🐛 COMMON VULNERABILITIES AND EXPOSURES 4[−]
11 AprFortinet Warns Attackers Retain FortiGate Access Post-Patching via SSL-VPN Symlink ExploitFortinet has revealed that threat actors have found a way to maintain read-only access to vulnerable FortiGate devices even after the initial access vector used to breach the devices was patched. The attackers are believed to have leveraged known and now-patched security flaws, i…THEHACKERNEWS.COM
11 AprOttoKit WordPress Plugin Admin Creation Vulnerability Under Active ExploitationA newly disclosed high-severity security flaw impacting OttoKit (formerly SureTriggers) has come under active exploitation within a few hours of public disclosure. The vulnerability, tracked as CVE-2025-3102 (CVSS score: 8.1), is an authorization bypass bug that could permit an a…THEHACKERNEWS.COM
11 AprFortinet Releases Advisory on New Post-Exploitation Technique for Known VulnerabilitiesFortinet is aware of a threat actor creating a malicious file from previously exploited Fortinet vulnerabilities (CVE-2024-21762, CVE-2023-27997, and CVE-2022-42475) within FortiGate products. This malicious file could enable read-only access to files on the device's file system,…CISA.GOV
11 AprCVE-2025-21174 Windows Standards-Based Storage Management Service Denial of Service VulnerabilityAcknowledgement added. This is an informational change only.MSRC.MICROSOFT.COM
⚠️ VULNERABILITY DISCLOSURE 6[−]
11 AprAI Vulnerability FindingMicrosoft is reporting that its AI systems are able to find new vulnerabilities in source code: Microsoft discovered eleven vulnerabilities in GRUB2, including integer and buffer overflows in filesystem parsers, command flaws, and a side-channel in cryptographic comparison. Addit…SCHNEIER.COM
11 AprOpenAI Shuts Down Spammer | New RAT Threatens Windows | WordPress Bug ExploitedIn this episode of Cybersecurity Today, host Jim Love covers the shutdown of a spammer exploiting OpenAI's GPT model, a cybersecurity breach at the US Office of the Comptroller of the Currency, and a new malware operation called 'Operation End Game' targeting major cybercrime net…CYBERSECURITYTODAY.LIBSYN.COM
11 AprInitial Access Brokers Shift Tactics, Selling More for LessWhat are IABs? Initial Access Brokers (IABs) specialize in gaining unauthorized entry into computer systems and networks, then selling that access to other cybercriminals. This division of labor allows IABs to concentrate on their core expertise: exploiting vulnerabilities throug…THEHACKERNEWS.COM
11 AprPalo Alto Networks Warns of Brute-Force Attempts Targeting PAN-OS GlobalProtect GatewaysPalo Alto Networks has revealed that it's observing brute-force login attempts against PAN-OS GlobalProtect gateways, days after threat hunters warned of a surge in suspicious login scanning activity targeting its appliances. "Our teams are observing evidence of activity consiste…THEHACKERNEWS.COM
11 AprNews alert: INE Security highlights why hands-on labs can help accelerate CMMC 2.0 complianceCary, NC, Apr. 11, 2025, CyberNewswire — Defense contractors are facing increased pressure to meet the Department of Defense’s stringent Cybersecurity Maturity Model Certification (CMMC) 2.0 requirements ahead of 2025 compliance deadlines . INE Security , a leading gl…LASTWATCHDOG.COM
11 AprAMD confirms security vulnerability in every Zen 1 to Zen 5 processorsubmitted by cm0002 to cybersecurity 38 points | 10 comments https://www.tweaktown.com/news/104554/amd-confirms-security-vulnerability-in-every-zen-1-to-5-processor/index.htmlINFOSEC.PUB
🔥 INCIDENT REPORTING 2[−]
11 AprPaper Werewolf Deploys PowerModul Implant in Targeted Cyberattacks on Russian SectorsThe threat actor known as Paper Werewolf has been observed exclusively targeting Russian entities with a new implant called PowerModul. The activity, which took place between July and December 2024, singled out organizations in the mass media, telecommunications, construction, go…THEHACKERNEWS.COM
11 AprRansomware reaches a record high, but payouts are dwindlingWill you be shedding a tear for the cybercriminals? Read more in my article on the Tripwire blog.TRIPWIRE.COM
🕵️ THREAT INTELLIGENCE 4[−]
11 AprFriday Squid Blogging: Squid and Efficient Solar TechResearchers are trying to use squid color-changing biochemistry for solar tech. This appears to be new and related research to a 2019 squid post . As usual, you can also use this squid post to talk about the security stories in the news that I haven’t covered.SCHNEIER.COM
11 AprSpyNote, BadBazaar, MOONSHINE Malware Target Android and iOS Users via Fake AppsCybersecurity researchers have found that threat actors are setting up deceptive websites hosted on newly registered domains to deliver a known Android malware called SpyNote. These bogus websites masquerade as Google Play Store install pages for apps like the Chrome web browser,…THEHACKERNEWS.COM
11 AprOff-Topic Fridaysubmitted by shellsharks to cybersecurity 3 points | 0 comments Wanna chat about something non-infosec amongst those of us who frequent /c/cybersecurity? Here’s your chance! (Keep things civil & respectful please)INFOSEC.PUB
11 AprOWASP Stockholm Meetup March 2025submitted by ashar to security_cpe 4 points | 0 comments Scapy in 0x30 Minutes Offensive security in the AI revolutionINFOSEC.PUB
📡 INFOSEC NEWS 2[−]
11 AprReimagining DemocracyImagine that all of us—all of society—have landed on some alien planet and need to form a government: clean slate. We do not have any legacy systems from the United States or any other country. We do not have any special or unique interests to perturb our thinking. Ho…SCHNEIER.COM
11 Apr12 tips on how to use WhatsApp, Telegram, Signal, Viber, WeChat, and other messaging apps safely | Kaspersky official blogSimple tips for users of any messaging apps on how to chat safely and prevent account hijackingKASPERSKY.COM