🚨 CISA KEV 1[−]
28 May KEVVulnerabilities in CISA KEV Are Not Equally Critical: ReportNew report says organizations should always consider environmental context when assessing the impact of vulnerabilities in CISA KEV catalog. The post Vulnerabilities in CISA KEV Are Not Equally Critical: Report appeared first on SecurityWeek .SECURITYWEEK.COM
🐛 COMMON VULNERABILITIES AND EXPOSURES 3[−]
28 MayMimo Hackers Exploit CVE-2025-32432 in Craft CMS to Deploy Cryptominer and ProxywareA financially motivated threat actor has been observed exploiting a recently disclosed remote code execution flaw affecting the Craft Content Management System (CMS) to deploy multiple payloads, including a cryptocurrency miner, a loader dubbed Mimo Loader, and residential proxyw…THEHACKERNEWS.COM
28 MayXenServer Windows VM Tools Flaw Enables Attackers to Run Arbitrary CodeCitrix has issued a high-severity security bulletin addressing multiple vulnerabilities—CVE-2025-27462, CVE-2025-27463, and CVE-2025-27464—affecting XenServer VM Tools for Windows. These vulnerabilities allow attackers with the ability to execute arbitrary unprivileged code withi…GBHACKERS.COM
28 MayEvertz SDN Vulnerabilities Enable Unauthenticated Arbitrary Command ExecutionA newly disclosed critical vulnerability (CVE-2025-4009) in Evertz’s Software Defined Video Network (SDVN) product line exposes a wide range of broadcasting infrastructure to unauthenticated remote code execution. The flaw, uncovered by ONEKEY Research Labs, affects the core web …GBHACKERS.COM
⚠️ VULNERABILITY DISCLOSURE 30[−]
28 MayDie wertvollsten Security-ZertifizierungenZertifizierte IT-Sicherheitsprofis sind (unter anderem) gefragter und verdienen besser. Gorodenkoff | shutterstock.com (Cybersecurity-) Zertifizierungen können eine aktienähnliche Volatilität entfalten: Ihre Popularität kann steigen oder auch fallen – und sie können an Relevanz v…CSOONLINE.COM
28 MayDutch intelligence report says Russian hacker group stole data on 63,000 police officers, targeted NATO government systemssubmitted by Hotznplotzn to cybersecurity 1 points | 0 comments https://theins.ru/en/news/281627 cross-posted from: lemmy.sdf.org/post/35479238 Archived A previously unknown Russian hacker group that has been given the moniker “Laundry Bear” has spent roughly a year targeting gov…INFOSEC.PUB
28 MayDutch intelligence report says Russian hacker group stole data on 63,000 police officers, targeted NATO government systemssubmitted by Hotznplotzn to cybersecurity 1 points | 0 comments https://theins.ru/en/news/281627 cross-posted from: lemmy.sdf.org/post/35479238 Archived A previously unknown Russian hacker group that has been given the moniker “Laundry Bear” has spent roughly a year targeting gov…SH.ITJUST.WORKS
28 MayWill AI agent-fueled attacks force CISOs to fast-track passwordless projects?Data breaches, social engineering, malware and phishing attacks result in a lot of passwords being leaked. With access to these, AI agents could automate steps of mass account takeover (ATO) from social engineering, deepfakes to user credential abuses. Gartner predicts a 50% redu…CSOONLINE.COM
28 MayPhishing Scams, DNS Hijacking, and Cybersecurity Leadership ShakeupIn this episode of Cybersecurity Today, host Jim Love explores the intricacies behind phishing emails that cleverly spoof Microsoft addresses, making many fall for scams despite appearing legitimate. Love emphasizes the need for a stringent 'zero trust' approach to counter these …CYBERSECURITYTODAY.LIBSYN.COM
28 MayApple Blocks $9 Billion in Fraud Over 5 Years Amid Rising App Store ThreatsApple on Tuesday revealed that it prevented over $9 billion in fraudulent transactions in the last five years, including more than $2 billion in 2024 alone. The company said the App Store is confronted by a wide range of threats that seek to defraud users in various ways, ranging…THEHACKERNEWS.COM
28 May‘Secure email’: A losing battle CISOs must give upA digital relic dating back to before the birth of the Internet, email was created in 1971 by Roy Tomlinson to electronically send information on the ARPANET research network. At the time, large-scale, global networks were just a vision and information security wasn’t a significa…CSOONLINE.COM
