widespread malware campaign in which attackers are abusing GitHub repositories to distribute Atomic Stealer (AMOS), an infostealer targeting Apple macOS ...

StratosAlly

Latest News

Cyberattack on Jaguar Land Rover Extends Factory Shutdown and Puts Supply Chain at Risk

Jaguar Land Rover (JLR), Britain’s largest automotive manufacturer, has prolonged its production shutdown after suffering a major cyber incident on September 1. The company confirmed ...

StratosAlly

Latest News

Apple Backports Security Fix for Exploited ImageIO Flaw to Older Devices

Apple has backported a patch for CVE-2025-43300, an out-of-bounds write flaw in the ImageIO framework, extending protection to older devices that did not initially receive ...

StratosAlly

Latest News

npm Supply Chain Hack Exposes Developer Secrets

A sophisticated supply chain attack has compromised over 40 npm packages, all maintained by different developers. This campaign, codenamed the ‘Shai-Hulud’ attack after the sandworms ...

StratosAlly

Latest News

New Phishing Tool VoidProxy Targets Microsoft and Google Accounts, Stealing Credentials and MFA Codes

Okta Threat Intelligence has identified a high-risk phishing platform named VoidProxy. The service targets Microsoft 365 and Google users to capture sensitive data, including login ...

StratosAlly

Latest News

Samsung Addresses Critical Android Zero-Day in Quram Image Codec

On September 12, 2025, Samsung issued its latest Android security patch, which resolves a significant zero-day flaw that has been actively exploited in attacks on ...

StratosAlly

Latest News

EggStreme Malware: A Stealth Weapon Targeting Military Systems

A newly uncovered cyber-espionage campaign is attributed to a Chinese-linked Advanced Persistent Threat (APT) group. While the campaign strongly aligns with Chinese APT tactics and ...

StratosAlly

Latest News

When Your Email Guardian Needs Guarding: Libraesva’s Emergency Fix

Stellantis Data Breach Tied to Salesforce Vendor Compromise

MalTerminal: Security Teams Warn After Discovery of GPT-4-Driven Malware Prototype

Fake GitHub Pages Deliver Atomic Stealer in macOS Malware Campaign

Cyberattack on Jaguar Land Rover Extends Factory Shutdown and Puts Supply Chain at Risk

Apple Backports Security Fix for Exploited ImageIO Flaw to Older Devices

npm Supply Chain Hack Exposes Developer Secrets

New Phishing Tool VoidProxy Targets Microsoft and Google Accounts, Stealing Credentials and MFA Codes

Samsung Addresses Critical Android Zero-Day in Quram Image Codec

EggStreme Malware: A Stealth Weapon Targeting Military Systems

community

Join the community to Stay Updated with the Latest Cybersecurity Trends