29Articles
6Categories
2025-04-29Date
🚨 CISA KEV 2[−]
29 Apr KEVCISA Adds Actively Exploited Broadcom and Commvault Flaws to KEV DatabaseThe U.S. Cybersecurity and Infrastructure Security Agency (CISA) on Monday added two high-severity security flaws impacting Broadcom Brocade Fabric OS and Commvault Web Server to its Known Exploited Vulnerabilities (KEV) catalog, citing evidence of active exploitation in the wild…THEHACKERNEWS.COM
29 Apr KEVCISA Adds One Known Exploited Vulnerability to CatalogCISA has added one new vulnerability to its Known Exploited Vulnerabilities Catalog , based on evidence of active exploitation. CVE-2025-31324 SAP NetWeaver Unrestricted File Upload Vulnerability These types of vulnerabilities are frequent attack vectors for malicious cyber actor…CISA.GOV
⚠️ VULNERABILITY DISCLOSURE 8[−]
29 Apr KEVGoogle Reports 75 Zero-Days Exploited in 2024 — 44% Targeted Enterprise Security ProductsGoogle has revealed that it observed 75 zero-day vulnerabilities exploited in the wild in 2024, down from 98 in 2023 but an increase from 63 the year before. Of the 75 zero-days, 44% of them targeted enterprise products. As many as 20 flaws were identified in security software an…THEHACKERNEWS.COM
29 AprMalware Attack Targets World Uyghur Congress Leaders via Trojanized UyghurEdit++ ToolIn a new campaign detected in March 2025, senior members of the World Uyghur Congress (WUC) living in exile have been targeted by a Windows-based malware that's capable of conducting surveillance. The spear-phishing campaign involved the use of a trojanized version of a legitimat…THEHACKERNEWS.COM
29 AprCISA Releases Three Industrial Control Systems AdvisoriesCISA released three Industrial Control Systems (ICS) advisories on April 29, 2025. These advisories provide timely information about current security issues, vulnerabilities, and exploits surrounding ICS. ICSA-25-119-01 Rockwell Automation ThinManager ICSA-25-119-02 Delta Electro…CISA.GOV
29 AprGoogle: Governments are using zero-day hacks more than everGoogle says zero-day threats are trending upward even as total detections fell in 2024.ARSTECHNICA.COM
29 AprCriminals Exploit the Death of Pope Francis to Launch ScamsScammers are exploiting the death of Pope Francis to launch social engineering attacks, according to researchers at Check Point.KNOWBE4.COM
29 AprGovernment hackers are leading the use of attributed zero-days, Google saysGovernments like China and North Korea, along with spyware makers, used the most recorded zero-days in 2024.TECHCRUNCH.COM
29 AprGovernments are using zero-day hacks more than eversubmitted by PhilipTheBucket to cybersecurity 49 points | 2 comments https://arstechnica.com/security/2025/04/google-governments-are-using-zero-day-hacks-more-than-ever/SH.ITJUST.WORKS
29 AprMultiple Vulnerabilities in Mozilla Products Could Allow for Arbitrary Code ExecutionMultiple vulnerabilities have been discovered in Mozilla products, the most severe of which could allow for arbitrary code execution. Mozilla Firefox is a web browser used to access the Internet. Mozilla Firefox ESR is a version of the web browser intended to be deployed in large…CISECURITY.ORG
🔥 INCIDENT REPORTING 3[−]
29 AprRansomware attacks on critical infrastructure surge, reports FBIThe FBI is set to report that ransomware was the most pervasive cybersecurity threat to US critical infrastructure during the year of 2024, with complaints of ransomware attacks against critical sectors jumping 9% over the previous year. Read more in my article on the Tripwire St…TRIPWIRE.COM
29 Apr21 million employee screenshots leaked in bossware breach blunderIf you thought only your boss was peeking at your work screen, think again. Employee-monitoring tool Work Composer has committed a jaw-dropping blunder, leaving a treasure trove of millions of workplace screenshots openly accessible on the internet with no encryption in place, an…BITDEFENDER.COM
29 AprProxyBlobing into your networkDuring an assumed breach ops via a virtual desktop interface, we discovered a wildcard allow firewall rule for the Azure Blob Storage service. We proved that even with restrictions in place, it was still possible to reach the Internet. Afterwards, we thought of abusing this firew…QUARKSLAB.COM
🕵️ THREAT INTELLIGENCE 9[−]
29 AprApplying Security Engineering to Prompt Injection SecurityThis seems like an important advance in LLM security against prompt injection: Google DeepMind has unveiled CaMeL (CApabilities for MachinE Learning), a new approach to stopping prompt-injection attacks that abandons the failed strategy of having AI models police themselves. Inst…SCHNEIER.COM
