113Articles
8Categories
2025-05-15Date
🚨 CISA KEV 3[−]
15 May KEVU.S. CISA adds a Fortinet flaw to its Known Exploited Vulnerabilities catalogsubmitted by kid to cybersecurity 1 points | 0 comments https://securityaffairs.com/177862/hacking/u-s-cisa-adds-a-fortinet-flaw-to-its-known-exploited-vulnerabilities-catalog.htmlSH.ITJUST.WORKS
15 May KEVU.S. CISA adds Microsoft Windows flaws to its Known Exploited Vulnerabilities catalogsubmitted by kid to cybersecurity 1 points | 0 comments https://securityaffairs.com/177856/security/u-s-cisa-adds-microsoft-windows-flaws-to-its-known-exploited-vulnerabilities-catalog.htmlSH.ITJUST.WORKS
15 May KEVCISA Adds Three Known Exploited Vulnerabilities to CatalogCISA has added three new vulnerabilities to its Known Exploited Vulnerabilities Catalog , based on evidence of active exploitation.  CVE-2024-12987 DrayTek Vigor Routers OS Command Injection Vulnerability CVE-2025-4664 Google Chromium Loader Insufficient Policy Enforcement V…CISA.GOV
🐛 COMMON VULNERABILITIES AND EXPOSURES 12[−]
15 MayWeb Scanning SonicWall for CVE-2021-20016 - Update, (Wed, May 14th)I published on the 29 Apr 2025 a diary [ 1 ] on scanning activity looking for SonicWall and since this publication this activity has grown 10-fold. Over the past 14 days, several BACS students have reported activity related to SonicWall scans all related for the same 2 …ISC.SANS.EDU
15 May KEVGoogle Chrome Zero-Day Vulnerability (CVE-2025-4664) Actively Exploited in The WildGoogle has rolled out a fresh Stable Channel update for the Chrome browser across desktop platforms, including Windows, Mac, and Linux. This update elevates Chrome to version 136.0.7103.113/.114 for Windows and Mac, and 136.0.7103.113 for Linux. The deployment will occur graduall…GBHACKERS.COM
15 MayNew Chrome Vulnerability Enables Cross-Origin Data Leak via Loader Referrer PolicyGoogle on Wednesday released updates to address four security issues in its Chrome web browser, including one for which it said there exists an exploit in the wild. The high-severity vulnerability, tracked as CVE-2025-4664 (CVSS score: 4.3), has been characterized as a case of in…THEHACKERNEWS.COM
15 MayCritical BitLocker Flaw Exploited in Minutes: Bitpixie Vulnerability Proof of Concept UnveiledSecurity researchers have demonstrated a non-invasive method to bypass Microsoft BitLocker encryption on Windows devices in just five minutes without physically modifying the hardware. The Bitpixie vulnerability (CVE-2023-21563) allows attackers with brief physical access to extr…GBHACKERS.COM
15 MayStealth RAT uses a PowerShell loader for fileless attacks>Threat actors have been spotted using a PowerShell-based shellcode loader to stealthily deploy Remcos RAT, a popular espionage-ready tool in line with a broader shift toward fileless techniques . As discovered by Qualys, the campaign executes a number of steps to phish an obfusc…CSOONLINE.COM
15 MayAlternatives to Microsoft Outlook webmail come under attack in EuropeCISOs need to ensure that web email clients and browsers are kept up to date following the discovery of cross site scripting attacks on organizations running webmail clients such as Roundcube, Horde, MDaemon, and Zimbra. The alert came today from researchers at ESET, who, after s…CSOONLINE.COM
15 MayNode.js Vulnerability Enables Attackers to Crash Processes and Disrupt ServicesNode.js project has released a critical security update addressing several vulnerabilities that could allow attackers to crash server processes and disrupt critical services. The security fixes, announced on May 14, 2025 by Node.js maintainer RafaelGSS, affect multiple release li…GBHACKERS.COM
15 MayCISA Alerts on Active Exploitation of Zero-Day Vulnerability in Multiple Fortinet ProductsThe U.S. Cybersecurity and Infrastructure Security Agency (CISA) has issued an urgent warning regarding five zero-day vulnerabilities affecting multiple Fortinet products, after evidence emerged of active exploitation in the wild. The vulnerabilities, tracked as CVE-2025-32756, i…GBHACKERS.COM
15 MayGoogle patches Chrome vulnerability used for account takeover and MFA bypassChrome users are advised to update their browser immediately to fix a critical vulnerability that is being exploited to launch account takeover attacks. In some environments, this could even give attackers the ability to bypass multi-factor authentication (MFA). The recently-repo…CSOONLINE.COM
