🚨 CISA KEV 2[−]
22 May KEVCISA Adds One Known Exploited Vulnerability to CatalogCISA has added one new vulnerability to its Known Exploited Vulnerabilities Catalog , based on evidence of active exploitation. CVE-2025-4632 Samsung MagicINFO 9 Server Path Traversal Vulnerability These types of vulnerabilities are frequent attack vectors for malicio…CISA.GOV
22 May KEVAdvisory Update on Cyber Threat Activity Targeting Commvault’s SaaS Cloud Application (Metallic)Commvault is monitoring cyber threat activity targeting their applications hosted in their Microsoft Azure cloud environment. Threat actors may have accessed client secrets for Commvault’s (Metallic) Microsoft 365 (M365) backup software-as-a-service (SaaS) solution, hosted i…CISA.GOV
🐛 COMMON VULNERABILITIES AND EXPOSURES 9[−]
22 MayGrafana Zero-Day Vulnerability Allows Attackers to Redirect Users to Malicious SitesThe High-severity cross-site scripting (XSS) vulnerability has been discovered in Grafana, prompting the immediate release of security patches across all supported versions. The vulnerability (CVE-2025-4123) enables attackers to redirect users to malicious websites where arbitrar…GBHACKERS.COM
22 MayAttackers Exploit BIND DNS Server Vulnerability to Crash Servers Using Malicious PacketsThe vulnerability in BIND DNS server software allowed attackers to crash DNS servers by sending specifically crafted malicious packets. This flaw, identified as CVE-2023-5517, could cause named (the BIND DNS server process) to terminate unexpectedly with an assertion failure when…GBHACKERS.COM
22 MaySamlify bug lets attackers bypass single sign-onA critical vulnerability in the popular samlify library could potentially allow attackers to bypass Single Sign-On (SSO) protections and gain unauthorized access to systems relying on SAML for authentication. Tracked as CVE-2025-47949, the flaw affecting the widely used Node.js l…CSOONLINE.COM
22 MayChinese Hackers Exploit Ivanti EPMM Bugs in Global Enterprise Network AttacksA recently patched pair of security flaws affecting Ivanti Endpoint Manager Mobile (EPMM) software has been exploited by a China-nexus threat actor to target a wide range of sectors across Europe, North America, and the Asia-Pacific region. The vulnerabilities, tracked as CVE-202…THEHACKERNEWS.COM
22 MayCisco Unified Intelligence Center Vulnerability Allows Privilege EscalationCisco has disclosed two security vulnerabilities in its Unified Intelligence Center that could allow authenticated remote attackers to escalate privileges. The more severe flaw, tracked as CVE-2025-20113, received a CVSS score of 7.1 (High), while the secondary vulnerability, CVE…GBHACKERS.COM
22 MayLinux Kernel Zero-Day SMB Vulnerability Discovered via ChatGPTSecurity researcher has discovered a zero-day vulnerability (CVE-2025-37899) in the Linux kernel’s SMB server implementation using OpenAI’s o3 language model. The vulnerability, a use-after-free bug in the SMB ‘logoff’ command handler, could potentially al…GBHACKERS.COM
22 MayChinese Hackers Exploit Trimble Cityworks Flaw to Infiltrate U.S. Government NetworksA Chinese-speaking threat actor tracked as UAT-6382 has been linked to the exploitation of a now-patched remote-code-execution vulnerability in Trimble Cityworks to deliver Cobalt Strike and VShell. "UAT-6382 successfully exploited CVE-2025-0944, conducted reconnaissance, and rap…THEHACKERNEWS.COM
22 MayCityworks Zero-Day Vulnerability Used by UAT-638 Hackers to Infect IIS Servers with Shell MalwareCisco Talos has uncovered active exploitation of a zero-day remote-code-execution vulnerability, identified as CVE-2025-0994, in Cityworks, a widely used asset management system. This critical flaw has been leveraged by a group tracked as UAT-6382, assessed with high confidence t…GBHACKERS.COM
22 MayCVE-2025-47181 Microsoft Edge (Chromium-based) Update Elevation of Privilege VulnerabilityImproper link resolution before file access ('link following') in Microsoft Edge (Chromium-based) allows an authorized attacker to elevate privileges locally.MSRC.MICROSOFT.COM
⚠️ VULNERABILITY DISCLOSURE 36[−]
