Latest News Archives - Page 7 of 49

Latest News

Over 3,500 Sites Breached in JavaScript-Based Cryptomining Campaign

Over 3500 websites have been silently compromised in a new browser-based cryptojacking operation. Researchers at c/side discovered hidden JavaScript that assesses a user’s system power ...

StratosAlly

Latest News

SharePoint 0-Day RCE: Mass Exploitation Delivers Full Server Access

A fresh zero-day in Microsoft SharePoint, CVE-2025-53770, has erupted across on-prem environments. It’s impact: unauthenticated remote code execution (RCE) and full compromise of vulnerable servers. ...

StratosAlly

Latest News

Google Closes Exploited Chromium Hole Enabling Remote Privilege Escalation

A recent code-level revision in the Chromium runtime addresses several critical execution-layer flaws, among them CVE-2025-6558, which has been confirmed as being weaponized in uncontrolled ...

StratosAlly

Latest News

Attackers Abused Outdated NAS Configurations in Targeted Italian Campaign

Authorities have broken up a Romania-based crew that had been quietly locking down network storage systems in Italy’s Lombardy region. The attackers targeted outdated NAS ...

StratosAlly

Latest News

Cloudflare Logs 7.3M DDoS Events Amid Record-Breaking Attack Spikes

Around mid-May 2025, Cloudflare neutralized 7.3 million DDoS events, down from Q1’s 20.5 million, which included a sustained 18-day barrage. Despite the volume drop, attack ...

StratosAlly

Latest News

India Busts International Tech Support Scam Targeting UK and Australia

Indian authorities have dismantled an international cyber fraud ring accused of operating tech support scams that targeted victims in the UK and Australia. The Central ...

StratosAlly

Latest News

Researchers Warn of Widespread RCE Risk from Publicly Leaked Laravel Keys

Security researchers have found that leaked Laravel APP_KEYs can open the door to remote code execution in production environments. These 32-byte encryption keys, meant to ...

StratosAlly

Latest News

FortiWeb Exposed: Unpatched Builds Allow SQL Commands Without Login

Fortinet has patched a severe flaw in FortiWeb, identified as CVE-2025-25257 and rated 9.6 on the CVSS scale. The issue originates from improper input validation ...

StratosAlly

Latest News

Gold Melody’s Silent Symphony: Weaponizing Leaked Machine Keys

Gold Melody, also identified as TGRCRI0045, Prophet Spider, and UNC961, has been observed exploiting exposed ASP.NET machine keys to infiltrate enterprise networks. Access gained through ...

StratosAlly

Latest News

Italian Police Arrest Chinese National Linked to Global Hack Campaign

Italian authorities have arrested 33-year-old Xu Zewei in Milan on suspicion of working with Silk Typhoon, a hacking group believed to be backed by Chinese ...

StratosAlly

Latest News

Over 3,500 Sites Breached in JavaScript-Based Cryptomining Campaign

SharePoint 0-Day RCE: Mass Exploitation Delivers Full Server Access

Google Closes Exploited Chromium Hole Enabling Remote Privilege Escalation

Attackers Abused Outdated NAS Configurations in Targeted Italian Campaign

Cloudflare Logs 7.3M DDoS Events Amid Record-Breaking Attack Spikes

India Busts International Tech Support Scam Targeting UK and Australia

Researchers Warn of Widespread RCE Risk from Publicly Leaked Laravel Keys

FortiWeb Exposed: Unpatched Builds Allow SQL Commands Without Login

Gold Melody’s Silent Symphony: Weaponizing Leaked Machine Keys

Italian Police Arrest Chinese National Linked to Global Hack Campaign

community

Join the community to Stay Updated with the Latest Cybersecurity Trends