TECHZONE™

Why DNS Security Is Your First Defense Against Cyber Attacks? https://thehackernews.com/2025/06/why-dns-security-is-your-first-defense.html In today’s cybersecurity landscape, much of the focus is placed on firewalls, antivirus software, and endpoint detection. While these tools are essential, one critical layer often goes overlooked: the Domain Name System (DNS). As the starting point of nearly every online interaction, DNS is not only foundational - it’s increasingly a target. When left unsecured, it becomes a single point of

SinoTrack GPS Devices Vulnerable to Remote Vehicle Control via Default Passwords https://thehackernews.com/2025/06/sinotrack-gps-devices-vulnerable-to.html Two security vulnerabilities have been disclosed in SinoTrack GPS devices that could be exploited to control certain remote functions on connected vehicles and even track their locations. "Successful exploitation of these vulnerabilities could allow an attacker to access device profiles without authorization through the common web management interface," the U.S. Cybersecurity and Infrastructure

How to Build a Lean Security Model: 5 Lessons from River Island https://thehackernews.com/2025/06/how-to-build-lean-security-model-5.html In today’s security landscape, budgets are tight, attack surfaces are sprawling, and new threats emerge daily. Maintaining a strong security posture under these circumstances without a large team or budget can be a real challenge. Yet lean security models are not only possible - they can be highly effective. River Island, one of the UK’s leading fashion retailers, offers a powerful

Microsoft Patches 67 Vulnerabilities Including WEBDAV Zero-Day Exploited in the Wild https://thehackernews.com/2025/06/microsoft-patches-67-vulnerabilities.html Microsoft has released patches to fix 67 security flaws, including one zero-day bug in Web Distributed Authoring and Versioning (WEBDAV) that it said has come under active exploitation in the wild. Of the 67 vulnerabilities, 11 are rated Critical and 56 are rated Important in severity. This includes 26 remote code execution flaws, 17 information disclosure flaws, and 14 privilege escalation

Adobe Releases Patch Fixing 254 Vulnerabilities, Closing High-Severity Security Gaps https://thehackernews.com/2025/06/adobe-releases-patch-fixing-254.html Adobe on Tuesday pushed security updates to address a total of 254 security flaws impacting its software products, a majority of which affect Experience Manager (AEM). Of the 254 flaws, 225 reside in AEM, impacting AEM Cloud Service (CS) as well as all versions prior to and including 6.5.22. The issues have been resolved in AEM Cloud Service Release 2025.5 and version 6.5.23. "Successful

Researchers Uncover 20+ Configuration Risks, Including Five CVEs, in Salesforce Industry Cloud https://thehackernews.com/2025/06/researchers-uncover-20-configuration.html Cybersecurity researchers have uncovered over 20 configuration-related risks affecting Salesforce Industry Cloud (aka Salesforce Industries), exposing sensitive data to unauthorized internal and external parties. The weaknesses affect various components like FlexCards, Data Mappers, Integration Procedures (IProcs), Data Packs, OmniOut, and OmniScript Saved Sessions. "Low-code platforms such as

FIN6 Uses AWS-Hosted Fake Resumes on LinkedIn to Deliver More_eggs Malware https://thehackernews.com/2025/06/fin6-uses-aws-hosted-fake-resumes-on.html The financially motivated threat actor known as FIN6 has been observed leveraging fake resumes hosted on Amazon Web Services (AWS) infrastructure to deliver a malware family called More_eggs. "By posing as job seekers and initiating conversations through platforms like LinkedIn and Indeed, the group builds rapport with recruiters before delivering phishing messages that lead to malware," the

Rust-based Myth Stealer Malware Spread via Fake Gaming Sites Targets Chrome, Firefox Users https://thehackernews.com/2025/06/rust-based-myth-stealer-malware-spread.html Cybersecurity researchers have shed light on a previously undocumented Rust-based information stealer called Myth Stealer that's being propagated via fraudulent gaming websites. "Upon execution, the malware displays a fake window to appear legitimate while simultaneously decrypting and executing malicious code in the background," Trellix security researchers Niranjan Hegde, Vasantha Lakshmanan

The Hidden Threat in Your Stack: Why Non-Human Identity Management is the Next Cybersecurity Frontier https://thehackernews.com/2025/06/the-hidden-threat-in-your-stack-why-non.html Modern enterprise networks are highly complex environments that rely on hundreds of apps and infrastructure services. These systems need to interact securely and efficiently without constant human oversight, which is where non-human identities (NHIs) come in. NHIs — including application secrets, API keys, service accounts, and OAuth tokens — have exploded in recent years, thanks to an

Researcher Found Flaw to Discover Phone Numbers Linked to Any Google Account https://thehackernews.com/2025/06/researcher-found-flaw-to-discover-phone.html Google has stepped in to address a security flaw that could have made it possible to brute-force an account's recovery phone number, potentially exposing them to privacy and security risks. The issue, according to Singaporean security researcher "brutecat," leverages an issue in the company's account recovery feature. That said, exploiting the vulnerability hinges on several moving parts,