22 MaySchluss mit schlechter SoftwareSoftwaresicherheit beginnt beim Hersteller – nicht beim Nutzer. Pingingz – shutterstock.com Die Aussagen von Jen Easterly , bis Januar 2025 Direktorin der US-Bundesbehörde CISA (Cybersecurity and Infrastructure Security Agency), bringen es auf den Punkt: „Sichere Software ist nic…CSOONLINE.COM
22 MayNew Process Injection Technique Evades EDR by Injecting Malicious Code into Windows ProcessesResearchers revealed this method exploits shared memory regions and thread context manipulation to execute malicious payloads without triggering standard detection heuristics. Novel process injection technique leveraging execution-only primitives has demonstrated the ability to b…GBHACKERS.COM
22 MayCisco Patches High-Severity DoS, Privilege Escalation VulnerabilitiesCisco published 10 security advisories detailing over a dozen vulnerabilities, including two high-severity flaws in its Identity Services Engine (ISE) and Unified Intelligence Center. The post Cisco Patches High-Severity DoS, Privilege Escalation Vulnerabilities appeared first on…SECURITYWEEK.COM
22 MayHackers Exploit PyBitmessage Library to Evade Antivirus and Network Security DetectionThe AhnLab Security Intelligence Center (ASEC) has uncovered a new strain of backdoor malware being distributed alongside a Monero coin miner. This malware leverages the PyBitmessage library, a Python implementation of the Bitmessage protocol, to establish covert peer-to-peer (P2…GBHACKERS.COM
22 MaySeveral GitLab Vulnerabilities Enable Attackers to Launch DoS AttacksGitLab has issued critical security patches addressing 11 vulnerabilities across its Community Edition (CE) and Enterprise Edition (EE) platforms, with three high-risk flaws enabling denial-of-service (DoS) attacks dominating the threat landscape. The coordinated release of versi…GBHACKERS.COM
22 MayCisco Identity Services RADIUS Vulnerability Allows Attackers to Trigger Denial of Service ConditionCisco has disclosed a significant security vulnerability in its Identity Services Engine (ISE) that could enable unauthenticated remote attackers to cause denial of service conditions by exploiting flaws in the RADIUS message processing feature. The vulnerability, which was disco…GBHACKERS.COM
22 MayHackers Targets Coinbase Users Targeted in Advanced Social Engineering HackCoinbase users have become the prime targets of an intricate social engineering campaign since early 2025. Reports from on-chain investigator Zach reveal that over $300 million is stolen annually through these meticulously coordinated attacks, with a staggering $45 million lost i…GBHACKERS.COM
22 MayTop 12 US cities for cybersecurity job and salary growthWith hybrid and on-site work arrangements becoming more common, many cybersecurity professionals no longer have the freedom to work from anywhere. Instead, they must carefully choose a location not only for their next specific job but for long-term career growth. While major hubs…CSOONLINE.COM
22 MayUnpatched critical bugs in Versa Concerto lead to auth bypass, RCECritical vulnerabilities in Versa Concerto that are still unpatched could allow remote attackers to bypass authentication and execute arbitrary code on affected systems. [...]BLEEPINGCOMPUTER.COM
22 MayFBI and Europol Disrupt Lumma Stealer Malware Network Linked to 10 Million InfectionsA sprawling operation undertaken by global law enforcement agencies and a consortium of private sector firms has disrupted the online infrastructure associated with a commodity information stealer known as Lumma (aka LummaC or LummaC2), seizing 2,300 domains that acted as the com…THEHACKERNEWS.COM
22 MayVersa Concerto 0-Day Flaw Enables Remote Code Execution by Bypassing AuthenticationSecurity researchers have uncovered multiple critical vulnerabilities in Versa Concerto, a widely deployed network security and SD-WAN orchestration platform used by large enterprises, service providers, and government entities. Despite responsible disclosure efforts over a 90-da…GBHACKERS.COM
