🐛 COMMON VULNERABILITIES AND EXPOSURES 16[−]
15 AprCritical Apache Roller Vulnerability (CVSS 10.0) Enables Unauthorized Session PersistenceA critical security vulnerability has been disclosed in the Apache Roller open-source, Java-based blogging server software that could allow malicious actors to retain unauthorized access even after a password change. The flaw, assigned the CVE identifier CVE-2025-24859, carries a…THEHACKERNEWS.COM
15 AprGladinet’s Triofox and CentreStack Under Active Exploitation via Critical RCE VulnerabilityA recently disclosed security flaw in Gladinet CentreStack also impacts its Triofox remote access and collaboration solution, according to Huntress, with seven different organizations compromised to date. Tracked as CVE-2025-30406 (CVSS score: 9.0), the vulnerability refers to th…THEHACKERNEWS.COM
15 AprCVE-2025-27745 Microsoft Office Remote Code Execution VulnerabilityMicrosoft is announcing the availability of the security updates for Microsoft Office for Mac. Customers running affected Mac software should install the update for their product to be protected from this vulnerability. Customers running other Microsoft Office software do not nee…MSRC.MICROSOFT.COM
15 AprCVE-2025-27746 Microsoft Office Remote Code Execution VulnerabilityMicrosoft is announcing the availability of the security updates for Microsoft Office for Mac. Customers running affected Mac software should install the update for their product to be protected from this vulnerability. Customers running other Microsoft Office software do not nee…MSRC.MICROSOFT.COM
15 AprCVE-2025-27748 Microsoft Office Remote Code Execution VulnerabilityMicrosoft is announcing the availability of the security updates for Microsoft Office for Mac. Customers running affected Mac software should install the update for their product to be protected from this vulnerability. Customers running other Microsoft Office software do not nee…MSRC.MICROSOFT.COM
15 AprCVE-2025-27749 Microsoft Office Remote Code Execution VulnerabilityMicrosoft is announcing the availability of the security updates for Microsoft Office for Mac. Customers running affected Mac software should install the update for their product to be protected from this vulnerability. Customers running other Microsoft Office software do not nee…MSRC.MICROSOFT.COM
15 AprCVE-2025-27751 Microsoft Excel Remote Code Execution VulnerabilityMicrosoft is announcing the availability of the security updates for Microsoft Office for Mac. Customers running affected Mac software should install the update for their product to be protected from this vulnerability. Customers running other Microsoft Office software do not nee…MSRC.MICROSOFT.COM
15 AprCVE-2025-27752 Microsoft Excel Remote Code Execution VulnerabilityMicrosoft is announcing the availability of the security updates for Microsoft Office for Mac. Customers running affected Mac software should install the update for their product to be protected from this vulnerability. Customers running other Microsoft Office software do not nee…MSRC.MICROSOFT.COM
15 AprCVE-2025-27750 Microsoft Excel Remote Code Execution VulnerabilityMicrosoft is announcing the availability of the security updates for Microsoft Office for Mac. Customers running affected Mac software should install the update for their product to be protected from this vulnerability. Customers running other Microsoft Office software do not nee…MSRC.MICROSOFT.COM
15 AprCVE-2025-29791 Microsoft Excel Remote Code Execution VulnerabilityMicrosoft is announcing the availability of the security updates for Microsoft Office for Mac. Customers running affected Mac software should install the update for their product to be protected from this vulnerability. Customers running other Microsoft Office software do not nee…MSRC.MICROSOFT.COM
15 AprCVE-2025-29820 Microsoft Word Remote Code Execution VulnerabilityMicrosoft is announcing the availability of the security updates for Microsoft Office for Mac. Customers running affected Mac software should install the update for their product to be protected from this vulnerability. Customers running other Microsoft Office software do not nee…MSRC.MICROSOFT.COM
15 AprCVE-2025-29822 Microsoft OneNote Security Feature Bypass VulnerabilityMicrosoft is announcing the availability of the security updates for Microsoft Office for Mac. Customers running affected Mac software should install the update for their product to be protected from this vulnerability. Customers running other Microsoft Office software do not nee…MSRC.MICROSOFT.COM
15 AprCVE-2025-29817 Microsoft Power Automate Desktop Information Disclosure VulnerabilityUncontrolled search path element in Power Automate allows an authorized attacker to disclose information over a network.MSRC.MICROSOFT.COM