28 MayCISA Publishes ICS Advisories Highlighting New Vulnerabilities and ExploitsOn May 27, 2025, the Cybersecurity and Infrastructure Security Agency (CISA) released a new Industrial Control Systems (ICS) advisory—ICSA-25-146-01—highlighting a significant security vulnerability in the Johnson Controls iSTAR Configuration Utility (ICU) Tool. This tool is wide…GBHACKERS.COM
28 MayMATLAB, Serving Over 5 Million Users, Hit by Ransomware AttackMathWorks, the renowned developer of MATLAB and Simulink, has been grappling with the aftermath of a significant ransomware attack that began on Sunday, May 18, 2025. The incident, which affected both customer-facing and internal IT systems, prompted immediate notification to fed…GBHACKERS.COM
28 May$223 Million Stolen in Cetus Protocol HackHackers exploited a vulnerability in Cetus Protocol, a liquidity provider on the SUI blockchain. The post $223 Million Stolen in Cetus Protocol Hack appeared first on SecurityWeek .SECURITYWEEK.COM
28 MayQuantum Readiness & Zero Trust: Strategies to Strengthen Digital Resilience - BSW #397This segment explores how automated microsegmentation addresses critical Zero Trust gaps overlooked by traditional access controls and legacy segmentation solutions. We'll examine the limitations of perimeter-based defenses in today's dynamic threat landscape and reveal how autom…YOUTUBE.COM
28 May251 Amazon-Hosted IPs Used in Exploit Scan Targeting ColdFusion, Struts, and ElasticsearchCybersecurity researchers have disclosed details of a coordinated cloud-based scanning activity that targeted 75 distinct "exposure points" earlier this month. The activity, observed by GreyNoise on May 8, 2025, involved as many as 251 malicious IP addresses that are all geolocat…THEHACKERNEWS.COM
28 MayCISA Releases Executive Guide on SIEM and SOAR Platforms for Rapid Threat DetectionIn today’s rapidly evolving threat landscape, Security Information and Event Management (SIEM) and Security Orchestration, Automation, and Response (SOAR) platforms have become foundational to organizational cybersecurity strategies. SIEM platforms collect, centralize, and analyz…GBHACKERS.COM
28 MayLocation Tracking App for Foreigners in MoscowRussia is proposing a rule that all foreigners in Moscow install a tracking app on their phones. Using a mobile application that all foreigners will have to install on their smartphones, the Russian state will receive the following information: Residence location Fingerprint Face…SCHNEIER.COM
28 MayEmerging FormBook Malware Threatens Windows Users with Complete System TakeoverA critical cybersecurity threat has surfaced targeting Microsoft Windows users, as detailed in the latest analysis of the FormBook malware. Documented in Part II of a comprehensive FormBook analysis blog, this malware variant poses a severe risk by enabling attackers to gain full…GBHACKERS.COM
28 MayNew PumaBot Botnet Targets Linux IoT Devices to Steal SSH Credentials and Mine CryptoEmbedded Linux-based Internet of Things (IoT) devices have become the target of a new botnet dubbed PumaBot. Written in Go, the botnet is designed to conduct brute-force attacks against SSH instances to expand in size and scale and deliver additional malware to the infected hosts…THEHACKERNEWS.COM
28 MayHacker stehlen Coca-Cola-DatenDer Coca-Cola-Abfüller Coca-Cola Europacific Partners ist von einem Datenleck betroffen. Tetiana Chernykova – shutterstock.com Cyberkriminelle behaupten in einem Darknet-Post, mehr als 64 Gigabyte Daten mit 23 Millionen Einträgen von Coca-Cola Europacific Partners gestohlen zu ha…CSOONLINE.COM
28 MayIf you use OneDrive to upload files to ChatGPT or Zoom, don’tUsing Microsoft OneDrive to upload a file to ChatGPT, Slack, or Zoom could lead to a user handing over access to more than just that one file. According to an Oasis Security research, applications using Microsoft’s official OneDrive File Picker may get full read access to a OneDr…CSOONLINE.COM
28 May251 Malicious IPs Target Cloud-Based Device Exploiting 75 Exposure PointsOn May 8, 2025, cybersecurity researchers at GreyNoise detected a highly orchestrated scanning operation targeting 75 known exposure points across the internet in just 24 hours. The campaign, executed by 251 malicious IP addresses—all geolocated to Japan and hosted on Amazon Web …GBHACKERS.COM
