38Articles
8Categories
2025-05-07Date
🚨 CISA KEV 1[−]
7 May KEVCISA Adds Two Known Exploited Vulnerabilities to CatalogCISA has added two new vulnerabilities to its  Known Exploited Vulnerabilities Catalog , based on evidence of active exploitation. CVE-2024-6047 GeoVision Devices OS Command Injection Vulnerability CVE-2024-11120 GeoVision Devices OS Command Injection Vulnerability These typ…CISA.GOV
🐛 COMMON VULNERABILITIES AND EXPOSURES 5[−]
7 MayOttoKit WordPress Plugin with 100K+ Installs Hit by Exploits Targeting Multiple FlawsA second security flaw impacting the OttoKit (formerly SureTriggers) WordPress plugin has come under active exploitation in the wild. The vulnerability, tracked as CVE-2025-27007 (CVSS score: 9.8), is a privilege escalation bug impacting all versions of the plugin prior to and in…THEHACKERNEWS.COM
7 MaySysAid Patches 4 Critical Flaws Enabling Pre-Auth RCE in On-Premise VersionCybersecurity researchers have disclosed multiple security flaw in the on-premise version of SysAid IT support software that could be exploited to achieve pre-authenticated remote code execution with elevated privileges. The vulnerabilities, tracked as CVE-2025-2775, CVE-2025-277…THEHACKERNEWS.COM
7 MayPlay Ransomware Exploited Windows CVE-2025-29824 as Zero-Day to Breach U.S. OrganizationThreat actors with links to the Play ransomware family exploited a recently patched security flaw in Microsoft Windows as a zero-day as part of an attack targeting an unnamed organization in the United States. The attack, per the Symantec Threat Hunter Team, part of Broadcom, lev…THEHACKERNEWS.COM
7 MayWindows flaw exploited as zero-day by more groups than previously thoughtA privilege escalation vulnerability that Microsoft patched as a zero-day in April was known and used by more groups than initially revealed, including the gang behind the Play ransomware that got into one network through a Cisco ASA firewall. When Microsoft patched CVE-2025-2982…CSOONLINE.COM
7 MaySecurity update causes new problem for Windows Hello for Business authenticationA fix introduced into Windows last month to close a weakness in Kerberos authentication is causing logon failures for some Windows Hello for Business (WHfB) users, Microsoft has warned. In theory, the monthly Windows patching cycle is about fixing vulnerabilities, of which CVE-20…CSOONLINE.COM
⚠️ VULNERABILITY DISCLOSURE 15[−]
7 May6 Year Old Sleeper Attack Uncovered, Fake Bank Draft Scam, and Signal Tool BreachIn this episode of Cybersecurity Today, host Jim Love delves into a range of alarming cyber incidents. A six-year sleeper supply chain attack has compromised thousands of e-commerce websites, exploiting vulnerabilities in Magento extensions from vendors Tigren, Meetanshi, and Mag…CYBERSECURITYTODAY.LIBSYN.COM
7 MayReevaluating SSEs: A Technical Gap Analysis of Last-Mile ProtectionSecurity Service Edge (SSE) platforms have become the go-to architecture for securing hybrid work and SaaS access. They promise centralized enforcement, simplified connectivity, and consistent policy control across users and devices. But there's a problem: they stop short of wher…THEHACKERNEWS.COM
7 MayResearchers Uncover Malware in Fake Discord PyPI Package Downloaded 11,500+ TimesCybersecurity researchers have discovered a malicious package on the Python Package Index (PyPI) repository that masquerades as a seemingly harmless Discord-related utility but incorporates a remote access trojan. The package in question is discordpydebug, which was uploaded to P…THEHACKERNEWS.COM
7 MayNSO Group Fined $168M for Targeting 1,400 WhatsApp Users With Pegasus SpywareA federal jury on Tuesday decided that NSO Group must pay Meta-owned WhatsApp WhatsApp approximately $168 million in monetary damages, more than four months after a federal judge ruled that the Israeli company violated U.S. laws by exploiting WhatsApp servers to deploy Pegasus sp…THEHACKERNEWS.COM
