Cybersecurity News Bytes

SharePoint ToolShell Vulnerabilities: Recurring Exploits and New Hotfixes A recent escalation in attacks on Microsoft SharePoint servers centers on the re-exploitation of vulnerabilities initially disclosed and patched in July 2025.…

Ongoing Exploitation of SharePoint 'ToolShell' Vulnerabilities Results in Widespread Ransomware Attacks Recent discoveries reveal that adversaries are actively exploiting a chain of SharePoint vulnerabilities, previously thought to be patched, to…

Palo Alto Networks Set to Acquire CyberArk, Strengthening AI and Identity Security Palo Alto Networks is reportedly preparing a $25 billion acquisition of CyberArk, marking a major strategic move to…

Summary: In the past week, several critical cybersecurity developments have unfolded, involving large-scale ransomware threats against global enterprises, advances in AI-driven cyberattacks and defenses, escalating risks to judicial systems, and…

Trend Micro Apex One Vulnerabilities Lead to Active Exploitation Cybersecurity teams are contending with the active exploitation of newly discovered critical vulnerabilities in Trend Micro’s Apex One endpoint protection suite.…

Microsoft Exchange Hybrid Vulnerability Exposes Severe Cloud Risk A critical post-authentication vulnerability (CVE-2025-53786) in Microsoft Exchange hybrid-joined configurations has prompted urgent action from US federal agencies due to the ease…

Ransomware Surge Exploits New SonicWall Vulnerability A new wave of ransomware attacks has been attributed to exploitation of a suspected zero-day vulnerability in SonicWall devices. The Akira ransomware group is…

Major Cyberattack Cripples St. Paul, Minnesota: State of Emergency Declared A coordinated and deliberate cyberattack struck the city of St. Paul, Minnesota, on July 25, 2025, severely disrupting municipal IT…

Google Addresses Critical Android and Qualcomm Vulnerabilities in August 2025 Security Update Google released its August 2025 Android security bulletin, resolving multiple high-impact vulnerabilities, with particular urgency around three flaws…

ShinyHunters Orchestrate Major Salesforce Data Theft ShinyHunters, a group renowned for high-profile data breaches, has been identified as the orchestrator of a significant theft impacting Salesforce environments. This incident raises…