22 MayPrompt injection flaws in GitLab Duo highlights risks in AI assistantsGitLab’s coding assistant Duo can parse malicious AI prompts hidden in comments, source code, merge request descriptions and commit messages from public repositories, researchers found. This technique allowed them to trick the chatbot into making malicious code suggestions to use…CSOONLINE.COM
22 MayUnpatched Versa Concerto Flaws Let Attackers Escape Docker and Compromise HostCybersecurity researchers have uncovered multiple critical security vulnerabilities impacting the Versa Concerto network security and SD-WAN orchestration platform that could be exploited to take control of susceptible instances. It's worth noting that the identified shortcomings…THEHACKERNEWS.COM
22 MayFeds and Microsoft crush Lumma Stealer that stole millions of passwordsMicrosoft and the US Department of Justice have dismantled one of the world’s largest cybercrime operations, seizing over 2,300 malicious domains and shutting down the Lumma Stealer malware that infected nearly 400,000 computers worldwide. The coordinated takedown targeted a Russ…CSOONLINE.COM
22 MayCritical Windows Server 2025 dMSA Vulnerability Enables Active Directory CompromiseA privilege escalation flaw has been demonstrated in Windows Server 2025 that makes it possible for attackers to compromise any user in Active Directory (AD). "The attack exploits the delegated Managed Service Account (dMSA) feature that was introduced in Windows Server 2025, wor…THEHACKERNEWS.COM
22 MayNew NIST Security Metric Aims to Pinpoint Exploited VulnerabilitiesResearchers from the National Institute of Standards and Technology (NIST) and the Cybersecurity and Infrastructure Security Agency (CISA) have introduced a new security metric designed to improve vulnerability management. The proposed Likely Exploited Vulnerabilities (LEV) metri…GBHACKERS.COM
22 MayChinese hackers breach US local governments using Cityworks zero-dayChinese-speaking hackers have exploited a now-patched Trimble Cityworks zero-day to breach multiple local governing bodies across the United States. [...]BLEEPINGCOMPUTER.COM
22 MayUnpatched Windows Server Flaw Threatens Active Directory Userssubmitted by kid to cybersecurity 1 points | 0 comments https://www.darkreading.com/vulnerabilities-threats/unpatched-windows-server-flaw-threatens-active-directory-usersSH.ITJUST.WORKS
22 MayIvanti EPMM flaw exploited by Chinese hackers to breach govt agenciesChinese hackers have been exploiting a remote code execution flaw in Ivanti Endpoint Manager Mobile (EPMM) to breach high-profile organizations worldwide. [...]BLEEPINGCOMPUTER.COM
22 MayMicrosoft Expert Reveals the Hidden Dangers of Bad Code on Your PC’s PerformanceMicrosoft support engineer has identified a subtle but significant memory leak in .NET applications that can gradually consume system resources until computers slow to a crawl or crash completely. The issue, which primarily affects Windows systems running .NET applications, stems…GBHACKERS.COM
22 MayCisco Webex Meetings Vulnerability Enables HTTP Response ManipulationSecurity researchers have uncovered a vulnerability in Cisco Webex Meetings that could allow remote attackers to manipulate HTTP responses without authentication. The cloud-based vulnerability affects the client join services component of the popular videoconferencing platform. C…GBHACKERS.COM
22 MayWe Fix Vulnerabilities Faster Than the Government Does Taxes 💀While cybersecurity pros battle CVEs and zero-days at lightning speed, the government can’t even process a tax return in four weeks. This hilarious clip captures a candid convo between infosec experts comparing the chaos of vulnerability management with the sluggish pace of the I…YOUTUBE.COM
22 MayCybercriminals Using Trusted Google Domains to Spread Malicious CodeA sophisticated new malvertising scheme has emerged, transforming trusted e-commerce websites into phishing traps without the knowledge of site owners or advertisers. Cybercriminals are exploiting integrations with Google APIs, specifically through JSONP (JSON with Padding) calls…GBHACKERS.COM