7 MayOpen source project curl is sick of users submitting “AI slop” vulnerabilities"One way you can tell is it's always such a nice report," founder tells Ars.ARSTECHNICA.COM
7 MayTalos Report: Phishing Attacks Surged in Q1 2025Phishing was the initial access vector in 50% of attacks during the first quarter of 2025, according to a new report from Cisco Talos.KNOWBE4.COM
7 MayWarning: Phishing Campaign Impersonates the US Social Security AdministrationResearchers at Malwarebytes warn that phishing emails are impersonating the US Social Security Administration (SSA) to trick users into installing the ScreenConnect remote access tool.KNOWBE4.COM
7 MayCrowdStrike says it will lay off 500 workersThe cybersecurity company said it will lay off 5% of its global workforce.TECHCRUNCH.COM
7 MayMeta wins $168M judgment against spyware seller NSO GroupIsraeli surveillance firm NSO Group must pay almost $168 million in damages for exploiting WhatsApp to deploy its notorious Pegasus spyware against users worldwide, the jury in a US court said Tuesday. An eight-person jury granted Meta $444,719 in compensatory damages to cover th…COMPUTERWORLD.COM
7 MayHackers booby trap NPM with cross-language imposter packagesHackers are abusing the Node Package Manager (NPM) registry — a database of JavaScript packages — to target multi-language developers with typo-squatted packages containing stealers and remote code execution (RCE) codes. According to a research by cybersecurity firm Socket, a coo…CSOONLINE.COM
7 MayThe 8 security metrics that matter mostKPIs and metrics are indispensable for evaluating the effectiveness of enterprise cyber defenses. These crucial tools open insights into system vulnerabilities, threat patterns, and incident response efficiency. In a time of growing digital reliance, KPIs and metrics play an vita…CSOONLINE.COM
7 MayBackdoor found in popular ecommerce componentssubmitted by Pro to cybersecurity 17 points | 0 comments https://sansec.io/research/license-backdoorINFOSEC.PUB
7 MayVulnerability-Lookup 2.9.0 - MITRE EMB3D, GCVEsubmitted by cm0002 to cybersecurity 6 points | 0 comments https://www.vulnerability-lookup.org/2025/05/06/vulnerability-lookup-2-9-0/ Today we released Vulnerability-Lookup 2.9.0 with new features, enhancements, and bug fixes. What’s New Adversarial Techniques from MITRE EMB3D T…INFOSEC.PUB
7 MayBackdoor found in popular ecommerce componentssubmitted by Pro to security 6 points | 0 comments https://sansec.io/research/license-backdoorPROGRAMMING.DEV
7 MayRisky Business #790 -- Bye bye Signal-gate, hello TeleMessage-gateOn this week’s show Patrick Gray and Adam Boileau discuss the week’s cybersecurity news: White House’s off-brand Israeli Signal fork logs cleartext messages with hard coded creds while getting hacked (twice). Just … Wow. Ransomware attacks on UK retailers are linked, and Marks &a…RISKY.BIZ
📢 SECURITY ADVISORIES 2[−]
7 MayNCSC warns of IT helpdesk impersonation trick being used by ransomware gangs after UK retailers attackedThe UK's National Cyber Security Centre (NCSC) has warned the IT helpdesks of retailers to be on their guard against bogus support calls they might receive from hackers pretending to be staff locked out of their accounts. Read more in my article on the Exponential-e blog.EXPONENTIAL-E.COM
7 MayImpact of AI on cyber threat from now to 2027An NCSC assessment highlighting the impacts on cyber threat from AI developments between now and 2027.NCSC.GOV.UK
🔥 INCIDENT REPORTING 2[−]
7 MayAgenda Ransomware Group Adds SmokeLoader and NETXLOADER to Their ArsenalDuring our monitoring of Agenda ransomware activities, we uncovered campaigns that made use of the SmokeLoader malware and a new loader we've named NETXLOADER.TRENDMICRO.COM
7 MayRansomware-Bande erpresst Brauerei OettingerCyberkriminelle haben die IT-Systeme der Brauerei Oettinger verschlüsselt. Die Produktion ist nicht betroffen. defotoberg – shutterstock.com In Darknet ist kürzlich ein Post der Cyberbande Ransomhouse aufgetaucht, in dem es um einen Cyberangriff auf die deutsche Brauerei Oettinge…CSOONLINE.COM
