48Articles
9Categories
2025-04-17Date
🚨 CISA KEV 2[−]
17 Apr KEVCISA Adds Three Known Exploited Vulnerabilities to CatalogCISA has added three new vulnerabilities to its  Known Exploited Vulnerabilities Catalog , based on evidence of active exploitation. CVE-2025-31200  Apple Multiple Products Memory Corruption Vulnerability CVE-2025-31201  Apple Multiple Products Arbitrary Read and W…CISA.GOV
17 Apr KEVUpdate these two servers from Gladinet immediately, CISOs toldCISOs running Gladinet’s CentreStack file server or Triofox file sharing server should update the applications as soon as possible because of a hard-coded key vulnerability which is being exploited now, say researchers at Huntress. “Immediate action is essential.” John Hammond, p…CSOONLINE.COM
🐛 COMMON VULNERABILITIES AND EXPOSURES 12[−]
17 AprCritical Erlang/OTP SSH pre-auth RCE is 'Surprisingly Easy' to exploit, patch nowA critical vulnerability in the Erlang/OTP SSH, tracked as CVE-2025-32433, has been disclosed that allows for unauthenticated remote code execution on vulnerable devices. [...]BLEEPINGCOMPUTER.COM
17 AprCritical Erlang/OTP SSH Flaw Exposes Many Devices to Remote HackingServers exposed to complete takeover due to CVE-2025-32433, an unauthenticated remote code execution flaw in Erlang/OTP SSH. The post Critical Erlang/OTP SSH Flaw Exposes Many Devices to Remote Hacking appeared first on SecurityWeek .SECURITYWEEK.COM
17 AprCritical Erlang/OTP SSH Vulnerability (CVSS 10.0) Allows Unauthenticated Code ExecutionA critical security vulnerability has been disclosed in the Erlang/Open Telecom Platform (OTP) SSH implementation that could permit an attacker to execute arbitrary code sans any authentication under certain conditions. The vulnerability, tracked as CVE-2025-32433, has been given…THEHACKERNEWS.COM
17 Apr KEVCISA Flags Actively Exploited Vulnerability in SonicWall SMA DevicesThe U.S. Cybersecurity and Infrastructure Security Agency (CISA) on Wednesday added a security flaw impacting SonicWall Secure Mobile Access (SMA) 100 Series gateways to its Known Exploited Vulnerabilities (KEV) catalog, based on evidence of active exploitation. The high-severity…THEHACKERNEWS.COM
17 Apr KEVApple Patches Two Actively Exploited iOS Flaws Used in Sophisticated Targeted AttacksApple on Wednesday released security updates for iOS, iPadOS, macOS Sequoia, tvOS, and visionOS to address two security flaws that it said have come under active exploitation in the wild. The vulnerabilities in question are listed below - CVE-2025-31200 (CVSS score: 7.5) - A memo…THEHACKERNEWS.COM
17 AprCVE-2025-27747 Microsoft Word Remote Code Execution VulnerabilityUpdated acknowledgment. This is an informational change only.MSRC.MICROSOFT.COM
17 AprCVE-2025-27729 Windows Shell Remote Code Execution VulnerabilityUpdated acknowledgment. This is an informational change only.MSRC.MICROSOFT.COM
17 AprChromium: CVE-2025-3620 Use after free in USBThis CVE was assigned by Chrome. Microsoft Edge (Chromium-based) ingests Chromium, which addresses this vulnerability. Please see [Google Chrome Releases](https://chromereleases.googleblog.com/202 5) for more information.MSRC.MICROSOFT.COM
17 AprChromium: CVE-2025-3619 Heap buffer overflow in CodecsThis CVE was assigned by Chrome. Microsoft Edge (Chromium-based) ingests Chromium, which addresses this vulnerability. Please see [Google Chrome Releases](https://chromereleases.googleblog.com/202 5) for more information.MSRC.MICROSOFT.COM
17 AprCVE-Finanzierung weiterhin gesichertExperten warnten, dass ohne CVE ein Koordinationschaos in der IT-Sicherheit droht. Die CISA scheint sie erhört zu haben. Jerome460 / Shutterstock Am 16. April 2025 hatte die Trump-Regierung kurzfristig ein Ende der Finanzierung des weltweit bedeutenden CVE -Programms (Common Vuln…CSOONLINE.COM
