63Articles
7Categories
2025-05-09Date
🐛 COMMON VULNERABILITIES AND EXPOSURES 4[−]
9 MayChinese Hackers Exploit SAP RCE Flaw CVE-2025-31324, Deploy Golang-Based SuperShellA China-linked unnamed threat actor dubbed Chaya_004 has been observed exploiting a recently disclosed security flaw in SAP NetWeaver. Forescout Vedere Labs, in a report published Thursday, said it uncovered a malicious infrastructure likely associated with the hacking group weap…THEHACKERNEWS.COM
9 MayFBI warns that end of life devices are being actively targeted by threat actorsThe FBI is warning that cybercriminals are exploiting end-of-life (EOL) routers that are no longer being patched by manufacturers. Specifically, the “5Socks” and “Anyproxy” criminal networks are using publicly available exploits and injecting persistent malware to gain entry to o…CSOONLINE.COM
9 MayCisco patches max-severity flaw allowing arbitrary command executionCisco ( Nasdaq:CSCO ) is urging customers to patch for a maximum-severity flaw affecting its IOS XE Software for Wireless controllers. The flaw, tracked as CVE-2025-20188, received a severity rating of CVSS 10/10 because of its high exploitability and the ability to allow arbitra…CSOONLINE.COM
9 May KEVCVE funding crisis offers chance for vulnerability remediation rethinkA recent funding crisis involving the Common Vulnerabilities and Exposures (CVE) program sent a wave of panic through the cybersecurity community, raising questions among security professionals about how the potential dissolution of the program would impact their approaches to se…CSOONLINE.COM
⚠️ VULNERABILITY DISCLOSURE 14[−]
9 MayCritical Cybersecurity Breaches: OneDrive Default Settings, PowerSchool Ransom, and DOGE Staffer CompromisesIn this episode of Cybersecurity Today, host Jim Love discusses recent cybersecurity breaches and vulnerabilities. Key topics include a security flaw in the new default setting of Microsoft OneDrive, a ransom incident involving PowerSchool that compromised student data, and the b…CYBERSECURITYTODAY.LIBSYN.COM
9 MayAscension says recent data breach affects over 430,000 patientsAscension, one of the largest private healthcare systems in the United States, has revealed that the personal and healthcare information of over 430,000 patients was exposed in a data breach disclosed last month. [...]BLEEPINGCOMPUTER.COM
9 MayPolice dismantles botnet selling hacked routers as residential proxiesLaw enforcement authorities have dismantled a botnet that infected thousands of routers over the last 20 years to build two networks of residential proxies known as Anyproxy and 5socks. [...]BLEEPINGCOMPUTER.COM
9 MayChinese hackers behind attacks targeting SAP NetWeaver serversForescout Vedere Labs security researchers have linked ongoing attacks targeting a maximum severity vulnerability impacting SAP NetWeaver instances to a Chinese threat actor. [...]BLEEPINGCOMPUTER.COM
9 MaySAP Zero-Day Targeted Since January, Many Sectors ImpactedHundreds of SAP NetWeaver instances hacked via a zero-day that allows remote code execution, not only arbitrary file uploads, as initially believed. The post SAP Zero-Day Targeted Since January, Many Sectors Impacted appeared first on SecurityWeek .SECURITYWEEK.COM
9 MayBREAKING: 7,000-Device Proxy Botnet Using IoT, EoL Systems Dismantled in U.S. - Dutch OperationA joint law enforcement operation undertaken by Dutch and U.S. authorities has dismantled a criminal proxy network that's powered by thousands of infected Internet of Things (IoT) and end-of-life (EoL) devices, enlisting them into a botnet for providing anonymity to malicious act…THEHACKERNEWS.COM
9 MayMalicious npm Packages Infect 3,200+ Cursor Users With Backdoor, Steal CredentialsCybersecurity researchers have flagged three malicious npm packages that are designed to target the Apple macOS version of Cursor, a popular artificial intelligence (AI)-powered source code editor. "Disguised as developer tools offering 'the cheapest Cursor API,' these packages s…THEHACKERNEWS.COM
