11Articles
5Categories
2025-04-01Date
🚨 CISA KEV 1[−]
1 Apr KEVCISA Adds One Known Exploited Vulnerability to CatalogCISA has added one new vulnerability to its  Known Exploited Vulnerabilities Catalog , based on evidence of active exploitation. CVE-2025-24813 Apache Tomcat Path Equivalence Vulnerability These types of vulnerabilities are frequent attack vectors for malicious cyber actors …CISA.GOV
⚠️ VULNERABILITY DISCLOSURE 4[−]
1 AprFast Flux: A National Security ThreatExecutive summary Many networks have a gap in their defenses for detecting and blocking a malicious technique known as “fast flux.” This technique poses a significant threat to national security, enabling malicious cyber actors to consistently evade detection. Malicious cyber act…CISA.GOV
1 Apr157: GrifterGrifter is a longtime hacker, DEF CON organizer, and respected voice in the infosec community. From his early days exploring networks to helping shape one of the largest hacker conferences in the world, Grifter has built a reputation for blending deep technical insight with a sha…DARKNETDIARIES.COM
1 AprCISA Releases Two Industrial Control Systems AdvisoriesCISA released two Industrial Control Systems (ICS) advisories on April 1, 2025. These advisories provide timely information about current security issues, vulnerabilities, and exploits surrounding ICS. ICSA-25-091-01 Rockwell Automation Lifecycle Services with Veeam Backup and Re…CISA.GOV
1 AprHackers exploit little-known WordPress MU-plugins feature to hide malwareA new security issue is putting WordPress-powered websites at risk. Hackers are abusing the “Must-Use” plugins (MU-plugins) feature to hide malicious code and maintain long-term access on hacked websites. Read more in my article on the Hot for Security blog.BITDEFENDER.COM
🕵️ THREAT INTELLIGENCE 1[−]
1 AprPlatformization Maximizes Security Efficacy & IT Operations EfficiencyEnhance defenses and resilience by integrating security, development, and cloud ops teams. Embrace platformization for improved cybersecurity. The post Platformization Maximizes Security Efficacy & IT Operations Efficiency appeared first on Palo Alto Networks Blog .PALOALTONETWORKS.COM
🌐 CYBER THREAT LANDSCAPE 3[−]
1 AprThe AI Fix #44: AI-generated malware, and a stunning AI breakthroughIn episode 44 of The AI Fix, ChatGPT won’t build a crystal meth lab, GPT-4o improves the show’s podcast art, some students manage to screw in a lightbulb, Google releases Gemini 2.5 Pro Experimental and nobody notices, and Mark invents a clock for measuring AI time. Graham explai…GRAHAMCLULEY.COM
1 AprTrojan.Arcanum — a new trojan targeting tarot experts, esotericists, and magicians | Kaspersky official blogKaspersky experts have discovered a new Trojan using an original virus detection technology.KASPERSKY.COM
📡 INFOSEC NEWS 2[−]
1 AprQilin affiliates spear-phish MSP ScreenConnect admin, targeting customers downstreamAttack matches three-year long pattern of ScreenConnect attacks tracked by Sophos MDR as STAC4365.SOPHOS.COM