28 MayMicrosoft OneDrive File Picker Flaw Grants Apps Full Cloud Access — Even When Uploading Just One FileCybersecurity researchers have discovered a security flaw in Microsoft's OneDrive File Picker that, if successfully exploited, could allow websites to access a user's entire cloud storage content, as opposed to just the files selected for upload via the tool. "This stems from ove…THEHACKERNEWS.COM
28 MayEarth Lamia Hackers Exploits Vulnerabilities in Web Applications to Attack Multiple IndustriesCybersecurity researchers at Trend Research have uncovered the aggressive operations of Earth Lamia, an Advanced Persistent Threat (APT) group with a China-nexus, targeting organizations across Brazil, India, and Southeast Asia since 2023. This threat actor has demonstrated a sop…GBHACKERS.COM
28 MayOneDrive File Picker Flaw Provides ChatGPT and Other Web Apps Full Read Access to Users’ Entire OneDrivesubmitted by Pro to cybersecurity 1 points | 0 comments https://www.oasis.security/resources/blog/onedrive-file-picker-security-flaw-oasis-researchINFOSEC.PUB
28 MayDragonForce Ransomware Actors Exploits RMM Tools to Gain Access to OrganizationsSophos Managed Detection and Response (MDR) successfully responded to a sophisticated targeted attack orchestrated by threat actors leveraging DragonForce ransomware. The attackers gained unauthorized access to a Managed Service Provider’s (MSP) remote monitoring and management (…GBHACKERS.COM
28 MayWorldwide Operation Shuts Down Hundreds of Ransomware Servers and Domains, Ending Key Attack InfrastructureLaw enforcement and judicial officials, working together with Europol and Eurojust, have dealt a devastating blow to the worldwide ransomware ecosystem in a historic international operation. From May 19 to 22, 2025, Operation Endgame targeted the critical infrastructure behind ra…GBHACKERS.COM
28 MayDragonForce actors target SimpleHelp vulnerabilities to attack MSP, customers – Sophos Newssubmitted by kid to cybersecurity 1 points | 0 comments https://news.sophos.com/en-us/2025/05/27/dragonforce-actors-target-simplehelp-vulnerabilities-to-attack-msp-customers/SH.ITJUST.WORKS
28 MayCybercriminals Are Turning Ordinary Citizens Into Money Mules in a New ‘Rent-a-Bank-Account’ ScamCybercriminals are exploiting vulnerable individuals by transforming them into unwitting money mules through a sophisticated fraud known as the ‘rent-a-bank-account’ scam. This scam involves fraudsters enticing people, often those in financial distress, with promises of quick cas…GBHACKERS.COM
28 MayVulnerabilities found in NASA's open source software - Help Net Securitysubmitted by kid to cybersecurity 2 points | 0 comments https://www.helpnetsecurity.com/2025/05/27/nasa-open-source-software-vulnerabilities/SH.ITJUST.WORKS
28 MayNew PumaBot botnet brute forces SSH credentials to breach devicesA newly discovered Go-based Linux botnet malware named PumaBot is brute-forcing SSH credentials on embedded IoT devices to deploy malicious payloads. [...]BLEEPINGCOMPUTER.COM
28 MaySeparating hype from reality: How cybercriminals are actually using AIFrom boardroom conversations to industry events, “artificial intelligence” is the buzz phrase that’s reshaping how we collectively view the future of security. The perspectives are diverse, to say the least. Some insist that AI is a long overdue silver bullet, while others believ…CSOONLINE.COM
28 MayRisky Business #793 -- Scattered Spider is hijacking MX recordsIn this week’s edition of Risky Business Dmitri Alperovitch and Adam Boileau join Patrick Gray to talk through the week’s news, including: EXCLUSIVE: A Scattered Spider-style crew is hijacking DNS MX entries and compromising enterprises within minutes The SVG format brings the al…RISKY.BIZ
📢 SECURITY ADVISORIES 7[−]
28 MayUK Envoy Urges Transatlantic Tech Alliance, Cites China Threatsubmitted by Hotznplotzn to cybersecurity 1 points | 0 comments https://www.bloomberg.com/news/articles/2025-05-27/uk-envoy-urges-trans-atlantic-tech-alliance-cites-china-threat cross-posted from: lemmy.sdf.org/post/35480023 Archived […] Ambassador Peter Mandelson [UK ambassador …INFOSEC.PUB