15 MayChromium: CVE-2025-4609 Incorrect handle provided in unspecified circumstances in MojoThis CVE was assigned by Chrome. Microsoft Edge (Chromium-based) ingests Chromium, which addresses this vulnerability. Please see [Google Chrome Releases](https://chromereleases.googleblog.com/2025) for more information.MSRC.MICROSOFT.COM
15 MayChromium: CVE-2025-4664 Insufficient policy enforcement in LoaderThis CVE was assigned by Chrome. Microsoft Edge (Chromium-based) ingests Chromium, which addresses this vulnerability. Please see [Google Chrome Releases](https://chromereleases.googleblog.com/2025) for more information. Google is aware of reports that an exploit for CVE-2025-466…MSRC.MICROSOFT.COM
⚠️ VULNERABILITY DISCLOSURE 36[−]
15 MayDie acht wichtigsten SicherheitsmetrikenJe schneller Schwachstellen entdeckt werden, desto geringer der Schaden. Das zahlt sich für alle aus. Pressmaster – shutterstock.com Kennzahlen und Metriken wie KPIs sind essenziell, um die Effektivität der Cyberabwehr zu bewerten, da sie Schwachstellen, Bedrohungen und Reaktions…CSOONLINE.COM
15 MayGoogle fixes high severity Chrome flaw with public exploitGoogle has released emergency security updates to patch a high-severity Chrome vulnerability that has a public exploit and can let attackers hijack accounts. [...]BLEEPINGCOMPUTER.COM
15 MayChrome 136 Update Patches Vulnerability With ‘Exploit in the Wild’Google has rolled out a Chrome 136 update that resolves a high-severity vulnerability for which a public exploit exists. The post Chrome 136 Update Patches Vulnerability With ‘Exploit in the Wild’ appeared first on SecurityWeek .SECURITYWEEK.COM
15 MayHow phones get hacked: 7 common attack methods explainedThe smartphone revolution was supposed to provide a second chance for the tech industry to roll out a secure computing platform. These new devices were purported to be locked down and immune to malware , unlike buggy PCs and vulnerable servers. But it turns out that phones are st…CSOONLINE.COM
15 May‘Aggressive, creative’ hackers behind UK breaches now eyeing US retailersGoogle has warned that a hacking group linked to “Scattered Spider,” which is believed to be behind the attack on UK retailer Marks & Spencer (M&S), is now targeting similar companies in the US. Earlier this week, M&S said that a cyberattack reported in April, which h…CSOONLINE.COM
15 MayRansomware Groups, Chinese APTs Exploit Recent SAP NetWeaver FlawsTwo ransomware groups and several Chinese APTs have been exploiting two recent SAP NetWeaver vulnerabilities. The post Ransomware Groups, Chinese APTs Exploit Recent SAP NetWeaver Flaws appeared first on SecurityWeek .SECURITYWEEK.COM
15 May5 BCDR Essentials for Effective Ransomware DefenseRansomware has evolved into a deceptive, highly coordinated and dangerously sophisticated threat capable of crippling organizations of any size. Cybercriminals now exploit even legitimate IT tools to infiltrate networks and launch ransomware attacks. In a chilling example, Micros…THEHACKERNEWS.COM
15 MayRussia-Linked APT28 Exploited MDaemon Zero-Day to Hack Government Webmail ServersA Russia-linked threat actor has been attributed to a cyber espionage operation targeting webmail servers such as Roundcube, Horde, MDaemon, and Zimbra via cross-site scripting (XSS) vulnerabilities, including a then-zero-day in MDaemon, according to new findings from ESET. The a…THEHACKERNEWS.COM
15 MayData on sale: Trump administration withdraws data broker oversight proposalThe US Consumer Financial Protection Bureau has withdrawn a proposed rule that would have restricted data brokers from selling US citizens’ personal and financial information. The decision, announced Wednesday in the Federal Register, marks a significant reversal in consumer priv…CSOONLINE.COM
15 MayPen Testing for Compliance Only? It's Time to Change Your ApproachImagine this: Your organization completed its annual penetration test in January, earning high marks for security compliance. In February, your development team deployed a routine software update. By April, attackers had already exploited a vulnerability introduced in that Februa…THEHACKERNEWS.COM
15 MayCybersecurity incident forces largest US steelmaker to take some operations offlinesubmitted by kid to cybersecurity 1 points | 0 comments https://therecord.media/cyber-incident-forces-nucor-steel-to-take-systems-offlineSH.ITJUST.WORKS
15 MayChihuahua Stealer Exploits Google Drive Document to Harvest Browser Login CredentialsA .NET-based infostealer named “Chihuahua Stealer” has been discovered using sophisticated techniques to infiltrate systems and exfiltrate sensitive data. This malware, which blends common malware strategies with unusually advanced features, was first highlighted thro…GBHACKERS.COM
