Cyber Security News, Latest Updates and Recent Announcements on Techminis

A naukri.com initiative

New

Home

Cyber Security News

Tech Radar

290

Image Credit: Tech Radar

SonicWall warns of fake VPN apps stealing user logins and putting businesses at risk - here's what we know

SonicWall warns of hackers distributing malicious VPN software like NetExtender through fake websites mimicking their official site.
The fake VPN software can steal both VPN configurations and credentials, putting employees and businesses at risk.
Spoofed VPN clients are distributed through deceptive methods like SEO poisoning, posing a serious cybersecurity threat.
SonicWall advises users to download software only from legitimate sources like sonicwall.com to avoid falling victim to these malicious activities.

Read Full Article

17 Likes

Hackernoon

392

Image Credit: Hackernoon

The HackerNoon Newsletter: Building for the World That Doesn’t Blink (6/25/2025)

The HackerNoon Newsletter brings top tech stories including a collaboration between HackerNoon and the Sia Foundation to decentralize tech publishing.
One highlighted story discusses designing resilient edge systems in a world where failure isn't an option.
In addition, the newsletter covers topics such as AI pentesting, art in the age of AI, and AI agents in production.
Readers are encouraged to participate in answering significant interview questions and sharing the content with friends.

Read Full Article

23 Likes

Pymnts

204

Image Credit: Pymnts

Fed Drops ‘Reputational Risk’ Rule, Paving Way for Banks to Enter Crypto

The Federal Reserve Board has removed 'reputational risk' from its formal bank examinations and supervision programs, impacting the way banks deal with controversial industries like crypto.
Legislative efforts such as the GENIUS Act and a new bill aim to create oversight frameworks for stablecoins and digital assets, potentially opening doors for Wall Street to enter the crypto market.
The removal of reputational risk signals a shift towards risk-based supervision focused on financial stability and consumer protection rather than values-based supervision.
Banks are showing increased interest in digital-first financial products, with a growing number of younger consumers opting for digital-only banks, indicating a potential shift towards integrating crypto into banking services.

Read Full Article

12 Likes

Tech Radar

Image Credit: Tech Radar

Nearly half of companies say they pay up ransomware demands - but here's why that could be a bad idea

Sophos conducted a survey on ransomware attacks revealing that companies paid an average of 85% of ransom demands.
The median ransom demand has decreased to $1.3 million in 2025 from $2 million in 2024.
Despite governments implementing ransomware payment bans, nearly half of surveyed organizations opted to pay the ransom.
Data encryption levels are declining with less than half of ransomware attacks resulting in data encryption, posing risks to business operations.

Read Full Article

5 Likes

Discover more

Tech Radar

Image Credit: Tech Radar

Windows users warned of major security issue - here's why FileFix attack could be a big concern

A cybersecurity researcher developed a new social engineering attack called FileFix, a variant of the ClickFix issue, putting Windows users at risk.
FileFix allows cybercriminals to execute commands on victim systems through the File Explorer address bar, creating a plausible scenario for attacks.
The attack involves tricking users into pasting paths into File Explorer, potentially leading to the download of malicious payloads.
This new attack method could be used to bypass antivirus software and has been observed targeting users of various operating systems, emphasizing the need for caution with unexpected pop-ups.

Read Full Article

3 Likes

VentureBeat

254

Image Credit: VentureBeat

Enterprises must rethink IAM as AI agents outnumber humans 10 to 1

Stolen credentials cause 80% of breaches, driving shift towards Identity as AI control plane.
Vendors adapt to handle one million AI identities, pushing for better authentication.
Microsoft, Okta, Cisco, CrowdStrike, and Palo Alto Networks drive identity security transformation.
Architectures evolve for AI threat, requiring zero trust, biometrics, and proximity verification.
Security priorities demand continuous identity verification to prevent breaches in AI-driven environments.

Read Full Article

15 Likes

Mcafee

349

Image Credit: Mcafee

Why Public Wi-Fi at Tourist Hotspots is a Goldmine for Hackers

Public Wi-Fi at tourist hotspots is a hacker's paradise, putting travelers at risk.
Hackers exploit lax security in airports, hotels, cafes, using tactics like evil twin networks.
McAfee Mobile Security provides tools like VPN and network scanner to safeguard travelers.
Tips include checking network names, using mobile hotspots, and updating software for protection.
Stay ahead of cyber threats by downloading McAfee Mobile Security for secure travels.

Read Full Article

21 Likes

Tech Radar

Image Credit: Tech Radar

A free service to protect US critical infrastructure against Russian cyber attacks has ended – but did it shut down just a touch too soon?

A free cybersecurity service, the Critical Infrastructure Defense Project, provided by Cloudflare, CrowdStrike, and Ping Identity to protect US critical infrastructure after the Russian invasion of Ukraine, has been discontinued due to a lack of usage.
The project offered four months of free cybersecurity services, including a zero trust security model and threat intelligence, but shut down as threat levels subsided since early 2022.
Reports suggest the end of the project coincides with a possible pause in countering Russian cyber operations by the Trump administration and NATO warning of Russian mapping of critical infrastructure.
With potential increased cyber operations from Iran, which has targeted US critical infrastructure in the past, concerns remain about the discontinuation of this free cybersecurity program for US critical infrastructure.