15 AprCVE-2025-26642 Microsoft Office Remote Code Execution VulnerabilityMicrosoft is announcing the availability of the security updates for Microsoft Office for Mac. Customers running affected Mac software should install the update for their product to be protected from this vulnerability. Customers running other Microsoft Office software do not nee…MSRC.MICROSOFT.COM
15 AprCVE-2025-29816 Microsoft Word Security Feature Bypass VulnerabilityMicrosoft is announcing the availability of the security updates for Microsoft Office for Mac. Customers running affected Mac software should install the update for their product to be protected from this vulnerability. Customers running other Microsoft Office software do not nee…MSRC.MICROSOFT.COM
15 AprMITRE funding for the Common Vulnerabilities and Exposures (CVE) program will expire on April 16thsubmitted by CyberSeeker to cybersecurity 26 points | 1 comments https://infosec.exchange/@briankrebs/114343835430587973INFOSEC.PUB
⚠️ VULNERABILITY DISCLOSURE 8[−]
15 AprChinese Hackers Target Linux Systems Using SNOWLIGHT Malware and VShell ToolThe China-linked threat actor known as UNC5174 has been attributed to a new campaign that leverages a variant of a known malware dubbed SNOWLIGHT and a new open-source tool called VShell to infect Linux systems. "Threat actors are increasingly using open source tools in their ars…THEHACKERNEWS.COM
15 AprMalicious PyPI Package Targets MEXC Trading API to Steal Credentials and Redirect OrdersCybersecurity researchers have disclosed a malicious package uploaded to the Python Package Index (PyPI) repository that's designed to reroute trading orders placed on the MEXC cryptocurrency exchange to a malicious server and steal tokens. The package, ccxt-mexc-futures, purport…THEHACKERNEWS.COM
15 AprCISA Releases Nine Industrial Control Systems AdvisoriesCISA released nine Industrial Control Systems (ICS) advisories on April 15, 2025. These advisories provide timely information about current security issues, vulnerabilities, and exploits surrounding ICS. ICSA-25-105-01 Siemens Mendix Runtime ICSA-25-105-02 Siemens Industrial Edge…CISA.GOV
15 AprThreat actors misuse Node.js to deliver malware and other malicious payloadsSince October 2024, Microsoft Defender Experts has observed and helped multiple customers address campaigns leveraging Node.js to deliver malware and other payloads that ultimately lead to information theft and data exfiltration. The post Threat actors misuse Node.js to deliver m…MICROSOFT.COM
15 AprUK Organizations Cite Phishing as the Most Disruptive Type of CyberattackPhishing was the most prevalent and disruptive type of attack experienced by UK organizations over the past twelve months, according to the British government’s Cyber Security Breaches Survey 2025.KNOWBE4.COM
15 AprNotorious image board 4chan hacked and internal data leakedThe infamous website was taken down and working intermittently, while hackers leaked alleged data like moderators email addresses, and source code.TECHCRUNCH.COM
15 AprStrengthen Security with Cyber Risk AdvisoryIn today’s fast-paced digital world, cyber threats are constantly evolving. Attackers are leveraging advanced techniques and artificial intelligence (AI) to exploit vulnerabilities, leaving organizations vulnerable to breaches and disruptions. To combat these challenges, organiza…TRENDMICRO.COM
15 Apr4chan Is Down Following What Looks to Be a Major Hack Spurred By Meme Warsubmitted by Deebster to cybersecurity 76 points | 11 comments https://www.404media.co/4chan-is-down-following-what-looks-to-be-a-major-hack-spurred-by-meme-war/?ref=weekly-roundup-newsletter The notorious imageboard 4chan is down following what appears to be a major hack of its …INFOSEC.PUB
📢 SECURITY ADVISORIES 1[−]
15 AprTrump Revenge Tour Targets Cyber Leaders, ElectionsPresident Trump last week revoked security clearances for Chris Krebs, the former director of the Cybersecurity and Infrastructure Security Agency (CISA) who was fired by Trump after declaring the 2020 election the most secure in U.S. history. The White House memo, which also sus…KREBSONSECURITY.COM
🔥 INCIDENT REPORTING 3[−]
15 AprOnline Services Again Abused to Exfiltrate Data, (Tue, Apr 15th)If Attackers can abuse free online services, they will do for sure&#;x26;#;x21; Why spend time to deploy a C2 infrastructure if you have plenty of ways to use "official" services. Not only, they don&#;x26;#;39;t cost any mon…ISC.SANS.EDU
15 AprRansomHouse ransomware: what you need to knowRansomHouse is a cybercrime operation that follows a Ransomware-as-a-Service (RaaS) business model, where affiliates (who do not require technical skills of their own) use the ransomware operator's infrastructure to extort money from victims. Read more in my article on the Fortra…FORTRA.COM