15 MayProduction at Steelmaker Nucor Disrupted by CyberattackAmerican steel giant Nucor on Wednesday disclosed a cybersecurity incident that bears the hallmarks of a ransomware attack. The post Production at Steelmaker Nucor Disrupted by Cyberattack appeared first on SecurityWeek .SECURITYWEEK.COM
15 MayGoogle fixes high severity Chrome flaw with public exploitsubmitted by kid to cybersecurity 1 points | 0 comments https://www.bleepingcomputer.com/news/security/google-fixes-high-severity-chrome-flaw-with-public-exploit/SH.ITJUST.WORKS
15 MayWindows Defender Application Control Bypassed Through Browser Exploit TechniquesSecurity researchers from the X-Force Red Adversary Simulation team have uncovered a novel method to bypass Windows Defender Application Control (WDAC), a robust Windows security feature designed to prevent unauthorized code execution through strict application whitelisting polic…GBHACKERS.COM
15 MayCoinbase data breach exposes customer info and government IDsCoinbase, a cryptocurrency exchange with over 100 million customers, has disclosed that cybercriminals working with rogue support agents stole customer data and demanded a $20 million ransom not to publish the stolen information. [...]BLEEPINGCOMPUTER.COM
15 MayRussian Hackers Exploit XSS Vulnerabilities to Inject Malicious Code into Email ServersA sophisticated cyberespionage campaign, dubbed Operation RoundPress, has been uncovered by cybersecurity researchers at ESET. Attributed with medium confidence to the Russian-linked Sednit group-also known as APT28, Fancy Bear, and Forest Blizzard-this operation targets high-val…GBHACKERS.COM
15 MayEnisa Launched New European Vulnerability Database to Strengthen CybersecurityEuropean Union Agency for Cybersecurity (ENISA) has officially launched the European Vulnerability Database (EUVD), a groundbreaking platform designed to enhance digital security across the EU. Developed in accordance with the NIS2 Directive, the database is now operational and a…GBHACKERS.COM
15 MayGUESST ESSAY: Cybercrime for hire: small businesses are the new bullseye of the Dark WebSmall businesses make up 90% of all companies worldwide and account for half of global GDP. Yet despite their importance, many lack the cybersecurity expertise and resources to fend off a rising tide of digital threats. Related: Protecting lateral networks … (more…) The pos…LASTWATCHDOG.COM
15 MayNucor Steel Manufacturer Halts Production After CyberattackNucor Corporation, one of North America’s largest steel producers, has temporarily halted production at multiple facilities following a cybersecurity breach that compromised critical operational systems. The incident, disclosed in a May 15, 2025, SEC filing, marks one of the most…GBHACKERS.COM
15 MayCoinbase Agents Bribed, Data of ~1% Users Leaked; $20M Extortion Attempt FailsCryptocurrency exchange Coinbase has disclosed that unknown cyber actors broke into its systems and stole account data for a small subset of its customers. "Criminals targeted our customer support agents overseas," the company said in a statement. "They used cash offers to convin…THEHACKERNEWS.COM
15 MayWindows 11 and Red Hat Linux hacked on first day of Pwn2OwnOn the first day of Pwn2Own Berlin 2025, security researchers were awarded $260,000 after successfully demonstrating zero-day exploits for Windows 11, Red Hat Linux, Docker Desktop, and Oracle VirtualBox. [...]BLEEPINGCOMPUTER.COM
15 MayIntruder vs. Acunetix vs. Attaxion: Comparing Vulnerability Management SolutionsThe vulnerability management market is projected to reach US$24.08 billion by 2030, with numerous vendors offering seemingly different solutions to the same problem. How does an organization choose the right vulnerability management tool for its needs? Today, we compare three too…GBHACKERS.COM
15 MayHackers Exploit Google Services to Send Malicious Law Enforcement RequestsCybersecurity researchers have uncovered a sophisticated phishing campaign where malicious actors exploit Google services to dispatch fraudulent law enforcement requests. This audacious scheme leverages the trust associated with Google’s infrastructure, specifically Google Forms …GBHACKERS.COM
15 MayThreat Actors Exploit Open Source Packages to Deploy Malware in Supply Chain AttacksThe Socket Threat Research Team has uncovered a surge in supply chain attacks where threat actors weaponize open source software libraries to deliver malicious payloads such as infostealers, remote shells, and cryptocurrency drainers. With modern development heavily reliant on ec…GBHACKERS.COM