22 MayPolice arrests 270 dark web vendors, buyers in global crackdownPolice arrested 270 suspects following an international law enforcement action codenamed 'Operation RapTor' that targeted dark web vendors and customers from ten countries. [...]BLEEPINGCOMPUTER.COM
22 MayVidar and StealC Malware Delivered Through Viral TikTok Videos by HackersA sophisticated social engineering campaign that leverages the viral power of TikTok to distribute dangerous information-stealing malware, specifically Vidar and StealC. This alarming trend marks a shift in cybercriminal tactics, moving away from traditional methods like fake CAP…GBHACKERS.COM
22 MayCISA Releases Two Industrial Control Systems AdvisoriesCISA released two Industrial Control Systems (ICS) advisories on May 22, 2025. These advisories provide timely information about current security issues, vulnerabilities, and exploits surrounding ICS. ICSA-25-142-01 Lantronix Device Installer ICSA-25-142-02 Rockwell Automation Fa…CISA.GOV
22 MayAkamai, Microsoft Disagree on Severity of Unpatched ‘BadSuccessor’ FlawAkamai documents a privilege escalation flaw in Windows Server 2025 after Redmond declines to ship an immediate patch. The post Akamai, Microsoft Disagree on Severity of Unpatched ‘BadSuccessor’ Flaw appeared first on SecurityWeek .SECURITYWEEK.COM
22 MayThey Caught Us in Hours! How Cyber Defenses Are Evolving 🚨Red Team hackers used to have weeks to execute their attacks—until the Blue Team started shutting them down in just hours! 🚨 As cybersecurity defenses evolve, ethical hackers are forced to think faster, automate attacks, and race against the clock. How do they stay ahead? Watch t…YOUTUBE.COM
22 MayCritical Vulnerability in Netwrix Password Manager Enables Authenticated Remote Code ExecutionA critical security vulnerability has been discovered in Netwrix Password Secure, a widely used enterprise password management solution, potentially allowing authenticated attackers to execute remote code on other users’ systems. Identified in versions up to 9.2.2, including the …GBHACKERS.COM
22 MayRussian Hackers Exploit Oracle Cloud Infrastructure to Target Scaleway Object StorageRussian threat actors have been leveraging trusted cloud infrastructure platforms like Oracle Cloud Infrastructure (OCI) Object Storage and Scaleway Object Storage to propagate sophisticated attacks using the Lumma Stealer malware. This malware-as-a-service (MaaS) infostealer, al…GBHACKERS.COM
22 MayMicrosoft says Lumma password stealer malware found on 394,000 Windows PCsMicrosoft and law enforcement announced a coordinated takedown of the Lumma pasword-stealing malware.TECHCRUNCH.COM
22 MayPhishing Campaign Targets International Students in the USThe FBI has issued an alert on a wave of phishing attacks targeting Middle Eastern students who are studying in the US.KNOWBE4.COM
22 MayNews alert: INE Security, Abadnet Institute partner to deliver cybersecurity training in Saudi ArabiaCary, NC. May 22, 2025, CyberNewswire — INE Security , a global leader in Cybersecurity training and certifications, has announced a strategic partnership with Abadnet Institute for Training , a Riyadh-based leader in specialized Information Technology, Cybersecurity, and N…LASTWATCHDOG.COM
22 MayNews Alert: Halo Security reaches SOC 2 milestone, validating its security controls and practicesMiami, Fla., May 22, 2025, CyberNewsWire — Halo Security , a leading provider of attack surface management and penetration testing services, today announced it has successfully achieved SOC 2 Type 1 compliance following a comprehensive audit by Insight Assurance. This ̷…LASTWATCHDOG.COM
22 MayDanabot: Analyzing a fallen empireESET Research shares its findings on the workings of Danabot, an infostealer recently disrupted in a multinational law enforcement operationWELIVESECURITY.COM
22 MayFédération Francaise de Rugby - 281,977 breached accountsIn June 2023, the Fédération Francaise de Rugby (French Rugby Federation) suffered a data breach and attempted ransom . The breach exposed 282k unique email addresses along with names, dates of birth and phone numbers. The Federation subsequently published a disclosure notice and…HAVEIBEENPWNED.COM
