SonicWall Warns of Trojanized NetExtender Stealing User Information

/in

SonicWall says a modified version of the legitimate NetExtender application contains information-stealing code.

The post SonicWall Warns of Trojanized NetExtender Stealing User Information appeared first on SecurityWeek.

SecurityWeek – ​Read More

New Vulnerabilities Expose Millions of Brother Printers to Hacking

/in

Rapid7 has found several serious vulnerabilities affecting over 700 printer models from Brother and other vendors. 

The post New Vulnerabilities Expose Millions of Brother Printers to Hacking appeared first on SecurityWeek.

SecurityWeek – ​Read More

Pro-Iranian Hacktivist Group Leaks Personal Records from the 2024 Saudi Games

/in

Thousands of personal records allegedly linked to athletes and visitors of the Saudi Games have been published online by a pro-Iranian hacktivist group called Cyber Fattah.
Cybersecurity company Resecurity said the breach was announced on Telegram on June 22, 2025, in the form of SQL database dumps, characterizing it as an information operation “carried out by Iran and its proxies.”
“The actors

The Hacker News – ​Read More

Code Execution Vulnerability Patched in GitHub Enterprise Server

/in

A high-severity vulnerability in GitHub Enterprise Server could have allowed remote attackers to execute arbitrary code.

The post Code Execution Vulnerability Patched in GitHub Enterprise Server appeared first on SecurityWeek.

SecurityWeek – ​Read More

Why Sincerity Is a Strategic Asset in Cybersecurity

/in

Strong security doesn’t just rely on tools—it starts with trust, clarity, and sincerity from the top down.

The post Why Sincerity Is a Strategic Asset in Cybersecurity appeared first on SecurityWeek.

SecurityWeek – ​Read More

Chrome 138, Firefox 140 Patch Multiple Vulnerabilities

/in

Chrome 138 and Firefox 140 are rolling out with fixes for two dozen vulnerabilities, including high-severity memory safety issues.

The post Chrome 138, Firefox 140 Patch Multiple Vulnerabilities appeared first on SecurityWeek.

SecurityWeek – ​Read More

SonicWall NetExtender Trojan and ConnectWise Exploits Used in Remote Access Attacks

/in

Unknown threat actors have been distributing a trojanized version of SonicWall’s SSL VPN NetExtender application to steal credentials from unsuspecting users who may have installed it.
“NetExtender enables remote users to securely connect and run applications on the company network,” SonicWall researcher Sravan Ganachari said. “Users can upload and download files, access network drives, and use

The Hacker News – ​Read More

Mainline Health, Select Medical Each Disclose Data Breaches Impacting 100,000 People

/in

Mainline Health and Select Medical Holdings have suffered data breaches that affect more than 100,000 individuals. 

The post Mainline Health, Select Medical Each Disclose Data Breaches Impacting 100,000 People appeared first on SecurityWeek.

SecurityWeek – ​Read More

North Korea-linked Supply Chain Attack Targets Developers with 35 Malicious npm Packages

/in

Cybersecurity researchers have uncovered a fresh batch of malicious npm packages linked to the ongoing Contagious Interview operation originating from North Korea.
According to Socket, the ongoing supply chain attack involves 35 malicious packages that were uploaded from 24 npm accounts. These packages have been collectively downloaded over 4,000 times. The complete list of the JavaScript

The Hacker News – ​Read More

Russian APT Hits Ukrainian Government With New Malware via Signal

/in

Russia-linked APT28 deployed new malware against Ukrainian government targets through malicious documents sent via Signal chats.

The post Russian APT Hits Ukrainian Government With New Malware via Signal appeared first on SecurityWeek.

SecurityWeek – ​Read More