15 MayRecord-Breaking $27 Billion Black Market ‘Haowang Guarantee’ Deals Conducted Behind Closed DoorsMajor victory against online crime, two of the world’s largest illicit marketplaces-Huione Guarantee (also known as “Haowang Guarantee”) and Xinbi Guarantee-were forced offline on May 13, 2025. These platforms collectively enabled over $35 billion in transactions, mostly in the s…GBHACKERS.COM
15 MayCISA Releases Twenty-Two Industrial Control Systems AdvisoriesCISA released twenty-two Industrial Control Systems (ICS) advisories on May 15, 2025. These advisories provide timely information about current security issues, vulnerabilities, and exploits surrounding ICS. ICSA-25-135-01 Siemens RUGGEDCOM APE1808 Devices ICSA-25-135-02 Siemens …CISA.GOV
15 May KEVCISA Alerts on Five Active Zero-Day Windows Vulnerabilities Being ExploitedCybersecurity professionals and network defenders, the U.S. Cybersecurity and Infrastructure Security Agency (CISA) has added five newly identified Windows 0-day vulnerabilities to its Known Exploited Vulnerabilities (KEV) catalog. These vulnerabilities, currently exploited in th…GBHACKERS.COM
15 MayMultiple Vulnerabilities in Ivanti Endpoint Manager Mobile Could Allow for Remote Code ExecutionMultiple vulnerabilities have been discovered in Ivanti Endpoint Manager Mobile, the most severe of which could allow for remote code execution. Ivanti Endpoint Manager Mobile (EPMM) is a unified endpoint management solution that enables organizations to securely manage and monit…CISECURITY.ORG
15 MayCoinbase Data Breach – Customers Personal Info, Government‑ID & Transaction Data ExposedCoinbase, the largest cryptocurrency exchange in the United States, has disclosed a significant cybersecurity incident that could cost the company up to $400 million. The breach, revealed in a regulatory filing and confirmed by company officials, stemmed from a sophisticated insi…GBHACKERS.COM
15 MayGovernment webmail hacked via XSS bugs in global spy campaignHackers are running a worldwide cyberespionage campaign dubbed 'RoundPress,' leveraging zero-day and n-day flaws in webmail servers to steal email from high-value government organizations. [...]BLEEPINGCOMPUTER.COM
15 MayRSA 2025: AI’s Promise vs. Security’s Past — A Reality Check”RSA 2025: AI’s Promise vs. Security’s Past — A Reality Check” Ah, RSA. That yearly theater (Carnival? Circus? Orgy? Got any better synonyms, Gemini?) of 44,000 people vaguely (hi salespeople!) related to cybersecurity … where the air is thick with buzzwords and the vendor halls e…MEDIUM.COM
15 MayRansomware in your CPU - PSW #874This week in the security news: * Android catches up to iOS with its own lockdown mode * Just in case, there is a new CVE foundation * Branch privilege injection attacks * My screen is vulnerable * The return of embedded devices to take over the world - 15 years later * Attackers…YOUTUBE.COM
15 MayAfter helping Russia on the ground North Korea targets Ukraine with cyberespionageNorth Korea’s involvement in the war in Ukraine extends beyond sending soldiers, munitions, and missiles to Russia , as cybersecurity researchers warn of recent cyberespionage campaigns against Ukrainian government entities by a known North Korean state-sponsored actor. “Proofpoi…CSOONLINE.COM
15 MayAndrei Tarasov: Inside the Journey of a Russian Hacker on the FBI’s Most Wanted ListOnce a key figure in the Angler exploit kit underworld, Tarasov’s life has unraveled into detention, paranoia, and an unwanted return to the Russia he publicly despised. The post Andrei Tarasov: Inside the Journey of a Russian Hacker on the FBI’s Most Wanted List appeared first o…SECURITYWEEK.COM
15 MayA Vulnerability in Google Chrome Could Allow for Arbitrary Code ExecutionA vulnerability has been discovered in Google Chrome which could allow for arbitrary code execution. Successful exploitation of this vulnerability could allow for arbitrary code execution in the context of the logged on user. Depending on the privileges associated with the user a…CISECURITY.ORG
📋 SECURITY BULLETINS 1[−]
15 MayXerox Launches April 2025 Security Patch for FreeFlow Print Server v2Xerox has launched its April 2025 Security Patch Update for the FreeFlow Print Server v2 running on Windows 10, addressing over 40 critical vulnerabilities while introducing stricter encryption protocols for secure file transfers. The update, detailed in Security Bulletin XRX25-0…GBHACKERS.COM
📢 SECURITY ADVISORIES 3[−]
