SecurityWeek’s cybersecurity news roundup for July 4, 2025 provides a concise compilation of noteworthy stories.

North Korean hackers are using fake Zoom invites to install ‘NimDoor’ malware — a rare Nim-compiled backdoor targeting macOS ...

A critical vulnerability (CVE-2025-20309) in Cisco's Unified CM and Unified CM SME communication management software could allow attackers to log in as root.

Australian airline Qantas says personal information stolen from systems hosting the service records of 6 million customers.

A vulnerability in Catwatchful, an Android spyware posing as parental control software, exposed the credentials of over 62,000 customer accounts.

The key tool for surviving ransomware, or any attack scenario, is an incident response (IR) plan that is comprehensive, ...

CISA says two more vulnerabilities in the messaging application TeleMessage TM SGNL have been exploited in the wild.

A vulnerability in the Forminator WordPress plugin allows attackers to delete arbitrary files and take over impacted websites ...

CISA has informed organizations about critical authentication bypass and remote code execution vulnerabilities in Microsens ...

The International Criminal Court (ICC) has detected and contained a sophisticated and targeted cyberattack. The International ...

Scattered Spider is targeting airlines and the recent WestJet hack is believed to be the work of the notorious cybercrime ...

Social engineering is the art of persuasion. Mostly, this is a good thing. Misused, it can have disastrous effects.