🕵️ THREAT INTELLIGENCE 6[−]
7 MayChinese AI SubmersibleA Chinese company has developed an AI-piloted submersible that can reach speeds “similar to a destroyer or a US Navy torpedo,” dive “up to 60 metres underwater,” and “remain static for more than a month, like the stealth capabilities of a nuclear sub…SCHNEIER.COM
7 MayISC Stormcast For Wednesday, May 7th, 2025 https://isc.sans.edu/podcastdetail/9440, (Wed, May 7th)(c) SANS Internet Storm Center. https://isc.sans.edu Creative Commons Attribution-Noncommercial 3.0 United States License.ISC.SANS.EDU
7 MayMeet the Deputy CISOs who help shape Microsoft’s approach to cybersecurity: Part 2Meet the minds behind how Microsoft prioritizes cybersecurity across every team and employee. Three deputy chief information security officers share their experiences in cybersecurity and how they are redefining protection. The post Meet the Deputy CISOs who help shape Microsoft’…MICROSOFT.COM
7 MayWhat are You Working on Wednesdaysubmitted by shellsharks to cybersecurity 7 points | 1 comments Weekly thread to discuss whatever you’re working on, big or small, at work or in your free time.INFOSEC.PUB
7 MayReturn of the Crypto Inferno Drainersubmitted by Pro to cybersecurity 2 points | 0 comments https://research.checkpoint.com/2025/inferno-drainer-reloaded-deep-dive-into-the-return-of-the-most-sophisticated-crypto-drainer/ Check Point Research uncovered a sophisticated phishing campaign that abuses Discord and targe…INFOSEC.PUB
7 MayReturn of the Crypto Inferno Drainersubmitted by Pro to security 1 points | 0 comments https://research.checkpoint.com/2025/inferno-drainer-reloaded-deep-dive-into-the-return-of-the-most-sophisticated-crypto-drainer/ Check Point Research uncovered a sophisticated phishing campaign that abuses Discord and targets cr…PROGRAMMING.DEV
🌐 CYBER THREAT LANDSCAPE 1[−]
7 MayExample of "Modular" Malware, (Wed, May 7th)Developers (of malware as well as goodware) don&#;x26;#;39;t have to reinvent the wheel all the time. Why rewrite a piece of code that was development by someone else? In the same way, all operating systems provide API calls (or system calls) to i…ISC.SANS.EDU
📡 INFOSEC NEWS 6[−]
7 MayPakistani Firm Shipped Fentanyl Analogs, Scams to USA Texas firm recently charged with conspiring to distribute synthetic opioids in the United States is at the center of a vast network of companies in the U.S. and Pakistan whose employees are accused of using online ads to scam westerners seeking help with trademarks, book writin…KREBSONSECURITY.COM
7 MayEuropol Shuts Down Six DDoS-for-Hire Services Used in Global AttacksEuropol has announced the takedown of distributed denial of service (DDoS)-for-hire services that were used to launch thousands of cyber-attacks across the world. In connection with the operation, Polish authorities have arrested four individuals aged between 19 and 22 and the Un…THEHACKERNEWS.COM
7 MayOx Security lands a fresh $60M to scan for vulnerabilities in codeAs “vibe coding” gains in popularity and tech companies push devs in their employ to embrace generative AI tools, a platform that scans for vulnerabilities in AI-generated code has raised a fresh round of funding. Ox Security, which models risk across both AI- and hum…TECHCRUNCH.COM
7 MayTeleMessage, the Signal clone used by US government officials, suffers hackTeleMessage, an encrypted messaging app based upon Signal, has been temporarily suspended out of "an abundance of caution" after a hacker reportedly gained access to US government communications. Read more in my article on the Hot for Security blog.BITDEFENDER.COM
7 MaySafeguarding your browsing history | Kaspersky official blogHow websites snoop on your browsing history, and why fixing it took 20 yearsKASPERSKY.COM
7 MayBeware of phone scams demanding money for ‘missed jury duty’When we get the call, it’s our legal responsibility to attend jury service. But sometimes that call won’t come from the courts – it will be a scammer.WELIVESECURITY.COM