9 MayBeyond Vulnerability Management – Can You CVE What I CVE?The Vulnerability Treadmill The reactive nature of vulnerability management, combined with delays from policy and process, strains security teams. Capacity is limited and patching everything immediately is a struggle. Our Vulnerability Operation Center (VOC) dataset analysis iden…THEHACKERNEWS.COM
9 MayFirewalls may soon need an upgrade as legacy tools fail at AI securityCybersecurity engineers are developing a new breed of security tools designed specifically to sit between users and AI models, inspecting not just traffic patterns but intent and context as well. Akamai showcased its Firewall for AI at RSA 2025 as one of such tools that helped fl…CSOONLINE.COM
9 MayWhat is CTEM? Continuous visibility for identifying real-time threatsWhat is CTEM? Continuous threat exposure management (CTEM) is a security approach that helps companies to continuously identify and manage threats in their IT environment. The framework shifts the focus from scheduled scans to an event-driven system that assesses risks in real-ti…CSOONLINE.COM
9 MayMicrosoft OneDrive move may facilitate accidental sensitive file exfiltrationMicrosoft’s ( Nasdaq:MSFT ) upcoming OneDrive sync change will give enterprise users an easy way to sync both their personal and corporate OneDrive accounts on business devices. But cybersecurity officials do not want to make syncing easier, as it can create lots of security and …CSOONLINE.COM
9 May„CISOs sprechen heute die Sprache des Business“srcset="https://b2b-contenthub.com/wp-content/uploads/2025/05/NickGodfrey8975_16hi.jpg?quality=50&strip=all 4256w, https://b2b-contenthub.com/wp-content/uploads/2025/05/NickGodfrey8975_16hi.jpg?resize=300%2C168&quality=50&strip=all 300w, https://b2b-contenthub.com/wp-…CSOONLINE.COM
9 MaySAP Zero-Day Targeted Since January, Many Sectors Impactedsubmitted by kid to cybersecurity 8 points | 2 comments https://www.securityweek.com/sap-zero-day-targeted-since-january-many-sectors-impacted/SH.ITJUST.WORKS
9 MayLegacy Login in Microsoft Entra ID Exploited to Breach Cloud Accountssubmitted by kid to cybersecurity 15 points | 0 comments https://hackread.com/legacy-login-microsoft-entra-id-breach-cloud-accounts/SH.ITJUST.WORKS
📢 SECURITY ADVISORIES 2[−]
9 MayIs State-Level Cyber Defense a Bad Idea?Is decentralizing cyber defense a smart move or a national security risk? 💻 In this short, cybersecurity experts Doug White, Lee Neely, and Bill Swearingen weigh in on whether states should take cyber matters into their own hands—or leave it to federal agencies like the NSA and C…YOUTUBE.COM
9 MayMaritime Cybersecurity: Threats & Regulations LoomThis review summarizes the key insights shared during the webinar held on April 9th, which featured maritime cybersecurity experts discussing the growing challenges facing ports, logistics operations, and global supply chains.TRENDMICRO.COM
🔥 INCIDENT REPORTING 14[−]
9 MayIn Other News: India-Pakistan Cyberattacks, Radware Vulnerabilities, xAI LeakNoteworthy stories that might have slipped under the radar: surge in cyberattacks between India and Pakistan, Radware cloud WAF vulnerabilities, xAI key leak. The post In Other News: India-Pakistan Cyberattacks, Radware Vulnerabilities, xAI Leak appeared first on SecurityWeek .SECURITYWEEK.COM
9 MayPopular Scraping Tool’s NPM Package Compromised in Supply Chain AttackSupply chain attack compromises the popular rand-user-agent NPM package to deploy and activate a backdoor. The post Popular Scraping Tool’s NPM Package Compromised in Supply Chain Attack appeared first on SecurityWeek .SECURITYWEEK.COM