15 AprZDI-23-1527 and ZDI-23-1528: The Potential Impact of Overly Permissive SAS Tokens on PC Manager Supply ChainsIn ZDI-23-1527 and ZDI-23-1528 we uncover two possible scenarios where attackers could have compromised the Microsoft PC Manager supply chain.TRENDMICRO.COM
🕵️ THREAT INTELLIGENCE 8[−]
15 AprSlopsquattingAs AI coding assistants invent nonexistent software libraries to download and use, enterprising attackers create and upload libraries with those names—laced with malware, of course.SCHNEIER.COM
15 AprCrypto Developers Targeted by Python Malware Disguised as Coding ChallengesThe North Korea-linked threat actor assessed to be behind the massive Bybit hack in February 2025 has been linked to a malicious campaign that targets developers to deliver new stealer malware under the guise of a coding assignment. The activity has been attributed by Palo Alto N…THEHACKERNEWS.COM
15 AprISC Stormcast For Tuesday, April 15th, 2025 https://isc.sans.edu/podcastdetail/9408, (Tue, Apr 15th)(c) SANS Internet Storm Center. https://isc.sans.edu Creative Commons Attribution-Noncommercial 3.0 United States License.ISC.SANS.EDU
15 AprTransforming security with Microsoft Security Exposure Management initiativesMicrosoft Secure Score is important, but the increasing sophistication of security requirements has driven the development of more comprehensive security initiatives using Microsoft Security Exposure Management. The post Transforming security with Microsoft Security Exposure M…MICROSOFT.COM
15 AprCyberheistNews Vol 15 #15 [HEADS UP] North Korea Expands Its Fraudulent IT Worker OperationsKNOWBE4.COM
15 AprMy Take: Is Amazon’s Alexa+ a Gutenberg moment — or a corporate rerun of history’s greatest co-opt?Last Friday morning, April 11, I was making my way home from NTT Research’s Upgrade 2025 innovation conference in San Francisco, when it struck me that we’re at a watershed moment. Related: How GenAI is disrupting the value of legal … (more…) The post My Take: Is Amazon’s A…LASTWATCHDOG.COM
15 AprLandmark Admin now says info on 1.6M people stolen from itsubmitted by cm0002 to cybersecurity 8 points | 0 comments https://www.theregister.com/2025/04/15/landmark_admin_data_loss/INFOSEC.PUB
15 AprThreat actors misuse Node.js to deliver malware and other malicious payloadssubmitted by Tea to cybersecurity 14 points | 1 comments https://www.microsoft.com/en-us/security/blog/2025/04/15/threat-actors-misuse-node-js-to-deliver-malware-and-other-malicious-payloads/INFOSEC.PUB
🌐 CYBER THREAT LANDSCAPE 1[−]
15 AprThe AI Fix #46: AI can read minds now, and is your co-host a clone?In episode 46 of The AI Fix, China trolls US tariffs, a microscopic pogoing flea-bot makes a tiny leap forward for robotics, Google unveils the Agent2Agent protocol, a robot dog is so cute it ruins Graham's entire day, and Europe commits €20 billion and all of its buzzwords to fi…GRAHAMCLULEY.COM
📡 INFOSEC NEWS 7[−]
15 AprSophos Firewall v21.5: NDR EssentialsHow to make the most of the new features in Sophos Firewall v21.5SOPHOS.COM
15 AprMajority of Browser Extensions Can Access Sensitive Enterprise Data, New Report FindsEverybody knows browser extensions are embedded into nearly every user’s daily workflow, from spell checkers to GenAI tools. What most IT and security people don’t know is that browser extensions’ excessive permissions are a growing risk to organizations. LayerX today announced t…THEHACKERNEWS.COM
15 AprMeta Resumes E.U. AI Training Using Public User Data After Regulator ApprovalMeta has announced that it will begin to train its artificial intelligence (AI) models using public data shared by adults across its platforms in the European Union, nearly a year after it paused its efforts due to data protection concerns from Irish regulators. "This training wi…THEHACKERNEWS.COM
15 AprAndroid phones will soon reboot themselves after sitting unused for 3 daysThe latest Google update will make your phone more secure if you don't touch itARSTECHNICA.COM
15 AprFor security, Android phones will now auto-reboot after three daysThe update comes months after Apple pushed its own “inactivity reboot” feature.TECHCRUNCH.COM
15 AprTop 10 for LLM & Gen AI Project Ranked by OWASPTrend Micro has become a Gold sponsor of the OWASP Top 10 for LLM and Gen AI Project, merging cybersecurity expertise with OWASP's collaborative efforts to address emerging AI security risks. This partnership underscores Trend Micro's unwavering commitment to advancing AI securit…TRENDMICRO.COM
15 AprCISO priorities in 2025 | Kaspersky official blogSix key areas for cost-effective development of a company's information security function in 2025, with a focus on budget optimizationKASPERSKY.COM