Russian Airline Suffers Cyberattack Impacting Website and Internal Systems
Krasnoyarsk Regional Airlines, KrasAvia, confirmed on September 19, 2025, that a cyberattack had severely disrupted its online ticketing and internal operational systems.
Passengers attempting...
Attackers Can Bypass Authentication via Nokia CBIS and NCS Manager APIs
Nokia has disclosed a critical authentication bypass vulnerability in CloudBand Infrastructure Software (CBIS) 22 and Nokia Container Service (NCS) 22.12 APIs, rated 9.6 under...
Over 40K Attacks Exploit APIs to Smuggle Malicious Code
The first half of 2025 has marked a sharp escalation in API-focused threats, according to a new data-driven briefing from Imperva Threat Research.
Drawing...
CrowdStrike npm Packages Compromised Amid Ongoing Supply Chain Attack
The discovery of a fresh supply chain attack targeting npm packages maintained by the CrowdStrike-publisher account marks a troubling escalation of the so-called “Shai-Halud...
Emerging Threat – DarkCloud Stealer Leveraging Malicious RAR Archives to Attack Financial Sector
The threat landscape targeting financial institutions continues to evolve, with researchers at CyberProof reporting a sharp increase in DarkCloud Stealer infections during August 2025.
The...