📢 SECURITY ADVISORIES 7[−]
22 MayAI Governance – So gestalten Sie die KI-Revolution sicherUnternehmen müssen ein Governance-, Risiko- und Compliance-Rahmenwerk (GRC) speziell für KI einführen, wenn sie nicht den Risiken Künstlicher Intelligenz zum Opfer fallen wollen. Carl DMaster – shutterstock.com Der Einsatz von Künstlicher Intelligenz ( KI ) in Unternehmen birgt v…CSOONLINE.COM
22 MayWebinar: Learn How to Build a Reasonable and Legally Defensible Cybersecurity ProgramIt’s not enough to be secure. In today’s legal climate, you need to prove it. Whether you’re protecting a small company or managing compliance across a global enterprise, one thing is clear: cybersecurity can no longer be left to guesswork, vague frameworks, or best-effort intent…THEHACKERNEWS.COM
22 MayNew Best Practices Guide for Securing AI Data ReleasedToday, CISA, the National Security Agency, the Federal Bureau of Investigation, and international partners released a joint Cybersecurity Information Sheet on AI Data Security: Best Practices for Securing Data Used to Train & Operate AI Systems . This information sheet …CISA.GOV
22 MayCybersecurity and AI: Integrating and Building on Existing NIST GuidelinesWhat is NIST up to? On April 3, 2025, NIST hosted a Cybersecurity and AI Profile Workshop at our National Cybersecurity Center of Excellence (NCCoE) to hear feedback on our concept paper which presented opportunities to create profiles of the NIST Cybersecurity Framework (CSF) an…NIST.GOV
22 MayHalo Security Achieves SOC 2 Type 1 Compliance, Validating Security Controls for Its Attack Surface Management PlatformHalo Security, a leading provider of attack surface management and penetration testing services, today announced it has successfully achieved SOC 2 Type 1 compliance following a comprehensive audit by Insight Assurance. This certification validates that Halo Security’s secu…GBHACKERS.COM
🔥 INCIDENT REPORTING 10[−]
22 MayMarks & Spencer Expects Ransomware Attack to Cost $400 MillionUK retailer Marks & Spencer expects the disruptions caused by the recent cyberattack to continue through July. The post Marks & Spencer Expects Ransomware Attack to Cost $400 Million appeared first on SecurityWeek .SECURITYWEEK.COM
22 MayMarlboro-Chesterfield Pathology Data Breach Impacts 235,000 PeopleMarlboro-Chesterfield Pathology has been targeted by the SafePay ransomware group, which stole personal information from its systems. The post Marlboro-Chesterfield Pathology Data Breach Impacts 235,000 People appeared first on SecurityWeek .SECURITYWEEK.COM
22 MayFTC finalizes order requiring GoDaddy to secure hosting servicesThe Federal Trade Commission (FTC) has finalized an order requiring web hosting giant GoDaddy to secure its services to settle charges of data security failures that led to several data breaches since 2018. [...]BLEEPINGCOMPUTER.COM
22 MayRussian hackers breach orgs to track aid routes to Ukrainesubmitted by kid to cybersecurity 0 points | 0 comments https://www.bleepingcomputer.com/news/security/russian-hackers-breach-orgs-to-track-aid-routes-to-ukraine/SH.ITJUST.WORKS
22 MayHacker who breached communications app used by Trump aide stole data from across US governmentsubmitted by kid to cybersecurity 2 points | 0 comments https://www.reuters.com/world/us/hacker-who-breached-communications-app-used-by-trump-aide-stole-data-across-us-2025-05-21/SH.ITJUST.WORKS
22 MayGujarat Teen Arrested for Orchestrating Over 50 Cyberattacks in ‘Operation Sindoor’Gujarat Anti-Terrorism Squad (ATS) has apprehended two individuals, including a minor, for orchestrating a series of sophisticated cyber attacks against Indian websites and disseminating anti-national content online. The arrests came as part of “Operation Sindoor,” a …GBHACKERS.COM
22 MayThe Ransomware Threat: Still Alive and KickingMany organizations, after a period of relative quiet, might believe the ransomware bubble has burst. The headlines may have shifted, and other emerging cyber threats might seem to dominate the news cycle, but recent data from Marsh's 2024 UK cyber insurance claims report suggests…KNOWBE4.COM