28 MayUK Envoy Urges Transatlantic Tech Alliance, Cites China Threatsubmitted by Hotznplotzn to cybersecurity 1 points | 0 comments https://www.bloomberg.com/news/articles/2025-05-27/uk-envoy-urges-trans-atlantic-tech-alliance-cites-china-threat cross-posted from: lemmy.sdf.org/post/35480023 Archived […] Ambassador Peter Mandelson [UK ambassador …SH.ITJUST.WORKS
28 MayCzechia blames China for Ministry of Foreign Affairs cyberattackThe Czech Republic says the Chinese-backed APT31 hacking group was behind cyberattacks targeting the country's Ministry of Foreign Affairs and critical infrastructure organizations. [...]BLEEPINGCOMPUTER.COM
28 MayCzech Republic Blames China-Linked APT31 Hackers for 2022 CyberattackThe Czech Republic on Wednesday formally accused a threat actor associated with the People's Republic of China (PRC) of targeting its Ministry of Foreign Affairs. In a public statement, the government said it identified China as the culprit behind a malicious campaign targeting o…THEHACKERNEWS.COM
28 MaySem títulosubmitted by kid to cybersecurity 1 points | 0 comments https://securityaffairs.com/178399/apt/czech-republic-accuses-chinas-apt31-of-a-cyberattack-on-its-foreign-ministrys-unclassified-network.htmlSH.ITJUST.WORKS
28 MayInvest in Security or Watch It All Burn 🔥 #digitaldefenseWhen cybersecurity veteran Jeff Man speaks, the smart ones listen. In this clip, he breaks down the brutal truth behind cybersecurity investment — it’s not about if you’ll get breached, it’s about when. Jeff explains how companies gamble their future by skipping preventive measur…YOUTUBE.COM
🔥 INCIDENT REPORTING 12[−]
28 MayRobinhood Ransomware Operator Arrested for Attacks on Government and Private NetworksOn May 27, 2025, Iranian national Sina Gholinejad, 37, pleaded guilty in a North Carolina federal court to charges of computer fraud and conspiracy to commit wire fraud, admitting his central role in the international Robbinhood ransomware campaign that targeted U.S. cities, corp…GBHACKERS.COM
28 MayData broker giant LexisNexis says breach exposed personal information of over 364,000 peopleThe data collector said the stolen data includes Social Security numbers.TECHCRUNCH.COM
28 MayBotnet hacks 9,000+ ASUS routers to add persistent SSH backdoorOver 9,000 ASUS routers are compromised by a novel botnet dubbed "AyySSHush" that was also observed targeting SOHO routers from Cisco, D-Link, and Linksys. [...]BLEEPINGCOMPUTER.COM
28 May364,000 Impacted by Data Breach at LexisNexis Risk SolutionsData broker giant LexisNexis Risk Solutions says personal information was stolen from 364,000 people in a December 2024 data breach. The post 364,000 Impacted by Data Breach at LexisNexis Risk Solutions appeared first on SecurityWeek .SECURITYWEEK.COM
28 MayMATLAB dev confirms ransomware attack behind service outagesubmitted by kid to cybersecurity 1 points | 0 comments https://www.bleepingcomputer.com/news/security/mathworks-blames-ransomware-attack-for-ongoing-outages/SH.ITJUST.WORKS
28 MayIranian Hacker Pleads Guilty in $19 Million Robbinhood Ransomware Attack on BaltimoreAn Iranian national has pleaded guilty in the U.S. over his involvement in an international ransomware and extortion scheme involving the Robbinhood ransomware. Sina Gholinejad (aka Sina Ghaaf), 37, and his co-conspirators are said to have breached the computer networks of variou…THEHACKERNEWS.COM
28 MayInterlock ransomware gang deploys new NodeSnake RAT on universitiesThe Interlock ransomware gang is deploying a previously undocumented remote access trojan (RAT) named NodeSnake against educational institutes for persistent access to corporate networks. [...]BLEEPINGCOMPUTER.COM
28 MayInterlock ransomware gang deploys new NodeSnake RAT on universitiessubmitted by kid to cybersecurity 1 points | 0 comments https://www.bleepingcomputer.com/news/security/interlock-ransomware-gang-deploys-new-nodesnake-rat-on-universities/SH.ITJUST.WORKS
28 MayThis Camera Just Took Down an Entire Network 🎥💥When cybersecurity pros think they've seen it all… this happens. In this shocking short, a Linux-based device equipped with a seemingly innocent camera becomes the entry point for a devastating ransomware attack. The team dives into how the attack unfolded, why it worked, and jus…YOUTUBE.COM
