Blogs

CrushFTP warns users of active exploitation of CVE-2025-54309, a vulnerability allowing remote admin access via HTTPS on unpatched servers. Learn about affected versions and recommended actions.

Cybersecurity researchers reveal a campaign targeting poorly secured Linux servers through SSH brute force attacks to deploy the SVF Botnet, a Python-based DDoS malware using Discord for command-and-control.

Iranian state-backed APT groups are intensifying cyber operations, leveraging AI-generated emails to target cybersecurity researchers. Learn about their tactics and the implications for global security.

India faces a staggering loss of ₹1,500 crore monthly due to cyber scams originating from Southeast Asia. Discover the impact of these frauds, their origins, and the challenges in combating them.

A sophisticated phishing campaign is targeting Node.js developers through a typosquatted domain, npnjs.com. Learn how attackers are impersonating the npm package registry and what you can do to protect your credentials.

Microsoft has disclosed a critical zero-day vulnerability in SharePoint Server (CVE-2025-53770) with a CVSS score of 9.8. Learn about the active exploitation, impact on enterprises, and emergency patches available.

Discover how Fancy Bear (APT28), a sophisticated Russian cyberespionage group, infiltrates governments and military organizations using advanced cyber tools and tactics. Learn about their methods, motivations, and recent activities.

A senior government officer in Chhattisgarh, Maya Tiwari, was defrauded of ₹90 lakh by a Facebook scammer posing as a friend. Learn about the incident and the rise of cyber fraud in the state.

Discover the critical NVIDIAScape vulnerability (CVE-2025-23266) in the NVIDIA Container Toolkit, allowing attackers to escape container isolation and gain root access. Learn about its implications and mitigation strategies.

Cybersecurity researchers have uncovered a new attack method by the PoisonSeed group that exploits FIDO key protections through QR phishing and cross-device sign-in. Learn how this technique deceives users and compromises account security.

A 62-year-old woman from Bandra, Mumbai, was defrauded of ₹7.8 crore by scammers who lured her into a fake trading app promising high returns. Learn how the scam unfolded and the warning signs to watch for.

Discover the details of the recent CoinDCX cyberattack where $44 million was stolen. Learn about the incident, recovery plans, and how customer funds remain safe.

Cybersecurity researchers have identified new AsyncRAT variants featuring a disturbing "Screamer" tool for audio manipulation and a USB malware spreader that revives autorun-based infections. Learn about these evolving cyber threats and their implications.

A Nagpur teacher fell victim to a sophisticated mobile hacking scam, losing ₹10 lakh after being tricked into installing a malicious app for KYC verification. Learn about this alarming incident and the growing threat of financial cyber fraud in India.

Two employees of Paytm Payments Bank have been arrested for allegedly unfreezing accounts linked to cyber fraud, releasing nearly ₹30 lakh without legal authorization. Learn about the investigation and implications for internal oversight.

Discover how the Dark Partners cybercrime group targets cryptocurrency users through fake websites impersonating AI tools and VPN services. Learn about their sophisticated malware and evasion techniques.

Learn about the rising threat of contactless card skimming in European cities, where scammers silently steal small amounts from unsuspecting tourists. Discover how to protect yourself from this insidious scam.

Chhattisgarh has reported 1,301 cybercrime cases in the last 18 months, leading to losses exceeding ₹107 crore. Discover the recovery efforts and strategic responses by the government to combat this growing threat.

India faced cybercrime losses of ₹7,000 crore between January and May 2025, primarily from scams linked to Chinese syndicates in Southeast Asia. Discover the impact and urgent need for enhanced cybersecurity measures.

Cloudflare's Q2 2025 DDoS Threat Report reveals the largest recorded DDoS attack, peaking at 7.3 Tbps and 4.8 billion packets per second. Discover the evolving threat landscape and essential mitigation strategies.