22 MayUS indicts leader of Qakbot botnet linked to ransomware attacksThe U.S. government has indicted Russian national Rustam Rafailevich Gallyamov, the leader of the Qakbot botnet malware operation that compromised over 700,000 computers and enabled ransomware attacks. [...]BLEEPINGCOMPUTER.COM
22 MayFlippy, Deepfakes & AI: The New Cyber Nightmare?Cybersecurity expert Doug White breaks down the shocking results of Arctic Wolf’s 2025 threat report. For the first time ever, AI has overtaken ransomware as the top concern among IT decision-makers. With deepfakes, AI-written malware, and synthetic voices now in play, CISOs are …YOUTUBE.COM
22 MayMalware Laced Printer Drivers - PSW #875This week in the security news: * Malware-laced printer drivers * Unicode steganography * Rhode Island may sue Deloitte for breach. They may even win. * Japan's active cyber defense law * Stop with the ping * LLMs replace Stack Overflow - ya don't say? * Aggravated identity theft…YOUTUBE.COM
🕵️ THREAT INTELLIGENCE 24[−]
22 MayISC Stormcast For Thursday, May 22nd, 2025 https://isc.sans.edu/podcastdetail/9462, (Thu, May 22nd)(c) SANS Internet Storm Center. https://isc.sans.edu Creative Commons Attribution-Noncommercial 3.0 United States License.ISC.SANS.EDU
22 May“Microsoft has simply given us no other option,” Signal says as it blocks Windows Recallsubmitted by floofloof to cybersecurity 1 points | 0 comments https://arstechnica.com/security/2025/05/signal-resorts-to-weird-trick-to-block-windows-recall-in-desktop-app/SH.ITJUST.WORKS
22 MayGitLab, Atlassian Patch High-Severity VulnerabilitiesGitLab and Atlassian have released patches for over a dozen vulnerabilities in their products, including high-severity bugs. The post GitLab, Atlassian Patch High-Severity Vulnerabilities appeared first on SecurityWeek .SECURITYWEEK.COM
22 MayThreatBook Recognized as a Notable Vendor in Global Network Analysis and Visibility (NAV) ReportThreatBook, a global leader cyber threat and response solutions backed by threat intelligence and AI, has been recognized as a notable vendor in Forrester’s Network Analysis And Visibility Solutions Landscape, Q2 2025 report. This marks a major milestone in ThreatBook’s gro…GBHACKERS.COM
22 MayRussische Cyber-Kampagne in Nato-Staaten aufgedecktWestliche Geheimdienste haben eine Cyber-Kampagne Russlands aufgedeckt, die gegen logistische und technologische Ziele in Nato-Staaten gerichtet ist. AntonKhrupinArt – shutterstock.com Wie das britische National Cyber Security Centre mitteilte, soll die Einheit 26165 des russisch…CSOONLINE.COM
22 MaySignal’s new Windows update prevents the system from capturing screenshots of chatsSignal said today that it is updating its Windows app to prevent the system from capturing screenshots, thereby protecting the content that is on display. The company said that this new “screen security” setting is enabled by default on Windows 11. Signal said that th…TECHCRUNCH.COM
22 MayKrebsOnSecurity Hit With Near-Record 6.3 Tbps DDoSsubmitted by BrikoX to cybersecurity 1 points | 0 comments https://krebsonsecurity.com/2025/05/krebsonsecurity-hit-with-near-record-6-3-tbps-ddos/ KrebsOnSecurity last week was hit by a near record distributed denial-of-service (DDoS) attack that clocked in at more than 6.3 terab…SH.ITJUST.WORKS
22 MayTaming the Hacker Storm: Why Millions in Cybersecurity Spending Isn’t EnoughDespite massive investment, the explosion of sophisticated malware and deepfake attacks persists because organizations struggle to verify digital identities and establish fundamental trust. The post Taming the Hacker Storm: Why Millions in Cybersecurity Spending Isn’t Enoug…SECURITYWEEK.COM
22 MaySHARED INTEL Q&A: Visibility, not volume — reframing detection for the AI-enabled SOCFor years, network security has revolved around the perimeter: firewalls, antivirus, endpoint controls. But as attackers grow more sophisticated — and as operations scatter to the cloud, mobile, and IoT — it’s increasingly what happens inside the network that counts.… (more…LASTWATCHDOG.COM