17 Apr KEVHackers target Apple users in an ‘extremely sophisticated attack’Apple is urging immediate patching of two zero-day vulnerabilities in its CoreAudio and RPAC components, citing their use in what the iPhone maker describes as “extremely sophisticated attacks.” Tracked as CVE-2025-31200 (CoreAudio) and CVE-2025-31201 (RPAC), the vulnerabilities …CSOONLINE.COM
17 AprMITRE funding still in up in the air, say expertsInfosec pros are relieved that the Trump administration at the last minute extended support for MITRE’s Common Vulnerabilities and Exposures (CVE) database, but at least one wonders if funding will continue. The program was set to expire today, but last night the US Cybersecurity…CSOONLINE.COM
⚠️ VULNERABILITY DISCLOSURE 10[−]
17 AprMan Helped Individuals in China Get Jobs Involving Sensitive US Government ProjectsMinh Phuong Ngoc Vong pleaded guilty to defrauding US companies of roughly $1 million in a fake IT worker scheme. The post Man Helped Individuals in China Get Jobs Involving Sensitive US Government Projects appeared first on SecurityWeek .SECURITYWEEK.COM
17 AprVulnerabilities Patched in Atlassian, Cisco ProductsAtlassian and Cisco have released patches for multiple high-severity vulnerabilities, including remote code execution bugs. The post Vulnerabilities Patched in Atlassian, Cisco Products appeared first on SecurityWeek .SECURITYWEEK.COM
17 AprCISA Releases Six Industrial Control Systems AdvisoriesCISA released six Industrial Control Systems (ICS) advisories on April 17, 2025. These advisories provide timely information about current security issues, vulnerabilities, and exploits surrounding ICS. ICSA-25-107-01 Schneider Electric Trio Q Licensed Data Radio ICSA-25-107-02 S…CISA.GOV
17 AprThe Continued Abuse of Legitimate Domains: A Spike in the Exploitation of Google Drive to Send Phishing AttacksFirst QuickBooks , then Microsoft , and now Google—will the hijacking of legitimate third-party platform communications stop escalating in 2025? Our Threat Labs researchers predict the answer is no.KNOWBE4.COM
17 AprNeue ResolverRAT-Malware zielt auf GesundheitsbrancheDer neue Remote Access Trojaner ResolverRAT nutzt DLL-Side-Loading-Probleme aus. janews – shutterstock.com Forscher von Morphisec haben einen neuen Remote Access Trojaner (RAT) mit dem Namen ResolverRAT entdeckt, der über Phishing-E-Mails mit bösartigen Anhängen verbreitet wird. …CSOONLINE.COM
17 AprCISOs no closer to containing shadow AI’s skyrocketing data risksGenerative AI’s many benefits come with the drawback of data security risks, primarily through shadow AI use and the leakage of sensitive information. These risks are being compounded in the enterprise as workers often use private gen AI accounts to process sensitive data. While …CSOONLINE.COM
17 AprRussia-linked APT29 targets European diplomats with new malwareCyberespionage group known as APT29 and linked to Russia’s foreign intelligence service (SVR), has added a new malware loader to its toolset. Used for fingerprinting, persistence and payload delivery, the new loader was observed in a recent phishing campaign against diplomatic mi…CSOONLINE.COM
17 AprInsecure Code vs. the Entire RGB Industry | WinRing 0 Driver, ft. Wendell of Level1 Techssubmitted by recursive_recursion to cybersecurity 56 points | 0 comments https://i.ytimg.com/vi/H_O5JtBqODA/maxresdefault.jpg Invidious Youtube "Our recommendation is to do what your antivirus software says especially in regards to this one (WinRing0) because again it’s not …SH.ITJUST.WORKS