9 May160,000 Impacted by Valsoft Data BreachVMS firm Valsoft Corporation says the personal information of over 160,000 people was compromised in a February 2025 data breach. The post 160,000 Impacted by Valsoft Data Breach appeared first on SecurityWeek .SECURITYWEEK.COM
9 MayCompany and Personal Data Compromised in Recent Insight Partners HackVC firm Insight Partners is informing partners and employees that their information was exposed in the January 2025 cyberattack. The post Company and Personal Data Compromised in Recent Insight Partners Hack appeared first on SecurityWeek .SECURITYWEEK.COM
9 MayLockBit Ransomware Admin Panel Hacked, Leaks Reveal Inside DetailsPrivate messages, Bitcoin addresses, victim data, and attacker information were leaked after someone hacked a LockBit admin panel. The post LockBit Ransomware Admin Panel Hacked, Leaks Reveal Inside Details appeared first on SecurityWeek .SECURITYWEEK.COM
9 MayFBI and Dutch police seize and shut down botnet of hacked routersU.S. authorities indicted three Russians and one Kazakhstan national for hacking and selling access to a botnet made of vulnerable internet-connected devices.TECHCRUNCH.COM
9 MayLockBit ransomware gang breached, secrets exposedOh dear, what a shame, never mind. Read more in my article on the Tripwire State of Security blog.TRIPWIRE.COM
9 MayDDoS-Attacken auf deutsche StädteHacker haben die Webseiten von mehreren deutschen Städten mit DDoS-Attacken lahmgelegt. Wirestock Creators – shutterstock.com Am 25. April 2025 kämpfte die Stadt Nürnberg mit einem Ausfall ihrer Online-Dienste. Ursache war eine sogenannte DDoS -Attacke (Distributed Denial of Serv…CSOONLINE.COM
9 MayAI Can Skyrocket Your Business… or Sink It!AI is revolutionizing businesses, but it comes with a massive risk. 🚨 While it can skyrocket growth, a single data breach could cripple an entire company overnight. Matthew Alderman and Jason discuss how failing to protect core data could lead to losing intellectual property, pri…YOUTUBE.COM
9 MayFake Employees? The Cybercrime You Didn’t See Coming!Companies are hiring employees who don’t even exist! 😱 Cybercriminals are using AI deepfakes to fake job interviews, get hired, and stay on payroll without ever showing up to work. But it’s not just about free money—some are even planting ransomware or stealing sensitive data! Ho…YOUTUBE.COM
9 MayKickidler employee monitoring software abused in ransomware attackssubmitted by cm0002 to cybersecurity 8 points | 0 comments https://www.bleepingcomputer.com/news/security/kickidler-employee-monitoring-software-abused-in-ransomware-attacks/INFOSEC.PUB
9 MayLockBit hacked: What does the leaked data show? - Help Net Securitysubmitted by kid to cybersecurity 12 points | 0 comments https://www.helpnetsecurity.com/2025/05/09/lockbit-hacked-data-leaked/SH.ITJUST.WORKS
9 MayEducation giant Pearson hit by cyberattack exposing customer datasubmitted by kid to cybersecurity 41 points | 3 comments https://www.bleepingcomputer.com/news/security/education-giant-pearson-hit-by-cyberattack-exposing-customer-data/SH.ITJUST.WORKS
9 MayKickidler employee monitoring software abused in ransomware attackssubmitted by kid to cybersecurity 3 points | 1 comments https://www.bleepingcomputer.com/news/security/kickidler-employee-monitoring-software-abused-in-ransomware-attacks/SH.ITJUST.WORKS
🕵️ THREAT INTELLIGENCE 17[−]
9 MayFriday Squid Blogging: Japanese Divers Video Giant SquidThe video is really amazing . As usual, you can also use this squid post to talk about the security stories in the news that I haven’t covered.SCHNEIER.COM
9 MayLumma Stealer, coming and goingThe high-profile information stealer switches up its TTPs, but keeps the CAPTCHA tactic; we take a deep diveSOPHOS.COM
9 MayMalicious NPM Packages Target Cursor AI’s macOS UsersThree NPM packages posing as developer tools for Cursor AI code editor’s macOS version contain a backdoor. The post Malicious NPM Packages Target Cursor AI’s macOS Users appeared first on SecurityWeek .SECURITYWEEK.COM