15 MayAI-Generated LawOn April 14, Dubai’s ruler, Sheikh Mohammed bin Rashid Al Maktoum, announced that the United Arab Emirates would begin using artificial intelligence to help write its laws. A new Regulatory Intelligence Office would use the technology to “regularly suggest updatesR…SCHNEIER.COM
15 MayInterlock Ransomware Targeting Defense Contractors and Supply Chain NetworksThe Interlock Ransomware group has emerged as a significant adversary targeting defense contractors and their intricate supply chain networks. First identified in September 2024, Interlock has rapidly shifted from opportunistic attacks across sectors like healthcare and technolog…GBHACKERS.COM
15 MayBreachforums Boss to Pay $700k in Healthcare BreachIn what experts are calling a novel legal outcome, the 22-year-old former administrator of the cybercrime community Breachforums will forfeit nearly $700,000 to settle a civil lawsuit from a health insurance company whose customer data was posted for sale on the forum in 2023. Co…KREBSONSECURITY.COM
🔥 INCIDENT REPORTING 12[−]
15 MayAustralian Human Rights Commission Discloses Data BreachThe Australian Human Rights Commission says data submitted through the complaint form on its website was inadvertently exposed. The post Australian Human Rights Commission Discloses Data Breach appeared first on SecurityWeek .SECURITYWEEK.COM
15 MayCanadian Electric Utility Lists Customer Information Stolen by HackersNova Scotia Power says a wide range of personal and financial information was stolen in the recent cyberattack. The post Canadian Electric Utility Lists Customer Information Stolen by Hackers appeared first on SecurityWeek .SECURITYWEEK.COM
15 MayMalicious npm Package Leverages Unicode Steganography, Google Calendar as C2 DropperCybersecurity researchers have discovered a malicious package named "os-info-checker-es6" that disguises itself as an operating system information utility to stealthily drop a next-stage payload onto compromised systems. "This campaign employs clever Unicode-based steganography t…THEHACKERNEWS.COM
15 MayCoinbase says customers’ personal information stolen in data breachThe crypto exchange giant said the hacker bribed contractors and employees in support roles to steal data.TECHCRUNCH.COM
15 MayRansomware Enters ‘Post-Trust Ecosystem,’ NCA Cyber Expert Sayssubmitted by kid to cybersecurity 1 points | 0 comments https://www.infosecurity-magazine.com/news/ransomware-enters-posttrust/SH.ITJUST.WORKS
15 MayCustomer Data Compromised in Dior Cyber AttackLuxury fashion house Dior experienced a significant security incident when unauthorized external actors breached their customer database. According to the official notification, Dior immediately implemented containment protocols and engaged cybersecurity experts to investigate th…GBHACKERS.COM
15 MayThis Is Why You NEVER Pay CybercriminalsWhen PowerSchool got hit with a ransomware attack, they paid the ransom hoping to protect their customers. But cybercriminals don’t play fair. Instead of stopping, the hackers demanded more money—millions more. In this short, cybersecurity expert Doug White breaks down how paying…YOUTUBE.COM
15 MayHackers Steal Customers Banking Details in Nova Scotia Cyber AttackNova Scotia Power has confirmed that hackers infiltrated its IT infrastructure and exfiltrated sensitive customer data, including banking details from pre-authorized payment systems, in a cyberattack first detected on March 19, 2025. The energy provider revealed on May 14 that un…GBHACKERS.COM
15 MayNova Scotia Power confirms hackers stole customer data in cyberattackNova Scotia Power confirms it suffered a data breach after threat actors stole sensitive customer data in a cybersecurity incident discovered last month. [...]BLEEPINGCOMPUTER.COM
15 MayCoinbase data breach exposes customer info and government IDssubmitted by kid to cybersecurity 1 points | 0 comments https://www.bleepingcomputer.com/news/security/coinbase-discloses-breach-faces-up-to-400-million-in-losses/SH.ITJUST.WORKS
15 MayAre Your AirPlay Devices Safe? Probably Not…When cybersecurity expert Mike breaks down why AirPlay-enabled devices might be more vulnerable than we think, it's a serious wake-up call. From "use after free" bugs to memory safety flaws, this short exposes the risks hiding in plain sight. Especially for startups building conn…YOUTUBE.COM
15 MayDisney’s Most Bizarre Hack—From Inside Their Own TeamA former Disney employee goes rogue and pulls off one of the most bizarre internal hacks ever. After gaining access to multiple FTP servers, he changed menu items in Disney’s system—removing allergen warnings and replacing names with obscene language. What started as a tech tantr…YOUTUBE.COM