22 MayThe Voter ExperienceTechnology and innovation have transformed every part of society, including our electoral experiences. Campaigns are spending and doing more than at any other time in history. Ever-growing war chests fuel billions of voter contacts every cycle. Campaigns now have better ways of s…SCHNEIER.COM
22 MaySecurity Theater or Real Defense? The KPIs That Tell the TruthIn the end, cybersecurity isn’t just about collecting data. It’s about proving that your defenses actually work. The post Security Theater or Real Defense? The KPIs That Tell the Truth appeared first on SecurityWeek .SECURITYWEEK.COM
22 MayIs This the End of Traditional Firewalls?AI is creeping into every corner of cybersecurity — but is it really the upgrade we need? In this short, Adrian Sanabria shares why traditional firewalls might soon be obsolete. He breaks down the controversial idea of AI-driven security and why an "AI firewall" could be the futu…YOUTUBE.COM
22 MayPandas Galore: Chinese Hackers Boost Attacks in Latin Americasubmitted by kid to cybersecurity 1 points | 0 comments https://www.darkreading.com/cyber-risk/pandas-galore-chinese-hackers-attacks-latin-americaSH.ITJUST.WORKS
22 MayMalicious VS Code Extensions Target Windows Solidity Developers to Steal Login CredentialsDatadog Security Research has uncovered a targeted malware campaign aimed at Solidity developers on Windows systems, using malicious Visual Studio Code (VS Code) extensions as the initial attack vector. Identified as the work of a single threat actor tracked as MUT-9332, this ope…GBHACKERS.COM
22 MayLumma Stealer Infrastructure Behind Global Attacks on Millions of Users DismantledThe U.S. Justice Department, in collaboration with the FBI and private sector partners like Microsoft, has announced the disruption of the Lumma Stealer (also known as LummaC2) malware infrastructure. This global operation targeted the notorious Malware-as-a-Service (MaaS) platfo…GBHACKERS.COM
22 MayHackers Deploy Weaponized npm Packages to Target React and Node.js JavaScript FrameworksSocket’s Threat Research Team, a series of malicious npm packages have been found lurking in the JavaScript ecosystem for over two years, amassing more than 6,200 downloads. These weaponized packages, targeting popular frameworks like React, Vue.js, Vite, Node.js, and the Q…GBHACKERS.COM
22 MayResearchers Warn of ‘Smiao Network’ Cyber Threat Against Taiwan’s Federal StaffThe Foundation for Defense of Democracies (FDD) and cybersecurity firm TeamT5 has exposed an intricate Chinese intelligence operation, dubbed the ‘Smiao Network,’ targeting federal workers in both the United States and Taiwan. This network, linked to the Chinese technology compan…GBHACKERS.COM
22 MayChinese hackers are persistent players in cyber espionage landscape, with a special emphasis on European governmental and industrial entities, report sayssubmitted by Hotznplotzn to cybersecurity 3 points | 0 comments https://gbhackers.com/chinese-apt-hackers-target-organizations/ cross-posted from: lemmy.sdf.org/post/35083943 Archived Advanced persistent threat (APT) groups with ties to China have become persistent players in the…INFOSEC.PUB
22 MayChinese hackers are persistent players in cyber espionage landscape, with a special emphasis on European governmental and industrial entities, report sayssubmitted by Hotznplotzn to cybersecurity 3 points | 0 comments https://gbhackers.com/chinese-apt-hackers-target-organizations/ cross-posted from: lemmy.sdf.org/post/35083943 Archived Advanced persistent threat (APT) groups with ties to China have become persistent players in the…SH.ITJUST.WORKS
22 MayCefSharp Enumeration Tool Identifies Critical Security Issues in .NET Desktop ApplicationsCybersecurity researchers and red teamers, a newly released tool named CefEnum is shedding light on critical security flaws in .NET-based desktop applications leveraging CefSharp, a lightweight wrapper around the Chromium Embedded Framework (CEF). CefSharp enables developers to e…GBHACKERS.COM
