news
Breaking Cyber News From Cyberint
Breaking news feed of the latest cyber incidents, breaches, vulnerabilities, malware, ransomware and so much more.
- All Items
- Business Services
- Jobinfo
- Israel
- Asia
- Data Encrypted For Impact
- Handala
- Middle East
- Shelter Locations In Israel
- Saudi Games
- Cyber Fattah Team
- Retail
- Saudi Arabia
- Ben Horin & Alexandrovitz
- Zachary Levi And Sons - Construction
- Sivim It
- Government
- Kibbutz Almog
- Manufacturing
- Saban Brands Israel
- Digitalghost
- Mprest
- Evil_Byte
- The Knesset
- Nobitex
- Gonjeshke Darande
- Indonesia
- exclusive
- Sentap
- Chemicals And Allied Products
- South-Eastern Asia
- Kimia Farma
- Sweden
- Hensi
- Transportation
- Scania
- Europe
- Northern Europe
- Media
- Tbn Israel
- Education
- Weizmann Institute Of Science
- Resistancetrench
- Israeli Air Force
- Israel Antiquities Authority
- Dienet
- North America
- United States
- CVE-2025-24016
- Wazuh
- Mirai
- Cve-2025-24016
- Technology
- Epsilor Electric Fuel
- Clayoxtymus1337
- Advanced Weapons And Equipment India
- Southern Asia
- India
- More_Eggs
- Fin6
- Cryptocurrency
- Alex Lab
- Critical Infrastructures
- Zoldyck
- Edf Energy
- United Kingdom
- Spearphishing Link
- Match Legitimate Name Or Location
- Ingress Tool Transfer
- Disable Or Modify Tools
- Telecommunications
- Sudo And Sudo Caching
- Credentials In Files
- Unix Shell
- Spectrum
- Amos
- Israel Defense Forces
- Food And Kindred Products
- Ghna
- Coca-Cola Europacific Partners
- Italy
- Locauto
- Southern Europe
- Automotive
- Mercadona
- Spain
- Whitecoat
- Wow Health Solutions
- Ups
- Healthcare
- Rip_Real_World
- Cyprus Airways
- Netsupport Rat
- Illeak
- Tel Aviv University
- Desec0X
- Unc6032
- Lucky_Gh0$T
- Numero
- Chaos
- Yashma
- Cyberlock
- 303
- Deloitte
- Gucci
- Eddiestealer
- File And Directory Discovery
- Command And Scripting Interpreter
- Credentials From Password Stores
- System Information Discovery
- Screen Capture
- Password Managers
- Phishing
- Virtualization/Sandbox Evasion
- User Execution
- Input Capture
- Credentials From Web Browsers
- Data From Local System
- Obfuscated Files Or Information
- Windows Credential Manager
- Exfiltration Over C2 Channel
- Drive-By Compromise
- W_Tchdogs
- Superloop
- Australia And New Zealand
- Australia
- Network Service Discovery
- Lateral Tool Transfer
- Docker
- Web Protocols
- Change Default File Association
- Smb/Windows Admin Shares
- Escape To Host
- Exploitation For Client Execution
- Deploy Container
- Resource Hijacking
- External Remote Services
- Exploit Public-Facing Application
- Remote System Discovery
- Financial Theft
- Eastern Europe
- Cameleon
- Romania
- Venom Rat
- Bitdefender
- Eastern Asia
- Cisco
- Vicioustrap
- Cve-2023-20118
- Macao Special Administrative Region
- CVE-2023-20118
- CVE-2025-0944
- Cve-2025-0944
- Trimble
- Tetraloader
- Uat-6382
- Reflective Code Loading
- Valleyrat
- Rundll32
- Regsvr32
- China
- Scheduled Task
- Dynamic-Link Library Injection
- Powershell
- Silver Fox
- Masquerade Task Or Service
- Obfuscated Files Or Information: Encrypted Or Encoded Data
- File Deletion
- Malicious File
- Process Discovery
- Danabot
- Trickbot
- Bumblebee
- Qakbot
- Warmcookie
- Cetus
- Purehvnc
- Bytebreaker
- Telcel
- Latin America And The Caribbean
- Mexico
- Viralgod
- Peter Green Chilled
- Cellcom
-
Jun 10, 2025
New Clickfix Infostealer Campaign Targets macOS Users
Cybersecurity researchers have identified a new malware campaign that uses social engineering tactics to distribute an information stealer known as Atomic macOS Stealer (AMOS) targeting Apple macOS systems. The campaign employs typosquatting domains that mimic the U.S.-based telecom provider Spectrum, tricking users into executing a malicious shell script that steals system passwords and downloads the AMOS variant. The attack begins on a fake webpage that prompts users to complete a CAPTCHA verification, ultimately leading them to execute harmful commands under the guise of fixing a non-existent issue. The campaign is believed to be orchestrated by Russian-speaking cybercriminals, as indicated by the presence of Russian language comments in the malware's code.
-
May 29, 2025
Threat Actor Sells Access to Superloop
On May 28, 2025, the threat actor w_tchdogs claimed to have breached Superloop, an Australian telecommunications company. The actor is offering access to Superloop’s internal portal, which allegedly includes domain administration tools and other sensitive resources, for $750.
-
May 21, 2025
Threat Actor Claims Breach of Mexican Telcel
In May 2025, a threat actor named Eternal claimed to have breached Telcel Mexico and to have gained access to its database. According to the threat actor, 10 million lines of data belonging to Telcel's customers were taken, including phone numbers, tax IDs (RFC), full names, and full addresses.
-
May 21, 2025
Cellcom Reports Data Breach Following Outages
In May 2025, mobile carrier Cellcom became the victim of a cyberattack that caused widespread service outages and disruptions across Wisconsin and Upper Michigan. According to Cellcom, while the incident affected voice and SMS services, there is no evidence that personal information, such as names, addresses, or financial data, was compromised during the attack.