🕵️ THREAT INTELLIGENCE 31[−]
15 MayISC Stormcast For Thursday, May 15th, 2025 https://isc.sans.edu/podcastdetail/9452, (Thu, May 15th)(c) SANS Internet Storm Center. https://isc.sans.edu Creative Commons Attribution-Noncommercial 3.0 United States License.ISC.SANS.EDU
15 MayHacker nehmen Rüstungslieferanten der Ukraine ins VisierRussische Hacker greifen gezielt Rüstungsfirmen an, die die Ukraine mit Waffen versorgen. PeopleImages.com – Yuri A – Shutterstock.com Die berüchtigte russische Hackergruppe Fancy Bear hat gezielt Rüstungsfirmen angegriffen, die Waffen an die Ukraine liefern. Das geht aus einer a…CSOONLINE.COM
15 MayThe most effective phishing QR code is a new drug and alcohol policy supposedly from HRPhishing emails that appear to be internal and come from the IT or HR department are the emails that trick the most users, according to KnowBe4’s Q1 2025 Phishing Report . Over 60% of emails that tricked users into clicking mentioned an internal team and almost 50% specifically m…CSOONLINE.COM
15 MayChinese Hackers Hit Drone Sector in Supply Chain AttacksThe China-linked hacking group Earth Ammit has launched multi-wave attacks in Taiwan and South Korea to disrupt the drone sector. The post Chinese Hackers Hit Drone Sector in Supply Chain Attacks appeared first on SecurityWeek .SECURITYWEEK.COM
15 MayBeyond the kill chain: What cybercriminals do with their money (Part 5)In the last of our five-part series, Sophos X-Ops explores the implications and opportunities arising from threat actors’ involvement in real-world industries and crimesSOPHOS.COM
15 MayBeyond the kill chain: What cybercriminals do with their money (Part 4)In the fourth of our five-part series, Sophos X-Ops explores threat actors’ real-world criminal business interestsSOPHOS.COM
15 MayBeyond the kill chain: What cybercriminals do with their money (Part 3)In the third of our five-part series, Sophos X-Ops explores the more legally and ethically dubious business interests of financially motivated threat actorsSOPHOS.COM
15 MayBeyond the kill chain: What cybercriminals do with their money (Part 2)In the second of our five-part series, Sophos X-Ops investigates the so-called ‘white’ (legitimate) business interests of threat actorsSOPHOS.COM
15 MayBeyond the kill chain: What cybercriminals do with their money (Part 1)Sophos X-Ops investigates what financially motivated threat actors invest their ill-gotten profits in, once the dust has settledSOPHOS.COM
15 MayProofpoint to Acquire Hornetsecurity in Reported $1 Billion DealEnterprise cybersecurity giant Proofpoint is buying Germany-based Microsoft 365 security solutions provider Hornetsecurity. The post Proofpoint to Acquire Hornetsecurity in Reported $1 Billion Deal appeared first on SecurityWeek .SECURITYWEEK.COM
15 MayGoogle says hackers behind UK retail cyber campaign now also targeting USsubmitted by kid to cybersecurity 1 points | 0 comments https://therecord.media/scattered-spider-suspected-retail-hackers-google-alertSH.ITJUST.WORKS
15 MayDarkCloud Stealer Employs AutoIt to Evade Detection and Steal Login CredentialsUnit 42 researchers from Palo Alto Networks have uncovered a series of attacks in January 2025 involving the DarkCloud Stealer malware. This infostealer, first observed in 2022, has evolved with new tactics to bypass traditional detection mechanisms. By leveraging AutoIt scriptin…GBHACKERS.COM
15 MayTransferLoader Malware Enables Attackers to Execute Arbitrary Commands on Infected SystemsA formidable new malware loader, dubbed TransferLoader, has emerged as a significant cybersecurity threat, as detailed in a recent report by Zscaler ThreatLabz. Active since at least February 2025, this sophisticated malware has been observed deploying multiple components, includ…GBHACKERS.COM
15 MayWeaponized Google Calendar Invites Deliver Malicious Payload Using a Single CharacterSecurity researchers have unearthed a sophisticated malware distribution method leveraging Google Calendar invites to deliver malicious payloads through seemingly innocuous links. The attack, centered around a deceptive npm package named os-info-checker-es6, showcases an unpreced…GBHACKERS.COM
15 MayU.S. Officials Probe Rogue Communication Devices in Solar Power InvertersU.S. energy officials are intensifying scrutiny of Chinese-manufactured power inverters, critical components in renewable energy systems, after discovering undocumented communication equipment embedded within them. These inverters, predominantly produced in China, are essential f…GBHACKERS.COM
