New phishing campaign leverages Scalable Vector Graphics (SVG) files to bypass conventional email security mechanisms.
Posted inCybersecurity News

New phishing campaign leverages Scalable Vector Graphics (SVG) files to bypass conventional email security mechanisms.

Security researchers at Ontinue have uncovered a sophisticated phishing campaign that leverages Scalable Vector Graphics (SVG) files to bypass conventional email security mechanisms. This emerging technique embeds obfuscated JavaScript code within SVG files to initiate malicious redirects—without requiring attachments, downloads, or user interaction beyond previewing the file.
Microsoft issues an out-of-band security update to fix a critical issue affecting Azure VMs running Windows 11.
Posted inCybersecurity News

Microsoft issues an out-of-band security update to fix a critical issue affecting Azure VMs running Windows 11.

Microsoft has issued an out-of-band update, KB5064489, to address a critical issue affecting specific Azure Virtual Machines (VMs) running Windows 11 version 24H2. This emergency patch resolves startup failures impacting VMs with certain configuration parameters and integrates previous security updates released earlier this month.
Atlassian’s July 2025 Security Bulletin outlines resolution of 20 high-severity vulnerabilities.
Posted inCybersecurity News

Atlassian’s July 2025 Security Bulletin outlines resolution of 20 high-severity vulnerabilities.

Atlassian has released its July 2025 Security Bulletin, outlining the resolution of 20 high-severity vulnerabilities impacting multiple Data Center and Server products. Atlassian says the bulletin—published on July 15—reaffirms their ongoing commitment to transparency and the proactive mitigation of security risks across its extensive product portfolio.
UK’s National Cyber Security Centre (NCSC) announces Vulnerability Research Initiative (VRI) — a new program to deepen collaboration with cybersecurity researchers.
Posted inCybersecurity News

UK’s National Cyber Security Centre (NCSC) announces Vulnerability Research Initiative (VRI) — a new program to deepen collaboration with cybersecurity researchers.

In a significant move to bolster national cybersecurity, the UK’s National Cyber Security Centre (NCSC) has announced the launch of the Vulnerability Research Initiative (VRI) — a new program designed to deepen collaboration with external cybersecurity researchers. The initiative aims to enhance the discovery, analysis, and mitigation of software and hardware vulnerabilities that pose threats to the UK's infrastructure, government, businesses, and citizens.
Europol dismantles Romanian ransomware gang, Diskstation, that specialized in targeting Network-Attached Storage (NAS) devices.
Posted inCybersecurity News

Europol dismantles Romanian ransomware gang, Diskstation, that specialized in targeting Network-Attached Storage (NAS) devices.

In a significant victory against cybercrime, a coordinated international law enforcement operation, codenamed “Operation Elicius,” has successfully dismantled a Romanian ransomware gang known as “Diskstation.” The group specialized in targeting Network-Attached Storage (NAS) devices, particularly those manufactured by Synology, causing widespread disruption to businesses and non-profit organizations worldwide.
Belk confirms unauthorized access and theft of 156 gigabytes of sensitive company data.
Posted inCybersecurity News

Belk confirms unauthorized access and theft of 156 gigabytes of sensitive company data.

Belk, the North Carolina-based department store chain with nearly 300 locations across the southeastern United States, has confirmed that it was the victim of a cybersecurity breach in May 2025. The cyberattack, attributed to the ransomware group DragonForce, resulted in the unauthorized access and theft of 156 gigabytes of sensitive company data.