22 MayDoes Using ChatGPT Hurt the Planet? 🌍ChatGPT might feel like magic, but is it secretly draining the planet? 🌍 In this short, Aaran breaks down how much energy each AI prompt really uses — and the results might surprise you. From cybersecurity teams to everyday users, anyone curious about AI's carbon footprint needs …YOUTUBE.COM
22 MayIs It a Skills Gap or a Headcount Lie?Europe isn’t buying the “cybersecurity headcount crisis” anymore—and they might be right. In this clip, cybersecurity experts Matthew Alderman and Ben Carr break down how European orgs are ditching headcount-based hiring in favor of skills-first recruitment. It’s not about how ma…YOUTUBE.COM
22 MayThis AI Drama in Class is Getting Out of Hand 😬A cybersecurity student accuses their professor of “cheating” after finding out he used ChatGPT to make slide graphics. But here's the twist—this isn’t just about AI tools. It’s about double standards in education, the evolving role of AI in the classroom, and who really gets to …YOUTUBE.COM
22 MayOops: DanaBot Malware Devs Infected Their Own PCsThe U.S. government today unsealed criminal charges against 16 individuals accused of operating and selling DanaBot, a prolific strain of information-stealing malware that has been sold on Russian cybercrime forums since 2018. The FBI says a newer version of DanaBot was used for …KREBSONSECURITY.COM
🌐 CYBER THREAT LANDSCAPE 1[−]
22 MayHackers use fake Ledger apps to steal Mac users’ seed phrasesCybercriminal campaigns are using fake Ledger apps to target macOS users and their digital assets by deploying malware that attempts to steal seed phrases that protect access to digital cryptocurrency wallets. [...]BLEEPINGCOMPUTER.COM
📡 INFOSEC NEWS 9[−]
22 MayDOJ charges 12 more in $263 million crypto fraud takedown where money was hidden in squishmallow stuffed animalsCrypto fraud meets cuddly toys! US authorities have charged a group accused of stealing $263 million in cryptocurrency - and then laundering the cash by stuffing it into Squishmallows. Read more in my article on the Hot for Security blog.BITDEFENDER.COM
22 MaySignal now blocks Microsoft Recall screenshots on Windows 11Signal has updated its Windows app to protect users' privacy by blocking Microsoft's AI-powered Recall feature from taking screenshots of their conversations. [...]BLEEPINGCOMPUTER.COM
22 MayIdentity Security Has an Automation Problem—And It's Bigger Than You ThinkFor many organizations, identity security appears to be under control. On paper, everything checks out. But new research from Cerby, based on insights from over 500 IT and security leaders, reveals a different reality: too much still depends on people—not systems—to function. In …THEHACKERNEWS.COM
22 MayA Kaspersky checklist for a safe vacation | Kaspersky official blogHelping you plan a cyber-safe holiday without risks to your devices, data, or finances.KASPERSKY.COM
22 MayWhy WireGuard Might NOT Be the Best VPN Choice! 🤔Is WireGuard really the best VPN choice? 🤔 While it’s known for speed and efficiency, cybersecurity expert Francis Dinha explains why OpenVPN might be a stronger option. The key issue? WireGuard’s ciphers are embedded, making it harder to leverage OpenSSL, unlike OpenVPN, which b…YOUTUBE.COM
22 MayResilient Secure Backup Connectivity for SMB/Home Users, (Thu, May 22nd)If you are reading this, you are probably someone who will not easily go without internet connectivity for an extended amount of time. You may also have various home systems that you would like to be able to reach in case of an outage of your primary internet connection. A typica…ISC.SANS.EDU
22 MayClaude 4 benchmarks show improvements, but context is still 200KToday, OpenAI rival Anthropic announced Claude 4 models, which are significantly better than Claude 3 in benchmarks, but we're left disappointed with the same 200,000 context window limit. [...]BLEEPINGCOMPUTER.COM
22 MayLumma Stealer: Down for the countThe bustling cybercrime enterprise has been dealt a significant blow in a global operation that relied on the expertise of ESET and other technology companiesWELIVESECURITY.COM