15 MayHTTPBot Botnet Aggressively Spreads to Launch Attacks on Windows Systemssubmitted by kid to cybersecurity 1 points | 0 comments https://cyberpress.org/httpbot-botnet-aggressively-spreads-to-launch-attacks/SH.ITJUST.WORKS
15 MayAI transforms cybercrime: researchers warn about the rise of AI agent hackerssubmitted by kid to cybersecurity 1 points | 0 comments https://cybernews.com/security/agentic-ai-enables-hackers-launch-swarms-of-malicious-bots/SH.ITJUST.WORKS
15 MayRussia-linked hackers target webmail servers in Ukraine-related espionage operation - Help Net Securitysubmitted by kid to cybersecurity 1 points | 0 comments https://www.helpnetsecurity.com/2025/05/15/espionage-operation-roundpress-webmail-servers/SH.ITJUST.WORKS
15 MayXanthorox Emerging BlackHat AI Tool Empowering Hackers in Phishing and Malware CampaignsArtificial intelligence platform named Xanthorox has emerged as a potent new tool for cybercriminals, enabling the automated generation of phishing campaigns, malware, and hyperrealistic deepfakes. Unlike traditional dark-web tools restricted to hidden forums, Xanthorox’s develop…GBHACKERS.COM
15 MayGlobal cybersecurity readiness remains critically low - Help Net Securitysubmitted by kid to cybersecurity 1 points | 0 comments https://www.helpnetsecurity.com/2025/05/08/cybersecurity-readiness-level-across-organizations/SH.ITJUST.WORKS
15 MayMicrosoft Outlook Down – Millions of Business & Personal Users Worldwide ImpactedA major outage hit Microsoft Outlook and other Microsoft 365 services on Thursday, May 15, 2025, leaving millions of users around the globe unable to access their email, calendars, and other essential productivity tools. The disruption began in the evening IST, with users quickly…GBHACKERS.COM
15 MayNew .NET Multi-Stage Loader Targets Windows Systems to Deploy Malicious PayloadsA recently discovered .NET-based multi-stage loader has caught the attention of cybersecurity researchers due to its complex architecture and ability to deploy a range of malicious payloads on Windows systems. Tracked since early 2022 by Threatray, this loader employs a sophistic…GBHACKERS.COM
15 MayCoinbase Rejects $20M Ransom After Rogue Contractors Bribed to Leak Customer DataCoinbase said a group of rogue contractors were bribed to pull customer data from internal systems, leading to a $20 million ransom demand. The post Coinbase Rejects $20M Ransom After Rogue Contractors Bribed to Leak Customer Data appeared first on SecurityWeek .SECURITYWEEK.COM
15 MayThe New Windows App Replaces RDP – But It’s a MessMicrosoft just announced the end of its classic Remote Desktop app, replacing it with the all-new Windows App. But cybersecurity pros aren’t thrilled. This short breaks down why the change is sparking confusion and frustration—especially with blocked connections to Azure Virtual …YOUTUBE.COM
15 MayInside Turla’s Uroboros Infrastructure and Tactics RevealedIn a nation-state cyber espionage, a recent static analysis of the Uroboros rootkit, attributed to the infamous APT group Turla, uncovers a chilling display of sophistication and mastery over Windows kernel internals. With the sample identified by the MD5 hash ed785bbd156b61553aa…GBHACKERS.COM
15 May​​How the Microsoft Secure Future Initiative brings Zero Trust to lifeRead how you can improve your security posture by applying Zero Trust framework and principles based on learnings from the April 2025 Secure Future Initiative progress report. The post ​​How the Microsoft Secure Future Initiative brings Zero Trust to life appeared first on Micros…MICROSOFT.COM
15 MayTechnical Analysis of TransferLoadersubmitted by kid to cybersecurity 1 points | 0 comments https://www.zscaler.com/blogs/security-research/technical-analysis-transferloaderSH.ITJUST.WORKS
15 MayBusinesses Handled Risk BEFORE the Internet 🤯#cybershortsMost cybersecurity pros act like digital risk is a brand-new monster... but it’s not. In this short, Katie drops a truth bomb 💣—businesses have been managing risk long before computers ever existed. With a mix of humor and humility, she reminds the cyber world to zoom out and see…YOUTUBE.COM
15 MayAI-Written Cyber Articles? Here's How You Spot Them 🚩In a world flooded with cybersecurity news, Matt and Jason break down the rise of AI-generated articles and why most of them aren't worth your click. At a glance, these stories look legit—but dig deeper and you'll find canned content with zero insight. This short exposes how to s…YOUTUBE.COM