9 MayRising Tides: Kelley Misata on Bringing Cybersecurity to NonprofitsSightline Security’s founder explains why nonprofits need cybersecurity solutions tailored to their unique missions — and why vendors need to listen. The post Rising Tides: Kelley Misata on Bringing Cybersecurity to Nonprofits appeared first on SecurityWeek .SECURITYWEEK.COM
9 MayOtterCookie v4 Adds VM Detection and Chrome, MetaMask Credential Theft CapabilitiesThe North Korean threat actors behind the Contagious Interview campaign have been observed using updated versions of a cross-platform malware called OtterCookie with capabilities to steal credentials from web browsers and other files. NTT Security Holdings, which detailed the new…THEHACKERNEWS.COM
9 MayISC Stormcast For Friday, May 9th, 2025 https://isc.sans.edu/podcastdetail/9444, (Fri, May 9th)(c) SANS Internet Storm Center. https://isc.sans.edu Creative Commons Attribution-Noncommercial 3.0 United States License.ISC.SANS.EDU
9 MayYou Are Still Vulnerable to Password Attacks When Using PasskeysJust because you’re using a passkey doesn’t mean your password is gone.KNOWBE4.COM
9 MaySudo watch, AI Dreams, Kickidler, Powershool, Old Man Router, PSMU, Aaran Leyland... - SWN #475Sudo watch this show, Hallucinations, Kickidler, Powershool redux, Old Man Router, PSMU, Aaran Leyland, and More, on this edition of the Security Weekly News. Visit https://www.securityweekly.com/swn for all the latest episodes! Show Notes: https://securityweekly.com/swn-475YOUTUBE.COM
9 MayNvidia RTX 5090 can crack an 8-digit passcode in just 3 hours — password cracking benchmarks show tremendous performancesubmitted by cm0002 to cybersecurity 49 points | 9 comments https://www.tomshardware.com/pc-components/gpus/nvidia-rtx-5090-can-crack-an-8-digit-passcode-in-just-3-hoursINFOSEC.PUB
9 MaySupply chain attack hits npm package with 45,000 weekly downloadssubmitted by cm0002 to cybersecurity 13 points | 2 comments https://www.bleepingcomputer.com/news/security/supply-chain-attack-hits-npm-package-with-45-000-weekly-downloads/INFOSEC.PUB
9 MayOff-Topic Fridaysubmitted by shellsharks to cybersecurity 5 points | 0 comments Wanna chat about something non-infosec amongst those of us who frequent /c/cybersecurity? Here’s your chance! (Keep things civil & respectful please)INFOSEC.PUB
9 MayOWASP Stockholm Meetup April 2025submitted by ashar to security_cpe 1 points | 0 comments OWASP Stockholm Meetup April 2025 Securing the CI in CI/CD Risks & Threats to LLMsINFOSEC.PUB
9 MayRussia-linked ColdRiver used LostKeys malware in recent attackssubmitted by kid to cybersecurity 4 points | 0 comments https://securityaffairs.com/177638/apt/russia-linked-coldriver-used-lostkeys-malware-in-recent-attacks.htmlSH.ITJUST.WORKS
9 MayDOGE software engineer’s computer infected by info-stealing malwaresubmitted by kid to cybersecurity 213 points | 19 comments https://arstechnica.com/security/2025/05/doge-software-engineers-computer-infected-by-info-stealing-malware/SH.ITJUST.WORKS
9 MaySpam campaign targeting Brazil abuses Remote Monitoring and Management toolssubmitted by kid to cybersecurity 4 points | 0 comments https://blog.talosintelligence.com/spam-campaign-targeting-brazil-abuses-rmm-tools/SH.ITJUST.WORKS
9 MayAttacks surge against antiquated routers, FBI warnssubmitted by kid to cybersecurity 46 points | 2 comments https://www.scworld.com/news/attacks-surge-against-antiquated-routers-fbi-warnsSH.ITJUST.WORKS
9 MayWide World of Cyber: How state adversaries attack security vendorsIn this edition of the Wide World of Cyber podcast Patrick Gray talks to SentinelOne’s Steve Stone and Alex Stamos about how foreign adversaries are targeting security vendors, including them. From North Korean IT workers to Chinese supply chain attacks, SentinelOne and its compe…RISKY.BIZ
🌐 CYBER THREAT LANDSCAPE 2[−]
