Cybersecurity News - Secure Cyber Labs | Cybersecurity Resources by DrewNet Cybersecurity

African Law Enforcement Agencies Nab Cybercrime Syndicates

August 27, 2025

African nations work with Interpol and private-sector partners to disrupt cybercriminal operations on the continent, but more work needs to be done. Read More

1M Farmers Insurance Customers’ Data Compromised

August 26, 2025

Cyber News

Though the company is informing its customers of the breach, Farmers isn’t publicly divulging what kinds of personal data were affected. Read More

Citrix Gear Under Active Attack Again With Another Zero-Day

August 26, 2025

Cyber News

The flaw is one of three that the company disclosed affecting its NetScaler ADC and NetScaler Gateway technologies. Read More

Malicious Scanning Waves Slam Remote Desktop Services

August 26, 2025

Cyber News

Researchers say the huge spike of coordinated scanning for Microsoft RDP services could indicate the existence of a new, as-yet-undisclosed vulnerability. Read More

Data I/O Becomes Latest Ransomware Attack Victim

August 26, 2025

Cyber News

The “incident” led to outages affecting a variety of the tech company’s operations, though the full scope of the breach is unknown. Read More

Hackers Lay in Wait, Then Knocked Out Iran Ship Comms

August 25, 2025

Cyber News

Lab-Dookhtegen claims major attack on more than 60 cargo ships and oil tankers belonging to two Iranian companies on US sanctions list. Read More

FTC Chair Tells Tech Giants to Hold the Line on Encryption

August 25, 2025

Cyber News

The chairman sent letters out to companies like Apple, Meta, and Microsoft, advising them not to adhere to the demands of foreign governments to weaken their encryption. Read More

ClickFix Attack Tricks AI Summaries Into Pushing Malware

August 25, 2025

Cyber News

Because instructions appear to come from AI-generated content summaries and not an external source, the victim is more likely to follow them without suspicion. Read More

UNC6384 Deploys PlugX via Captive Portal Hijacks and Valid Certificates Targeting Diplomats

August 25, 2025

Cyber News

A China-nexus threat actor known as UNC6384 has been attributed to a set of attacks targeting diplomats in Southeast Asia and other entities across the globe to advance Beijing’s strategic interests. “This multi-stage attack chain leverages advanced social engineering including valid code signing certificates, an adversary-in-the-middle (AitM) attack, and indirect execution techniques to evade …

Docker Fixes CVE-2025-9074, Critical Container Escape Vulnerability With CVSS Score 9.3

August 25, 2025

Cyber News

Docker has released fixes to address a critical security flaw affecting the Docker Desktop app for Windows and macOS that could potentially allow an attacker to break out of the confines of a container. The vulnerability, tracked as CVE-2025-9074, carries a CVSS score of 9.3 out of 10.0. It has been addressed in version 4.44.3.…