17 AprMultiple Groups Exploit NTLM Flaw in Microsoft Windowssubmitted by kid to cybersecurity 6 points | 1 comments https://www.darkreading.com/cyberattacks-data-breaches/multiple-group-exploiting-ntlm-flawSH.ITJUST.WORKS
17 Apr KEVCISA Flags Actively Exploited Vulnerability in SonicWall SMA Devicessubmitted by kid to cybersecurity 7 points | 0 comments https://thehackernews.com/2025/04/cisa-flags-actively-exploited.htmlSH.ITJUST.WORKS
📢 SECURITY ADVISORIES 1[−]
17 AprCISA warns of potential data breaches caused by legacy Oracle Cloud leaksubmitted by kid to cybersecurity 28 points | 1 comments https://therecord.media/cisa-warns-of-potential-data-breaches-tied-to-oracle-issueSH.ITJUST.WORKS
🔥 INCIDENT REPORTING 7[−]
17 AprMustang Panda Targets Myanmar With StarProxy, EDR Bypass, and TONESHELL UpdatesThe China-linked threat actor known as Mustang Panda has been attributed to a cyber attack targeting an unspecified organization in Myanmar with previously unreported tooling, highlighting continued effort by the threat actors to increase the sophistication and effectiveness of t…THEHACKERNEWS.COM
17 AprNode.js Malware Campaign Targets Crypto Users with Fake Binance and TradingView InstallersMicrosoft is calling attention to an ongoing malvertising campaign that makes use of Node.js to deliver malicious payloads capable of information theft and data exfiltration. The activity, first detected in October 2024, uses lures related to cryptocurrency trading to trick users…THEHACKERNEWS.COM
17 AprLack of Security Awareness Tops List of Obstacles to Cyber DefenseMost organizations cite low security awareness among employees as the biggest barrier to defending against cyberattacks, according to a new survey by CyberEdge Group.KNOWBE4.COM
17 AprMit der Firmenübernahme steigt das Angriffsrisikowidth="5000" height="2812" sizes="(max-width: 5000px) 100vw, 5000px"> Übernahmeaktivitäten bergen auch mit Blick auf die Security Risiken. NESPIX – shutterstock.com Im Rahmen ihrer Arbeit an dem kürzlich veröffentlichten Report „ 2025 Data Security Incidcent Response “ (PDF) habe…CSOONLINE.COM
17 AprOver 16,000 Fortinet devices compromised with symlink backdoorsubmitted by kid to cybersecurity 12 points | 0 comments https://www.bleepingcomputer.com/news/security/over-16-000-fortinet-devices-compromised-with-symlink-backdoor/SH.ITJUST.WORKS
17 AprRansomware Group Claims Hacking of Oregon Regulator After Data Breach Denialsubmitted by kid to cybersecurity 5 points | 0 comments https://www.securityweek.com/ransomware-group-claims-hacking-of-oregon-regulator-after-data-breach-denial/SH.ITJUST.WORKS
17 AprHuge ransomware campaign targets AWS S3 storage: attackers have thousands of keyssubmitted by kid to cybersecurity 23 points | 1 comments https://cybernews.com/security/aws-cloud-storage-bucket-ransomware-attacks/SH.ITJUST.WORKS
🕵️ THREAT INTELLIGENCE 11[−]
17 AprAge Verification Using Facial ScansDiscord is testing the feature: “We’re currently running tests in select regions to age-gate access to certain spaces or user settings,” a spokesperson for Discord said in a statement. “The information shared to power the age verification method is only us…SCHNEIER.COM
17 AprDemystifying Security Posture ManagementWhile the Security Posture Management buzz is real, its long-term viability depends on whether it can deliver measurable outcomes without adding more complexity. The post Demystifying Security Posture Management appeared first on SecurityWeek .SECURITYWEEK.COM
17 AprState-Sponsored Hackers Weaponize ClickFix Tactic in Targeted Malware CampaignsMultiple state-sponsored hacking groups from Iran, North Korea, and Russia have been found leveraging the increasingly popular ClickFix social engineering tactic to deploy malware over a three-month period from late 2024 through the beginning of 2025. The phishing campaigns adopt…THEHACKERNEWS.COM
