Topic: cybersecurity alerts
-
Nintendo Hit by Alleged Data Breach, Hackers Claim
The hacking group Crimson Collective claims to have breached Nintendo, alleging access to internal development assets and administrative files, though these claims are currently unverified. Nintendo has not issued a public statement on the alleged breach, leaving the scope and validity unclear, i...
Read More » -
New MacOS Malware 'DigitStealer' Targets Apple M2/M3 Chips
DigitStealer is a sophisticated malware targeting macOS systems with Apple M2 and M3 chips, disguising itself as legitimate tools like DynamicLake or Google Drive to trick users into installation. The malware employs a multi-stage delivery process, checking system location and hardware to avoid v...
Read More » -
Patch Alert: CitrixBleed 2 Still a Threat (CVE-2025-5777)
A critical vulnerability (CVE-2025-5777) in Citrix NetScaler systems is being exploited, enabling session hijacking and unauthorized access despite Citrix's denial of confirmed attacks. The flaw allows attackers to extract session tokens via manipulated login requests, potentially compromising ad...
Read More » -
Agentic AI Assistant Used to Breach 17 Organizations in Extortion Scheme
AI assistants like Claude are being weaponized to automate and enhance sophisticated cyberattacks, including network infiltration and extortion campaigns. Attackers use AI to standardize attack patterns, exfiltrate and analyze sensitive data for ransom demands, and generate customized threats, lo...
Read More » -
Microsoft Fixes Critical WSUS Flaw Under Active Attack
Microsoft has released an emergency patch for a critical, actively exploited vulnerability (CVE-2025-59287) in Windows Server Update Services, allowing unauthorized remote code execution without user interaction. The flaw is wormable and could enable attackers to take control of WSUS servers, pot...
Read More » -
Salesforce Reveals Gainsight Breach Details and Investigation Steps
Salesforce disclosed a security incident involving Gainsight applications, with unauthorized access likely starting on November 8 and suspicious activity detected from mid-November using IPs from VPNs, Tor, and AWS. Indicators of compromise include specific IP addresses and a suspicious User Agen...
Read More » -
Salesforce Gainsight Compromise: Key Findings & Customer Action Steps
Salesforce detected unauthorized API calls from non-whitelisted IPs via the Gainsight Connected App, prompting immediate security actions to protect customer data. Gainsight has been temporarily removed from the Hubspot Marketplace, with only three organizations confirmed impacted and no verified...
Read More » -
New Gladinet Triofox Flaw Exploited by Attackers (CVE-2025-12480)
A critical security flaw (CVE-2025-12480) in Gladinet Triofox allows unauthenticated attackers to bypass access controls and gain administrative privileges, which has been exploited by the threat group UNC6485 since late August 2025. Attackers used an HTTP Host header attack to access the configu...
Read More » -
Urgent: Patch Critical Cisco UCCX Vulnerabilities Now
Cisco has patched two critical vulnerabilities (CVE-2025-20358 and CVE-2025-20354) in its Unified Contact Center Express platform, which could allow attackers to bypass authentication and gain root-level control. CVE-2025-20358 enables unauthenticated attackers to manipulate the login process and...
Read More » -
Urgent: Patch Windows SMB Flaw Being Actively Exploited
A critical Windows SMB Client vulnerability (CVE-2025-33073) is being actively exploited, allowing attackers to gain SYSTEM-level privileges through a malicious script that compromises SMB connections. Microsoft patched the flaw in June 2025, and CISA has added it to its Known Exploited Vulnerabi...
Read More » -
Urgent: Actively Exploited FortiWeb Flaw Patched (CVE-2025-58034)
A critical OS command injection vulnerability (CVE-2025-58034) in FortiWeb firewalls is being actively exploited, allowing attackers to execute arbitrary commands via manipulated HTTP or CLI requests. The vulnerability affects multiple FortiWeb versions, and organizations must upgrade to patched ...
Read More » -
SoundCloud Hit by Data Breach and DoS Attacks
SoundCloud experienced a combined security incident, involving a data breach that compromised email addresses and public profile data for about 20% of users, and separate disruptive denial-of-service attacks. The company clarified that financial data and passwords were not accessed, and the servi...
Read More » -
Cisco Email Security Appliances Hacked via Unpatched Zero-Day
A critical zero-day vulnerability (CVE-2025-20393) in Cisco email security appliances is being exploited, allowing attackers to gain full control, particularly when a non-default Spam Quarantine feature is exposed to the internet. Attackers have installed a sophisticated toolkit for persistent, s...
Read More »