News

SecurityWeek2d
In Other News: Hacker Helps Kill Informants, Crylock Developer Sentenced, Ransomware Negotiator Probed
SecurityWeek’s cybersecurity news roundup for July 4, 2025 provides a concise compilation of noteworthy stories.
SecurityWeek10d
Thousands of SaaS Apps Could Still Be Susceptible to nOAuth
New research from Semperis suggests more than 10,000 SaaS apps could remain vulnerable to a nOAuth attack variant.
SecurityWeek12d
North Korean Hackers Take Over Victims’ Systems Using Zoom Meeting
North Korean hackers employ social engineering to trick Zoom Meeting participants into executing system-takeover commands.
SecurityWeek4d
Like Ransoming a Bike: Organizational Muscle Memory Drives the Most Effective Response
The key tool for surviving ransomware, or any attack scenario, is an incident response (IR) plan that is comprehensive, ...
SecurityWeek5d
Cloudflare Puts a Default Block on AI Web Scraping
Cloudflare now blocks AI crawlers by default, giving website owners more control over how their content is scraped for AI ...
SecurityWeek3d
North Korean Hackers Use Fake Zoom Updates to Install macOS Malware
North Korean hackers are using fake Zoom invites to install ‘NimDoor’ malware — a rare Nim-compiled backdoor targeting macOS ...
SecurityWeek3d
Cisco Warns of Hardcoded Credentials in Enterprise Software
A critical vulnerability (CVE-2025-20309) in Cisco's Unified CM and Unified CM SME communication management software could ...
SecurityWeek4d
Qantas Data Breach Impacts Up to 6 Million Customers
Australian airline Qantas says personal information stolen from systems hosting the service records of 6 million customers.
SecurityWeek5d
Thousands of Citrix NetScaler Instances Unpatched Against Exploited Vulnerabilities
Many Citrix NetScaler systems are exposed to attacks exploiting the vulnerabilities tracked as CVE-2025-5777 and ...
SecurityWeek4d
Forminator WordPress Plugin Vulnerability Exposes 400,000 Websites to Takeover
A vulnerability in the Forminator WordPress plugin allows attackers to delete arbitrary files and take over impacted websites ...
SecurityWeek5d
Iranian Hackers’ Preferred ICS Targets Left Open Amid Fresh US Attack Warning
The US government is again warning about potential Iranian cyberattacks as researchers find that hackers’ favorite ICS ...
SecurityWeek3d
Cybersecurity M&A Roundup: 41 Deals Announced in June 2025
Forty-one cybersecurity merger and acquisition (M&A) deals were announced in June 2025 and added to SecurityWeek tracker.