Read Full Article

4 Likes

Mcafee

116

Image Credit: Mcafee

How Criminals Are Using AI to Clone Travel Agents and Steal Your Money

AI-powered travel scams are on the rise, using voice cloning to impersonate agents.
Sophisticated fraud tactics include fake websites, reviews, deepfake videos, and phishing campaigns.
Financial losses from these scams could reach $13 billion globally by 2025.
McAfee offers AI-powered protection to combat these emerging threats and safeguard users.

Read Full Article

7 Likes

Medium

Image Credit: Medium

Netflix Docuseries “Web of Lies: I’m Not A Nazi” Discussion Questions

The third episode of Netflix’s docuseries, 'Web of Make Believe: Death, Lies, and the Internet,' explores a young woman's journey into the alt-right and Nazi subculture.
The episode delves into the challenges of distinguishing truth from misinformation in today's information-saturated society, highlighting concerns about the spread of extremist ideologies through communication platforms like social media and gaming.
Former FBI agent Michael German discusses how extremist groups exploit technological advancements to disseminate their ideologies before government intervention, contributing to the proliferation of alt-right beliefs.
The episode follows Samantha Froelich's experience with the alt-right group Identity Evropa, revealing the deceptive tactics used to recruit individuals and the disturbing realities of the movement.

Read Full Article

3 Likes

The Verge

159

Image Credit: The Verge

Russia frees REvil hackers after sentencing

Four members of the REvil ransomware group have been released from custody in Russia after pleading guilty to fraud and malware distribution charges.
The Dzerzhinsky Court of St. Petersburg sentenced the members to five years in prison but allowed them to walk free, citing time already served in detention.
The case is not related to REvil's previous ransomware attacks. The group members admitted to being involved in activities targeting US citizens, including 'carding' fraud.
The court ordered some assets to be surrendered by the members but did not impose fines. A total of 14 REvil members were arrested, with some already receiving prison sentences.

Read Full Article

9 Likes

Siliconangle

186

Image Credit: Siliconangle

Mitiga launches Helios AI to improve threat triage for cloud security teams

Mitiga Security Inc. has launched Helios AI, an AI-powered security assistant for security operations teams in cloud environments.
Helios AI aims to enhance threat triage, investigation, and remediation efficiency in multicloud setups by reducing alert noise and providing actionable insights.
The first feature, AI Insights, offers faster alert triage and close rates, outperforming traditional alert systems in terms of accuracy and speed.
Mitiga's new AI solution addresses top threats like identity-based intrusions and multicloud lateral movement, offering cloud security leaders strategic insights and faster response capabilities.

Read Full Article

11 Likes

Siliconangle

241

Image Credit: Siliconangle

Fortanix launches PQC Central to assess cryptographic risk and exposure

Fortanix Inc. has launched PQC Central, a feature within its Key Insight tool to address post-quantum cryptography challenges.
PQC Central helps organizations assess their cryptographic risk and exposure to quantum computing threats.
The feature assists in migration planning by providing actionable insights and prioritizing systems for quantum-resistant encryption.
Fortanix Armor now offers end-to-end PQC readiness to help organizations identify vulnerabilities, mitigate risks, and ensure continuous protection against future quantum threats.

Read Full Article

14 Likes

Siliconangle

172

Image Credit: Siliconangle

Researchers uncover weak encryption in SAP user interface for Windows and Java

SAP addressed vulnerabilities in its SAP GUI client applications, discovered by Pathlock Inc. and Fortinet Inc., involving weak or absent encryption in input history functions.
The vulnerabilities, CVE-2025-0055 and CVE-2025-0056, exposed sensitive user data stored on local machines due to encryption issues in SAP GUI for Windows and SAP GUI for Java.
SAP GUI for Windows stored data using weak XOR-based encryption, making it easily reversible, while SAP GUI for Java stored data entirely unencrypted in serialized objects.
SAP released updates to address the vulnerabilities but experts recommend disabling input history feature and implementing mitigation measures due to the potential risk of exposure of sensitive data.

Read Full Article

10 Likes

TechCrunch

362

Image Credit: TechCrunch

Ring cameras and doorbells now use AI to provide specific descriptions of motion activity

Ring has introduced a new AI-powered feature for its doorbells and cameras to provide specific text descriptions of motion activities.
The AI feature offers detailed descriptions in real-time notifications, allowing users to quickly understand what's happening and assess if immediate action is needed.
The feature, currently in English-only beta for Ring Home Premium subscribers in the U.S. and Canada, aims to enhance user experience by describing the initial seconds of motion-activated video clips.
Ring plans to introduce more AI features including combining multiple motion events into a single alert, customizable anomaly alerts, and learning users' routines to detect unusual occurrences.

Read Full Article

21 Likes

For uninterrupted reading, download the app