28 MayMATLAB Maker MathWorks Recovering From Ransomware AttackThe incident impacted multiple web and mobile applications, licensing services, downloads and online store, website, wiki, MathWorks accounts, and other services. The post MATLAB Maker MathWorks Recovering From Ransomware Attack appeared first on SecurityWeek .SECURITYWEEK.COM
28 MayVictoria’s Secret hit by outages as it battles security incidentThe fashion retailer's outages began Monday.TECHCRUNCH.COM
28 MayCybersecurity’s Hidden Weapon: Interpretive ThinkingIn this short, cybersecurity strategist Matthew Alderman breaks down why interpretive thinking might be the most underrated tool in a security professional’s arsenal. Forget just asking “why”—this clip reveals the power of asking “so what?” to uncover deeper insights and outcomes…YOUTUBE.COM
🕵️ THREAT INTELLIGENCE 37[−]
28 MayDon't click on that Facebook ad for a text-to-AI-video toolsubmitted by PhilipTheBucket to cybersecurity 1 points | 0 comments https://go.theregister.com/feed/www.theregister.com/2025/05/27/fake_social_media_ads_ai_tool/SH.ITJUST.WORKS
28 MayISC Stormcast For Wednesday, May 28th, 2025 https://isc.sans.edu/podcastdetail/9468, (Wed, May 28th)(c) SANS Internet Storm Center. https://isc.sans.edu Creative Commons Attribution-Noncommercial 3.0 United States License.ISC.SANS.EDU
28 MayZero-Interaction libvpx Flaw in Firefox Allows Attackers to Run Arbitrary CodeMozilla has released Firefox 139, addressing several critical and moderate security vulnerabilities that posed significant risks to users. The update, announced on May 27, 2025, resolves issues ranging from memory corruption and local code execution to cross-origin data leaks, re…GBHACKERS.COM
28 MayChrome Security Patch Addresses High-Severity Vulnerabilities Enabling Code ExecutionThe Chrome team at Google has officially released Chrome 137 to the stable channel for Windows, Mac, and Linux platforms. This update, version 137.0.7151.55/56, brings a host of security improvements, bug fixes, and technical enhancements, reinforcing Chrome’s position as a leadi…GBHACKERS.COM
28 MayText-to-Malware: How Cybercriminals Weaponize Fake AI-Themed Websitessubmitted by Pro to cybersecurity 1 points | 0 comments https://cloud.google.com/blog/topics/threat-intelligence/cybercriminals-weaponize-fake-ai-websitesINFOSEC.PUB
28 MayINE Security And RedTeam Hacker Academy Announce Partnership To Advance Cybersecurity Skills In The Middle EastINE Security, a global cybersecurity training and certification provider, today announced a strategic partnership with RedTeam Hacker Academy through the signing of a Memorandum of Understanding (MoU). This agreement significantly accelerates INE Security’s expansion strate…GBHACKERS.COM
28 MayRSAC Fireside Chat: ‘Purple’ teams dismantle the reactive trap — and can help restore cyber readinessReactive security isn’t just outdated — it’s become a liability. Attackers have figured out how to weaponize speed, and defenders are struggling to keep pace. Related: Mastering adversary emulation At RSAC 2025 , I spoke with Derek Manky , Chief … (more…) The post RSAC Fire…LASTWATCHDOG.COM
28 MayThe Root of AI Hallucinations: Physics Theory Digs Into the ‘Attention’ FlawPhysicist Neil Johnson explores how fundamental laws of nature could explain why AI sometimes fails—and what to do about it. The post The Root of AI Hallucinations: Physics Theory Digs Into the ‘Attention’ Flaw appeared first on SecurityWeek .SECURITYWEEK.COM
28 MayHackers Circulate Over 93 Billion Stolen User Cookies on the Dark WebWeb cookies, those ubiquitous pop-ups we routinely dismiss with a click, are small text files stored on your device by websites you visit. While cookies are essential for a seamless browsing experience—remembering your login, shopping cart, or language preferences—they also serve…GBHACKERS.COM
28 MayChrome 137, Firefox 139 Patch High-Severity VulnerabilitiesGoogle and Mozilla released patches for Chrome and FireFox to address a total of 21 vulnerabilities between the two browsers, including three rated high severity. The post Chrome 137, Firefox 139 Patch High-Severity Vulnerabilities appeared first on SecurityWeek .SECURITYWEEK.COM