17 AprISC Stormcast For Thursday, April 17th, 2025 https://isc.sans.edu/podcastdetail/9412, (Thu, Apr 17th)(c) SANS Internet Storm Center. https://isc.sans.edu Creative Commons Attribution-Noncommercial 3.0 United States License.ISC.SANS.EDU
17 AprRedTail, Remnux and Malware Management [Guest Diary], (Wed, Apr 16th)[This is a Guest Diary by Jacob Claycamp, an ISC intern as part of the SANS.edu BACS program] ISC.SANS.EDU
17 AprMicrosoft’s Secure by Design journey: One year of successRead about the initiatives Microsoft has undertaken over the past 18 months to support secure by design, secure by default, and secure in operations objectives as part of our SFI Initiative. The post Microsoft’s Secure by Design journey: One year of success appeared first o…MICROSOFT.COM
17 Apr[Scary] A New Real Cash Scam Sweeps Across the U.S. Warn Your Family and Friends!Right now, today, thousands of people are being tricked into going to their banks or credit unions to withdraw large sums of cash and will give or send it to a complete stranger, never to see it again. Many of the victims are in the prime of their lives, intelligent, and consider…KNOWBE4.COM
17 AprCrazyHunter Campaign Targets Taiwanese Critical Sectorssubmitted by kid to cybersecurity 3 points | 0 comments https://www.trendmicro.com/en_us/research/25/d/crazyhunter-campaign.htmlSH.ITJUST.WORKS
17 AprNew macOS Spyware PasivRobber Linked to Chinese State Actorssubmitted by kid to cybersecurity 15 points | 0 comments https://cyberinsider.com/new-macos-spyware-pasivrobber-linked-to-chinese-state-actors/SH.ITJUST.WORKS
17 AprChinese Hacker Group Mustang Panda Bypass EDR Detection With New Hacking Toolssubmitted by kid to cybersecurity 7 points | 0 comments https://gbhackers.com/chinese-hackers-group-mustang-panda-bypass-edr-detection/SH.ITJUST.WORKS
17 AprSnake Oilers: Pangea, Cosive and SysdigIn this edition of Snake Oilers three vendors pitch host Patrick Gray on their tech: Pangea: Guardrails and security for AI agents and applications (https://pangea.cloud) Worried about your AI apps going rogue, being mean to your customers or even disclosing sensitive information…RISKY.BIZ
🌐 CYBER THREAT LANDSCAPE 1[−]
17 AprFlorida draft law mandating encryption backdoors for social media accounts billed ‘dangerous and dumb’A digital rights group blasted the Florida bill, but lawmakers voted to advanced the draft law.TECHCRUNCH.COM
🎙️ PODCASTS 1[−]
17 AprMoving CVEs past one-nation controlA near-miss episode of attempted defunding spotlights a need for a better waySOPHOS.COM
📡 INFOSEC NEWS 3[−]
17 AprArtificial Intelligence – What's all the fuss?Talking about AI: Definitions Artificial Intelligence (AI) — AI refers to the simulation of human intelligence in machines, enabling them to perform tasks that typically require human intelligence, such as decision-making and problem-solving. AI is the broadest concept in this fi…THEHACKERNEWS.COM
17 AprBlockchain Offers Security Benefits – But Don't Neglect Your PasswordsBlockchain is best known for its use in cryptocurrencies like Bitcoin, but it also holds significant applications for online authentication. As businesses in varying sectors increasingly embrace blockchain-based security tools, could the technology one day replace passwords? How …THEHACKERNEWS.COM
17 AprCapCut copycats are on the prowlCybercriminals lure content creators with promises of cutting-edge AI wizardry, only to attempt to steal their data or hijack their devices insteadWELIVESECURITY.COM