Rare Werewolf APT Uses Legitimate Software in Attacks on Hundreds of Russian Enterprises https://thehackernews.com/2025/06/rare-werewolf-apt-uses-legitimate.html The threat actor known as Rare Werewolf (formerly Rare Wolf) has been linked to a series of cyber attacks targeting Russia and the Commonwealth of Independent States (CIS) countries. "A distinctive feature of this threat is that the attackers favor using legitimate third-party software over developing their own malicious binaries," Kaspersky said. "The malicious functionality of the campaign

CISA Adds Erlang SSH and Roundcube Flaws to Known Exploited Vulnerabilities Catalog https://thehackernews.com/2025/06/cisa-adds-erlang-ssh-and-roundcube.html The U.S. Cybersecurity and Infrastructure Security Agency (CISA) on Monday added two critical security flaws impacting Erlang/Open Telecom Platform (OTP) SSH and Roundcube to its Known Exploited Vulnerabilities (KEV) catalog, based on evidence of active exploitation. The vulnerabilities in question are listed below - CVE-2025-32433 (CVSS score: 10.0) - A missing authentication for a critical

Over 70 Organizations Across Multiple Sectors Targeted by China-Linked Cyber Espionage Group https://thehackernews.com/2025/06/over-70-organizations-across-multiple.html The reconnaissance activity targeting American cybersecurity company SentinelOne was part of a broader set of partially-related intrusions into several targets between July 2024 and March 2025. "The victimology includes a South Asian government entity, a European media organization, and more than 70 organizations across a wide range of sectors," security researchers Aleksandar Milenkoski and Tom

Two Distinct Botnets Exploit Wazuh Server Vulnerability to Launch Mirai-Based Attacks https://thehackernews.com/2025/06/botnet-wazuh-server-vulnerability.html A now-patched critical security flaw in the Wazur Server is being exploited by threat actors to drop two different Mirai botnet variants and use them to conduct distributed denial-of-service (DDoS) attacks. Akamai, which first discovered the exploitation efforts in late March 2025, said the malicious campaign targets CVE-2025-24016 (CVSS score: 9.9), an unsafe deserialization vulnerability that

⚡ Weekly Recap: Chrome 0-Day, Data Wipers, Misused Tools and Zero-Click iPhone Attacks https://thehackernews.com/2025/06/weekly-recap-chrome-0-day-data-wipers.html Behind every security alert is a bigger story. Sometimes it’s a system being tested. Sometimes it’s trust being lost in quiet ways—through delays, odd behavior, or subtle gaps in control. This week, we’re looking beyond the surface to spot what really matters. Whether it’s poor design, hidden access, or silent misuse, knowing where to look can make all the difference. If you're responsible for

Think Your IdP or CASB Covers Shadow IT? These 5 Risks Prove Otherwise https://thehackernews.com/2025/06/think-your-idp-or-casb-covers-shadow-it.html You don’t need a rogue employee to suffer a breach. All it takes is a free trial that someone forgot to cancel. An AI-powered note-taker quietly syncing with your Google Drive. A personal Gmail account tied to a business-critical tool. That’s shadow IT. And today, it’s not just about unsanctioned apps, but also dormant accounts, unmanaged identities, over-permissioned SaaS

OpenAI Bans ChatGPT Accounts Used by Russian, Iranian and Chinese Hacker Groups https://thehackernews.com/2025/06/openai-bans-chatgpt-accounts-used-by.html OpenAI has revealed that it banned a set of ChatGPT accounts that were likely operated by Russian-speaking threat actors and two Chinese nation-state hacking groups to assist with malware development, social media automation, and research about U.S. satellite communications technologies, among other things. "The [Russian-speaking] actor used our models to assist with developing and refining

New Supply Chain Malware Operation Hits npm and PyPI Ecosystems, Targeting Millions Globally https://thehackernews.com/2025/06/new-supply-chain-malware-operation-hits.html Cybersecurity researchers have flagged a supply chain attack targeting over a dozen packages associated with GlueStack to deliver malware. The malware, introduced via a change to "lib/commonjs/index.js," allows an attacker to run shell commands, take screenshots, and upload files to infected machines, Aikido Security told The Hacker News, stating these packages collectively account for nearly 1

Malicious Browser Extensions Infect 722 Users Across Latin America Since Early 2025 https://thehackernews.com/2025/06/malicious-browser-extensions-infect-722.html Cybersecurity researchers have shed light on a new campaign targeting Brazilian users since the start of 2025 to infect users with a malicious extension for Chromium-based web browsers and siphon user authentication data. "Some of the phishing emails were sent from the servers of compromised companies, increasing the chances of a successful attack," Positive Technologies security researcher

New Atomic macOS Stealer Campaign Exploits ClickFix to Target Apple Users https://thehackernews.com/2025/06/new-atomic-macos-stealer-campaign.html Cybersecurity researchers are alerting to a new malware campaign that employs the ClickFix social engineering tactic to trick users into downloading an information stealer malware known as Atomic macOS Stealer (AMOS) on Apple macOS systems. The campaign, according to CloudSEK, has been found to leverage typosquat domains mimicking U.S.-based telecom provider Spectrum. "macOS users are served a