28 MayOneDrive Gives Web Apps Full Read Access to All FilesSecurity researchers warn that OneDrive’s file sharing tool may grant third-party web apps access to all your files—not just the one you choose to upload. The post OneDrive Gives Web Apps Full Read Access to All Files appeared first on SecurityWeek .SECURITYWEEK.COM
28 MaySilentWerewolf Attack Combines Legitimate Tools with Code Obfuscation for Stealthy InfiltrationThe threat actor dubbed SilentWerewolf has employed advanced phishing techniques to infiltrate organizations in Russia and Moldova, focusing on critical sectors such as nuclear energy, aircraft, and mechanical engineering. Starting on March 11, the first campaign used spearphishi…GBHACKERS.COM
28 MayVenomRAT Malware Introduces New Tools for Password Theft and Stealthy AccessA malicious cyber campaign leveraging VenomRAT, a potent Remote Access Trojan (RAT), has been uncovered, posing a significant threat to unsuspecting users through a deceptive website mimicking Bitdefender’s Antivirus for Windows download page. The fraudulent domain, “bitdefender-…GBHACKERS.COM
28 MayCyberheistNews Vol 15 #21 I Got This Coinbase-Related Scam in My Personal Inbox Last WeekKNOWBE4.COM
28 MayThreat Actors Weaponizing DCOM to Harvest Credentials on Windows SystemsThreat actors are now leveraging the often-overlooked Component Object Model (COM) and its distributed counterpart, Distributed Component Object Model (DCOM), to harvest credentials on Windows systems. As traditional red team methods like direct access to the Local Security Autho…GBHACKERS.COM
28 MayCerby Raises $40 Million for Identity Automation PlatformIdentity security automation platform Cerby has raised $40 million in Series B funding to scale operations. The post Cerby Raises $40 Million for Identity Automation Platform appeared first on SecurityWeek .SECURITYWEEK.COM
28 MayVietnamese Hackers Distribute Malware via Fake AI-Themed WebsitesMandiant warns that a Vietnamese hacking group tracked as UNC6032 is distributing malware via fake AI video generator websites. The post Vietnamese Hackers Distribute Malware via Fake AI-Themed Websites appeared first on SecurityWeek .SECURITYWEEK.COM
28 MayThreat Actors Weaponize Fake AI-Themed Websites to Deliver Python-based infostealersMandiant Threat Defense has uncovered a malicious campaign orchestrated by the threat group UNC6032, which capitalizes on the global fascination with artificial intelligence (AI). Since at least mid-2024, UNC6032 has been deploying fake AI video generator websites to distribute m…GBHACKERS.COM
28 MayZscaler to Acquire Red Canary, Enhancing AI-Powered Security OperationsZscaler, Inc. (NASDAQ: ZS), the global leader in cloud security, has announced a definitive agreement to acquire Red Canary, a top Managed Detection and Response (MDR) provider. This strategic move is set to transform security operations by integrating Zscaler’s AI-driven Zero Tr…GBHACKERS.COM
28 MayEvolution of Zanubis, a banking Trojan for Androidsubmitted by Pro to cybersecurity 2 points | 0 comments https://securelist.com/evolution-of-zanubis-banking-trojan-for-android/116588/INFOSEC.PUB
28 MayRussian APT28 Hackers Attacking NATO-aligned Organizations to Steal Sensitive DataRussia’s GRU-backed APT28, widely known as Fancy Bear, has intensified its cyber espionage campaign against NATO-aligned organizations. Active since at least 2007, this notorious threat actor has been attributed to a series of sophisticated attacks targeting critical infrastructu…GBHACKERS.COM
28 MayYou’re Paying for AI… Even If It Says FREE 🧠Everyone’s talking about how powerful AI is, but no one talks about the real cost behind it. In this short, Jackie McGuire breaks down how cloud providers offer AI tools that seem free—but the hidden costs are quietly passed onto users. This eye-opening clip pulls back the curtai…YOUTUBE.COM
28 MayCzech Government Condemns Chinese Hack on Critical InfrastructureThe Czech government issues a blunt warning to China after APT31 hackers linked to intrusion at critical infrastructure network. The post Czech Government Condemns Chinese Hack on Critical Infrastructure appeared first on SecurityWeek .SECURITYWEEK.COM
28 May94 billion browser cookies sold on Telegram | Cybernewssubmitted by kid to cybersecurity 1 points | 0 comments https://cybernews.com/security/stolen-browser-cookies-sold-telegram/SH.ITJUST.WORKS