9 MayFlorida bill requiring encryption backdoors for social media accounts has failedThe bill would have required social media companies create encryption backdoors to allow access to users' private information.TECHCRUNCH.COM
9 MayIf AI Builds It… Who Takes the Fall?What happens when artificial intelligence writes bad code? In this clip, cybersecurity experts debate if developers can dodge responsibility when AI causes bugs or even serious harm. Using a powerful analogy about collapsing decks and liability, they raise the question: if AI bui…YOUTUBE.COM
📡 INFOSEC NEWS 10[−]
9 MayGoogle Chrome to use on-device AI to detect tech support scamsGoogle is implementing a new Chrome security feature that uses the built-in 'Gemini Nano' large-language model (LLM) to detect and block tech support scams while browsing the web. [...]BLEEPINGCOMPUTER.COM
9 MayGermany takes down eXch cryptocurrency exchange, seizes serversThe Federal police in Germany (BKA) seized the server infrastructure and shut down the 'eXch' cryptocurrency exchange platform for alleged money laundering cybercrime proceeds. [...]BLEEPINGCOMPUTER.COM
9 MayInitial Access Brokers Target Brazil Execs via NF-e Spam and Legit RMM TrialsCybersecurity researchers are warning of a new campaign that's targeting Portuguese-speaking users in Brazil with trial versions of commercial remote monitoring and management (RMM) software since January 2025. "The spam message uses the Brazilian electronic invoice system, NF-e,…THEHACKERNEWS.COM
9 MayDeploying AI Agents? Learn to Secure Them Before Hackers Strike Your BusinessAI agents are changing the way businesses work. They can answer questions, automate tasks, and create better user experiences. But with this power comes new risks — like data leaks, identity theft, and malicious misuse. If your company is exploring or already using AI agents, you…THEHACKERNEWS.COM
9 MayGoogle Rolls Out On-Device AI Protections to Detect Scams in Chrome and AndroidGoogle on Thursday announced it's rolling out new artificial intelligence (AI)-powered countermeasures to combat scams across Chrome, Search, and Android. The tech giant said it will begin using Gemini Nano, its on-device large language model (LLM), to improve Safe Browsing in Ch…THEHACKERNEWS.COM
9 MayHackers hit deportation airline GlobalX, leak flight manifests, and leave an unsubtle message for “Donnie” TrumpGlobalX Airlines, a charter airline being used by the US government for deportation flights, has been attacked by hacktivists who have made off with what they claim are detailed flight records and passenger manifests. Read more in my article for the Hot for Security blog.BITDEFENDER.COM
9 MayCongratulations to the Top MSRC 2025 Q1 Security Researchers!Congratulations to all the researchers recognized in this quarter’s Microsoft Researcher Recognition Program leaderboard! Thank you to everyone for your hard work and continued partnership to secure customers. The top three researchers of the 2025 Q1 Security Researcher Leaderboa…MSRC.MICROSOFT.COM
9 MayShould You Be Scared of AI? Or Just the Price Tag?As AI hype surges, cybersecurity pros are asking the real question—is the tech scary, or is it the $7.9 trillion infrastructure bill that’s truly terrifying? In this quick breakdown, Doug White tackles the McKinsey forecast and pokes fun at the massive financial assumptions surro…YOUTUBE.COM
9 MayThis Rant Just Ended the OS Debate Forever ⚔️When cybersecurity experts start roasting every operating system, you know it's about to get real. Sam casually drops a legendary line straight from internet lore, and the whole crew spirals into one of the most brutally honest takes on OS, programming languages, and web framewor…YOUTUBE.COM
9 MayCatching a phish with many facesHere’s a brief dive into the murky waters of shape-shifting attacks that leverage dedicated phishing kits to auto-generate customized login pages on the flyWELIVESECURITY.COM