15 MayWelcoming the Malaysian Government to Have I Been PwnedPresently sponsored by: 1Password Extended Access Management: Secure every sign-in for every app on every device. Today, we welcome the 40th government onboarded to Have I Been Pwned's free gov service, Malaysia. The NC4 NACSA (National Cyber Coordination and Command Centre …TROYHUNT.COM
15 MayOperation RoundPressESET researchers uncover a Russia-aligned espionage operation targeting webmail servers via XSS vulnerabilitiesWELIVESECURITY.COM
📡 INFOSEC NEWS 15[−]
15 MayMicrosoft Copilot+ Recall: who should disable it, and how | Kaspersky official blogWhat Microsoft has improved in the 2025 version of Copilot+ Recall, how its security has changed, who should avoid using it, and how to disable it.KASPERSKY.COM
15 MaySophos MDR: New analyst response actions for Microsoft 365Powerful new capabilities enable Sophos MDR analysts to respond to M365 attacks on your behalf.SOPHOS.COM
15 MayMalicious npm package using steganography downloaded by hundredsA malicious package in the Node Package Manager index uses invisible Unicode characters to hide malicious code and Google Calendar links to host the URL for the command-and-control location. [...]BLEEPINGCOMPUTER.COM
15 MayMalicious NPM package uses Unicode steganography to evade detectionA malicious package in the Node Package Manager index uses invisible Unicode characters to hide malicious code and Google Calendar links to host the URL for the command-and-control location. [...]BLEEPINGCOMPUTER.COM
15 MayNew Tor Oniux tool anonymizes any Linux app's network trafficTor has announced Oniux, a new command-line tool for routing any Linux application securely through the Tor network for anonymized network connections. [...]BLEEPINGCOMPUTER.COM
15 MayEven Updated Software is Full of Vulnerabilities! 🤯Even with the latest updates, your software is still full of vulnerabilities! 🚨 Cybersecurity expert Rob Allen reveals why patching alone won’t keep you safe and why hackers are always one step ahead. Think your system is secure? Think again. Stay informed, stay protected! 🔒 #Cyb…YOUTUBE.COM
15 MayMeta to Train AI on E.U. User Data From May 27 Without Consent; Noyb Threatens LawsuitAustrian privacy non-profit noyb (none of your business) has sent Meta's Irish headquarters a cease-and-desist letter, threatening the company with a class action lawsuit if it proceeds with its plans to train users' data for training its artificial intelligence (AI) models witho…THEHACKERNEWS.COM
15 MayHow Flooding Your SIM With Alerts Is Draining Your BudgetShe breaks down the hidden cost of cybersecurity — and it’s not just the price of your tools. 🚨 Flooding your SIM with endless alerts doesn’t mean better protection — it means burning out your team and blowing up your budget. More alerts = more chaos, not more security. Are we so…YOUTUBE.COM
15 MayIs AI Too Biased to Analyze Bias?AI was supposed to help cybersecurity pros detect bias in research... but what happens when the AI itself is biased? 🤖🔥 In this clip, industry experts debate if AI can truly be trusted to analyze human flaws when it has its own. A sharp look into the double-edged sword of artific…YOUTUBE.COM
15 MayBillions in Crime, One Platform: The Facebook ProblemWhile most people think social media is harmless, this short reveals how massive criminal networks thrive on platforms like Facebook. With billions of stolen goods moving through marketplaces and AI moderation failing to catch real threats, cybersecurity experts break down the sh…YOUTUBE.COM
15 MayFBI: US officials targeted in voice deepfake attacks since AprilThe FBI warned that cybercriminals using AI-generated audio deepfakes to target U.S. officials in voice phishing attacks that started in April. [...]BLEEPINGCOMPUTER.COM
15 MayWindows 10 KB5058379 update triggering BitLocker Recovery after installThe Windows 10 KB5058379 cumulative update is triggering unexpected BitLocker recovery prompts on some devices afters it's installed and the computer restarted. [...]BLEEPINGCOMPUTER.COM
15 MayChatGPT will soon record, transcribe, and summarize your meetingsOpenAI may be planning to challenge Microsoft Teams Copilot integration with a new "Record" feature in ChatGPT. [...]BLEEPINGCOMPUTER.COM
15 MayLeak confirms OpenAI's ChatGPT will integrate MCPChatGPT is testing support for Model Context Protocol (MCP), which will allow the AI to connect to third-party services and use them as context. [...]BLEEPINGCOMPUTER.COM
15 MaySednit abuses XSS flaws to hit gov't entities, defense companiesOperation RoundPress targets webmail software to steal secrets from email accounts belonging mainly to governmental organizations in Ukraine and defense contractors in the EUWELIVESECURITY.COM