Exploitation of Vulnerability in TP-Link Archer Routers Sparks New Botnet Threat Recent investigations by the Cato CTRL team have unveiled a botnet campaign known as Ballista, which specifically targets unpatched TP-Link Archer routers. The campaign takes advantage of a critical remote code execution (RCE) vulnerability designated as CVE-2023-1389, allowing the…
China Accuses NSA of Cyber Attacks Targeting Military University In a significant escalation of cybersecurity tensions, China has leveled accusations against the U.S. National Security Agency (NSA) for conducting multiple cyberattacks on Northwestern Polytechnical University, a prominent military research institution located in Xi’an. Authorities assert that these attacks occurred in…
FBI Director Reports ‘Highly Qualified’ Replacements for Cyber Leadership Amid Departures Chris Riotta (@chrisriotta) • September 19, 2025 J. Edgar Hoover Building, FBI headquarters, Washington, D.C. (Image: Shutterstock) FBI Director Kash Patel defended the bureau’s capacity to tackle cybercrime despite a wave of departures among senior cyber officials. During a…
Cyberattack Targets Ascension: A Deep Dive into Security Missteps In a troubling incident within the healthcare sector, Ascension, a significant player in medical services, has faced a severe network breach. Despite Ascension’s choice to remain silent regarding the details of this attack, a preliminary analysis reveals critical deficiencies in their…
Cybersecurity experts have recently unveiled a previously identified vulnerability within the Microsoft SharePoint connector on the Power Platform. This flaw, now patched, presented a critical risk by potentially enabling malicious actors to exploit user credentials, paving the way for subsequent attacks aimed at sensitive data repositories. The exploitation of this…
Consumer Alert: Navigating the Complexities of Data Breaches In the ever-evolving landscape of cybersecurity, recent reports have brought to light critical information regarding new data breaches that pose significant risks to businesses. As organizations increasingly rely on digital infrastructures, understanding the nature of these incidents becomes paramount. A recent data…
Apple Issues Critical Security Update for Zero-Day Vulnerability On Tuesday, Apple announced the release of a security update aimed at patching a significant zero-day vulnerability, identified by the CVE number CVE-2025-24201. This flaw, embedded within the WebKit browser engine, has reportedly been exploited in highly sophisticated attacks aimed at specific…
A significant security vulnerability has been discovered in a popular premium WordPress plugin, WPGateway, with the potential for active exploitation in real-world conditions. This zero-day flaw allows malicious actors to gain complete control over affected WordPress sites, posing a substantial risk to web administrators who utilize this tool. The vulnerability,…
Artificial Intelligence & Machine Learning, Next-Generation Technologies & Secure Development Startup Develops AI Simulations to Combat Cyber Threats Michael Novinson (@MichaelNovinson) • September 19, 2025 Irregular’s CTO Omer Nevo and CEO Dan Lahav (Image: Irregular) Irregular, an AI security lab, has secured $80 million in funding to create test environments…