28 MayApple Blocked 2 million Malicious App & $9 Billion in Fraudulent TransactionsApple has strengthened the App Store as a bulwark of confidence, a remarkable testament to its commitment to customer safety. According to the company’s annual fraud analysis, over the past five years, Apple has thwarted more than $9 billion in fraudulent transactions, with a sta…GBHACKERS.COM
28 MayGovernments Urge Organizations to Prioritize SIEM/SOAR Adoption - Infosecurity Magazinesubmitted by kid to cybersecurity 1 points | 0 comments https://www.infosecurity-magazine.com/news/governments-prioritize-siem-soar/SH.ITJUST.WORKS
28 MayDark Partners cybercrime gang fuels large-scale crypto heistsA sprawling network of fake AI, VPN, and crypto software download sites is being used by the "Dark Partner" threat actors to conduct a crypto theft attacks worldwide. [...]BLEEPINGCOMPUTER.COM
28 MayCortex XDR Named 2025 Gartner Customers’ Choice for Endpoint Security98% of reviewers recommend Palo Alto Networks industry-leading security, Cortex XDR, as Gartner Customers' Choice for Endpoint Protection Platforms. The post Cortex XDR Named 2025 Gartner Customers’ Choice for Endpoint Security appeared first on Palo Alto Networks Blog .PALOALTONETWORKS.COM
28 MayZanubis Android Malware Harvests Banking Credentials and Executes Remote CommandsThe Zanubis Android banking Trojan has evolved into a highly sophisticated threat, initially targeting financial institutions in Peru before expanding its scope to virtual cards and cryptocurrency wallets. This malware, known for impersonating legitimate Peruvian Android apps, tr…GBHACKERS.COM
28 MayNew Russia-affiliated actor Void Blizzard targets critical sectors for espionage | Microsoft Security Blogsubmitted by kid to cybersecurity 1 points | 0 comments https://www.microsoft.com/en-us/security/blog/2025/05/27/new-russia-affiliated-actor-void-blizzard-targets-critical-sectors-for-espionage/SH.ITJUST.WORKS
28 MayGitHub becomes go-to platform for malware delivery across Europe - Help Net Securitysubmitted by kid to cybersecurity 1 points | 0 comments https://www.helpnetsecurity.com/2025/05/28/attackers-phishing-method-europe/SH.ITJUST.WORKS
28 MayMicrosoft OneDrive File Picker Flaw Grants Apps Full Cloud Access — Even When Uploading Just One Filesubmitted by kid to cybersecurity 2 points | 0 comments https://thehackernews.com/2025/05/microsoft-onedrive-file-picker-flaw.htmlSH.ITJUST.WORKS
28 MayThis Cybersecurity Pioneer Just Pulled Up at BSides 👨💻At BSides San Francisco, Jeff Man had no idea he'd cross paths with a living legend — Dan Farmer, one of the pioneers of cybersecurity. While casually strolling the vendor floor, he spotted the iconic thick, curly red hair and instantly knew. What followed was an unexpected reuni…YOUTUBE.COM
28 MayBotnet hacks 9,000+ ASUS routers to add persistent SSH backdoorsubmitted by kid to cybersecurity 2 points | 0 comments https://www.bleepingcomputer.com/news/security/botnet-hacks-9-000-plus-asus-routers-to-add-persistent-ssh-backdoor/SH.ITJUST.WORKS
28 MayWhy CVSS Scores Might Be Useless in 2025Cybersecurity experts are finally saying it: CVSS scores might be completely useless by 2025. In this short, Adrian explains why thousands of vulnerabilities are ignored just because they don’t have a CVE — and how that blind spot could be putting companies at serious risk. Backe…YOUTUBE.COM
28 MayTexas Cyber Command will mean ‘expanding’ cybersecurity help, state official sayssubmitted by Amoxtli to cybersecurity 1 points | 0 comments https://www.route-fifty.com/cybersecurity/2025/05/texas-cyber-command-will-mean-expanding-cybersecurity-help-state-official-says/405627/SH.ITJUST.WORKS
28 MayAPT41 malware abuses Google Calendar for stealthy C2 communicationThe Chinese APT41 hacking group uses a new malware named 'ToughProgress' that abuses Google Calendar for command-and-control (C2) operations, hiding malicious activity behind a trusted cloud service. [...]BLEEPINGCOMPUTER.COM
🌐 CYBER THREAT LANDSCAPE 4[−]
28 MayFrom Infection to Access: A 24-Hour Timeline of a Modern Stealer CampaignStealer malware no longer just steals passwords. In 2025, it steals live sessions—and attackers are moving faster and more efficiently than ever. While many associate account takeovers with personal services, the real threat is unfolding in the enterprise. Flare’s latest research…THEHACKERNEWS.COM