29 AprFinding Minhook in a sideloading attack – and Sweden tooMultifaceted changes in TTPs illustrate what researchers see when they start diggingSOPHOS.COM
29 AprNew Reports Uncover Jailbreaks, Unsafe Code, and Data Theft Risks in Leading AI SystemsVarious generative artificial intelligence (GenAI) services have been found vulnerable to two types of jailbreak attacks that make it possible to produce illicit or dangerous content. The first of the two techniques, codenamed Inception, instructs an AI tool to imagine a fictitio…THEHACKERNEWS.COM
29 AprSentinelOne Uncovers Chinese Espionage Campaign Targeting Its Infrastructure and ClientsCybersecurity company SentinelOne has revealed that a China-nexus threat cluster dubbed PurpleHaze conducted reconnaissance attempts against its infrastructure and some of its high-value customers. "We first became aware of this threat cluster during a 2024 intrusion conducted ag…THEHACKERNEWS.COM
29 AprISC Stormcast For Tuesday, April 29th, 2025 https://isc.sans.edu/podcastdetail/9428, (Tue, Apr 29th)(c) SANS Internet Storm Center. https://isc.sans.edu Creative Commons Attribution-Noncommercial 3.0 United States License.ISC.SANS.EDU
29 AprMicrosoft announces the 2025 Security Excellence Awards winnersCongratulations to the winners of the Microsoft Security Excellence Awards that recognize the innovative defenders who have gone above and beyond. The post Microsoft announces the 2025 Security Excellence Awards winners appeared first on Microsoft Security Blog .MICROSOFT.COM
29 AprWhat Is Device Code Phishing?Ever since Microsoft’s initial announcement on February 13, 2025, about a Russian nation-state phishing campaign using "device code phishing," many people have been wondering what it is. This post will tell you what device code phishing is and how to defend against it.KNOWBE4.COM
29 AprNews alert: At RSAC 2025, SecAI unveils platform that fuses agentic AI, contextual threat intelligenceSan Francisco, Calif., Apr 29, 2025, CyberNewswire — SecAI , an AI-enriched threat intelligence company, made its official debut today at RSA Conference 2025 in San Francisco, marking the company’s first public appearance on the global cybersecurity stage. At the … (m…LASTWATCHDOG.COM
29 AprRSAC Fireside Chat: Shift left, think forward — why MDR is emerging as cyber’s silver bulletWith RSAC kicking off next week, the conversation is shifting—literally. Cybersecurity pros are rethinking how “shift left” applies not just to code, but to enterprise risk. Related: Making sense of threat detection In this Fireside Chat, I spoke with John … (more…) The pos…LASTWATCHDOG.COM
🎙️ PODCASTS 1[−]
29 AprThe AI Fix #48: AI Jesus, and is the AI Singularity almost upon us?In episode 48 of The AI Fix, OpenAI releases the first AI models capable of novel scientific discoveries, ChatGPT users are sick of its relentlessly positive tone, our hosts say "Alexa" a lot, OpenAI eyes a social network of its own, and some robots run a half-marathon. Graham di…GRAHAMCLULEY.COM
📡 INFOSEC NEWS 6[−]
29 AprWhatsApp Launches Private Processing to Enable AI Features While Protecting Message PrivacyPopular messaging app WhatsApp on Tuesday unveiled a new technology called Private Processing to enable artificial intelligence (AI) capabilities in a privacy-preserving manner. "Private Processing will allow users to leverage powerful optional AI features – like summarizing unre…THEHACKERNEWS.COM
29 AprProduct Walkthrough: Securing Microsoft Copilot with RecoFind out how Reco keeps Microsoft 365 Copilot safe by spotting risky prompts, protecting data, managing user access, and identifying threats - all while keeping productivity high. Microsoft 365 Copilot promises to boost productivity by turning natural language prompts into action…THEHACKERNEWS.COM
29 AprMore Scans for SMS Gateways and APIs, (Tue, Apr 29th)Last week, I wrote about scans for Teltonika Networks SMS Gateways. Attackers are always looking for cheap (free) ways to send SMS messages and gain access to not-blocklisted numbers. So, I took a closer look at similar scans we have seen. ISC.SANS.EDU
29 AprIndian court orders blocking of Proton MailThe ruling, which has yet to take effect, was ordered under India's online blocking laws.TECHCRUNCH.COM
29 AprWhat is ClickFix and how to protect your company | Kaspersky official blogIf you’re asked to manually run some code on your computer, most likely this is an attack using the ClickFix technique.KASPERSKY.COM
29 AprThis month in security with Tony Anscombe – April 2025 editionFrom the near-demise of MITRE's CVE program to a report showing that AI outperforms elite red teamers in spearphishing, April 2025 was another whirlwind month in cybersecurityWELIVESECURITY.COM