Loading
Several African financial institutions have recently reported a spike in phishing attacks using fake login portals that mimic core banking platforms. Customers and staff are being tricked into revealing credentials.
A critical zero-day vulnerability identified as CVE-2025-3031 has been discovered in Apache Struts, a popular Java framework used in enterprise web applications. This flaw allows unauthenticated remote code execution, making it a prime target for attackers seeking to compromise servers hosting public-facing applications.
A newly emerged ransomware group known as “Dire Wolf” has launched a wave of attacks against healthcare institutions in West Africa, forcing several hospitals and clinics to halt operations. The malware, first identified in May 2025, encrypts entire systems and deletes backups before delivering ransom demands ranging from $100,000 to $500,000 in cryptocurrency.
Security teams within government agencies have uncovered a series of malicious browser extensions that were leaking user credentials, session tokens, and browsing activity to unknown remote servers. These extensions, disguised as productivity or note-taking tools, were widely installed across several departments without undergoing security reviews.