Cyberwarfare / Nation-State Attacks , Fraud Management & Cybercrime Chinese Hackers Exploit Windows Vulnerability Against European Diplomats Akshaya Asokan (asokan_akshaya) , David Perera (@daveperera) • November 5, 2025 Image: AR Pictures/Shutterstock Security researchers have reported that Chinese nation-state hackers are actively using a Windows vulnerability to target European…
The campaign of Mamdani did not provide a response to inquiries for comment regarding recent developments. The New York Police Department (NYPD) significantly expanded its mass surveillance programs under Commissioner Raymond Kelly following the September 11 attacks, supported by substantial federal anti-terrorism funding. However, Ferguson highlights that former commissioner William…
T-Mobile has confirmed it fell victim to a security breach in March, attributed to the notorious LAPSUS$ hacking group, known for its sophisticated cyber exploits. This assertion comes following revelations by investigative journalist Brian Krebs, who disclosed internal communications from LAPSUS$ that corroborate multiple incursions into T-Mobile’s systems throughout March,…
GitHub Security Updates Address Critical Vulnerabilities in Enterprise Server GitHub has announced crucial security updates for its Enterprise Server (GHES), responding to multiple vulnerabilities, including a severe flaw that could lead to unauthorized access. The updates aim to enhance user protection, particularly against a vulnerability identified as CVE-2024-9487, which has…
A significant security vulnerability has emerged within the Kubernetes Image Builder, posing a risk of unauthorized root access under specific conditions. The flaw, identified as CVE-2024-9486 and rated with a critical CVSS score of 9.8, has been resolved in the latest release, version 0.1.38. The vulnerability was reported by security…
SolarWinds, a technology firm based in Texas, has recently issued critical patches to address a remote code execution vulnerability in its Serv-U managed file transfer service. This move comes on the heels of a significant supply chain attack the company faced late last year, which raised alarms about its security…
Microsoft has recently identified a series of attacks on SolarWinds’ Serv-U managed file transfer service, which were executed using a now-resolved remote code execution (RCE) vulnerability attributed to a Chinese threat group known as “DEV-0322.” This announcement follows SolarWinds’ emergency patches aimed at countering an exploit that could have allowed…
The U.S. government, along with critical allies such as the European Union, the United Kingdom, and NATO, has officially linked a substantial cyberattack on Microsoft Exchange email servers to state-sponsored hacking groups associated with China’s Ministry of State Security (MSS). The attack exploited zero-day vulnerabilities in Microsoft Exchange, which were…
Significant changes are coming to Gmail’s security protocols. dpa/picture alliance via Getty Images Updated on November 3 with additional reports regarding compromised Gmail passwords and updated recommendations for users regarding password management. While numerous claims of widespread Gmail password leaks have circulated recently, Google has reassured users that no immediate…