28 MayBeware of the fake KeePass | Kaspersky official blogHow initial access brokers were stealing passwords via a trojanized KeePass password managerKASPERSKY.COM
28 MayPakistan Arrests 21 in ‘Heartsender’ Malware ServiceAuthorities in Pakistan have arrested 21 individuals accused of operating "Heartsender," a once popular spam and malware dissemination service that operated for more than a decade. The main clientele for HeartSender were organized crime groups that tried to trick victim companies…KREBSONSECURITY.COM
28 MaySmashing Security podcast #419: Star Wars, the CIA, and a WhatsApp malware mirageWhy is a cute Star Wars fan website now redirecting to the CIA? How come Cambodia has become the world's hotspot for scam call centres? And can a WhatsApp image really drain your bank account with a single download, or is it just a load of hacker hokum? All this and much more is …GRAHAMCLULEY.COM
📡 INFOSEC NEWS 10[−]
28 MayHow 'Browser-in-the-Middle' Attacks Steal Sessions in SecondsWould you expect an end user to log on to a cybercriminal’s computer, open their browser, and type in their usernames and passwords? Hopefully not! But that’s essentially what happens if they fall victim to a Browser-in-the-Middle (BitM) attack. Like Man-in-the-Middle (MitM) atta…THEHACKERNEWS.COM
28 MayApple blocked over $9 billion in App Store fraud in five yearsApple says it blocked over $9 billion in fraudulent App Store transactions over the last five years, with over $2 billion in potentially fraudulent sanctions prevented in 2024 alone. [...]BLEEPINGCOMPUTER.COM
28 MayMicrosoft wants Windows to update all software on your PCMicrosoft has introduced a new update orchestration platform built on the existing Windows Update infrastructure, which aims to unify the updating system for all apps, drivers, and system components on Windows systems. [...]BLEEPINGCOMPUTER.COM
28 MayMicrosoft introduces new Windows backup tool for businessesMicrosoft has introduced Windows Backup for Organizations, a new backup tool for enterprises that simplifies backups and makes the transition to Windows 11 easier. [...]BLEEPINGCOMPUTER.COM
28 May[Guest Diary] Exploring a Use Case of Artificial Intelligence Assistance with Understanding an Attack, (Wed, May 28th)[This is a Guest Diary by Jennifer Wilson, an ISC intern as part of the SANS.edu Bachelor&#;39;s Degree in Applied Cybersecurity (BACS) program [1].]
ISC.SANS.EDU
28 MayThe CISO Who Chose Family Over FortuneThis veteran CISO spent years leading cybersecurity transformations, fighting corporate battles, and securing global networks. But when the time came, he made an unexpected decision—he stepped back. Instead of chasing the next big challenge, he prioritized mentoring the next gene…YOUTUBE.COM
28 MayWhen Your Cloud IDE Goes Down… You’re Stuck!When his cloud IDE suddenly went down, this developer found himself completely stuck. 😬 With no control over the outage, he was left waiting—wasting time and losing productivity. Cloud IDEs offer convenience, but at what cost? Latency, availability, and unexpected downtime can le…YOUTUBE.COM
28 MaySecurity startup Horizon3.ai is raising $100M in new roundHorizon3.ai, a cybersecurity startup that provides tools like autonomous penetration testing, is seeking to raise $100 million in a new funding round and has locked down at least $73 million, the company revealed in an SEC filing this week. NEA led the round, according to two peo…TECHCRUNCH.COM
28 MayWindows 11 KB5058499 update rolls out new Share and Click to Do featuresMicrosoft has released the KB5058499 preview cumulative update for Windows 11 24H2 with forty-eight new features or changes, with many gradually rolling out, such as the new Windows Share feature and tje Click to Do Preview. [...]BLEEPINGCOMPUTER.COM
28 MayWindows 10 KB5058481 update brings seconds back to calendar flyoutMicrosoft has released the optional KB5058481 preview cumulative update for Windows 10 22H2 with seven changes, including restoring seconds to the time display in the calendar flyout for those who previously lost it. [...]BLEEPINGCOMPUTER.COM