🐛 COMMON VULNERABILITIES AND EXPOSURES 13[−]
29 MayMassive Botnet Targets ASUS Routers by Injecting Malicious SSH KeysGreyNoise Research has publicly disclosed a sophisticated cyberattack campaign that has compromised over 9,000 ASUS routers worldwide. First detected by GreyNoise’s proprietary AI-powered analysis tool, Sift, on March 18, 2025, the campaign leverages a combination of brute-force …GBHACKERS.COM
29 MayDragonForce Exploits SimpleHelp Flaws to Deploy Ransomware Across Customer EndpointsThe threat actors behind the DragonForce ransomware gained access to an unnamed Managed Service Provider's (MSP) SimpleHelp remote monitoring and management (RMM) tool, and then leveraged it to exfiltrate data and drop the locker on multiple endpoints. It's believed that the atta…THEHACKERNEWS.COM
29 MayCritical Argo CD Flaw Exposes Kubernetes Clusters to Full Resource ManipulationA critical cross-site scripting (XSS) vulnerability, officially tracked as CVE-2025-47933 and GHSA-2hj5-g64g-fp6p, has been identified in Argo CD, a widely used open-source GitOps tool for Kubernetes. This flaw affects the repository URL handling mechanism in the Argo CD user int…GBHACKERS.COM
29 MayWindows 11 File Explorer Vulnerability Enables NTLM Hash TheftA newly disclosed vulnerability, CVE-2025-24071, has been identified in Windows File Explorer, specifically affecting Windows 11 (23H2) and earlier versions that support .library-ms files and the SMB protocol. This flaw enables attackers to capture NTLM (New Technology LAN Manage…GBHACKERS.COM
29 MayApache InLong JDBC Vulnerability Enables Deserialization of Untrusted DataA moderate-severity vulnerability, tracked as CVE-2025-27522, has been disclosed in Apache InLong, a popular data integration platform. The flaw, affecting versions 1.13.0 through 2.1.0, centers on the deserialization of untrusted data during JDBC (Java Database Connectivity) ver…GBHACKERS.COM
29 MayChromium: CVE-2025-5066 Inappropriate implementation in MessagesThis CVE was assigned by Chrome. Microsoft Edge (Chromium-based) ingests Chromium, which addresses this vulnerability. Please see [Google Chrome Releases](https://chromereleases.googleblog.com/202[SS9.1]5) for more information.MSRC.MICROSOFT.COM
29 MayChromium: CVE-2025-5067 Inappropriate implementation in Tab StripThis CVE was assigned by Chrome. Microsoft Edge (Chromium-based) ingests Chromium, which addresses this vulnerability. Please see [Google Chrome Releases](https://chromereleases.googleblog.com/202[SS9.1]5) for more information.MSRC.MICROSOFT.COM
29 MayChromium: CVE-2025-5283 Use after free in libvpxThis CVE was assigned by Chrome. Microsoft Edge (Chromium-based) ingests Chromium, which addresses this vulnerability. Please see [Google Chrome Releases](https://chromereleases.googleblog.com/202[SS9.1]5) for more information.MSRC.MICROSOFT.COM
29 MayChromium: CVE-2025-5281 Inappropriate implementation in BFCacheThis CVE was assigned by Chrome. Microsoft Edge (Chromium-based) ingests Chromium, which addresses this vulnerability. Please see [Google Chrome Releases](https://chromereleases.googleblog.com/202[SS9.1]5) for more information.MSRC.MICROSOFT.COM
29 MayChromium: CVE-2025-5065 Inappropriate implementation in FileSystemAccess APIThis CVE was assigned by Chrome. Microsoft Edge (Chromium-based) ingests Chromium, which addresses this vulnerability. Please see [Google Chrome Releases](https://chromereleases.googleblog.com/202[SS9.1]5) for more information.MSRC.MICROSOFT.COM
29 MayChromium: CVE-2025-5064 Inappropriate implementation in Background Fetch APIThis CVE was assigned by Chrome. Microsoft Edge (Chromium-based) ingests Chromium, which addresses this vulnerability. Please see [Google Chrome Releases](https://chromereleases.googleblog.com/202[SS9.1]5) for more information.MSRC.MICROSOFT.COM
29 MayChromium: CVE-2025-5280 Out of bounds write in V8This CVE was assigned by Chrome. Microsoft Edge (Chromium-based) ingests Chromium, which addresses this vulnerability. Please see [Google Chrome Releases](https://chromereleases.googleblog.com/202[SS9.1]5) for more information.MSRC.MICROSOFT.COM
29 MayChromium: CVE-2025-5063 Use after free in CompositingThis CVE was assigned by Chrome. Microsoft Edge (Chromium-based) ingests Chromium, which addresses this vulnerability. Please see [Google Chrome Releases](https://chromereleases.googleblog.com/202[SS9.1]5) for more information.MSRC.MICROSOFT.COM
⚠️ VULNERABILITY DISCLOSURE 29[−]
29 MayOver 100,000 WordPress Sites at Risk from Critical CVSS 10.0 Vulnerability in Wishlist PluginCybersecurity researchers have disclosed a critical unpatched security flaw impacting TI WooCommerce Wishlist plugin for WordPress that could be exploited by unauthenticated attackers to upload arbitrary files. TI WooCommerce Wishlist, which has over 100,000 active installations,…THEHACKERNEWS.COM
29 May6 rising malware trends every security pro should knowMalware is evolving rapidly, driven by advances in AI and changes in computing infrastructures. Security professionals must continuously educate themselves on these trends to defend against increasingly sophisticated threats. The traditional game of cat and mouse between security…CSOONLINE.COM
29 MayAPT Hackers Turn Google Calendar Into Command Hub Using TOUGHPROGRESS Malware, Google AlertsGoogle Threat Intelligence Group (GTIG), a sophisticated malware campaign dubbed “TOUGHPROGRESS” has been uncovered, orchestrated by the notorious PRC-based threat actor APT41, also known as HOODOO. Identified in late October 2024, this campaign exploits a compromised…GBHACKERS.COM
29 MayCritical OneDrive Flaw Lets Malicious Websites Access All Your FilesA newly revealed vulnerability in Microsoft’s OneDrive File Picker has placed millions of users at risk, enabling popular web applications, including ChatGPT, Slack, Trello, and ClickUp, to gain full read access to users’ entire OneDrive accounts. The flaw, uncovered by the Oasis…GBHACKERS.COM
29 MayChinese APT41 Exploits Google Calendar for Malware Command-and-Control OperationsGoogle on Wednesday disclosed that the Chinese state-sponsored threat actor known as APT41 leveraged a malware called TOUGHPROGRESS that uses Google Calendar for command-and-control (C2). The tech giant, which discovered the activity in late October 2024, said the malware was hos…THEHACKERNEWS.COM
29 MayWoodpecker: Red Teaming Tool Targets AI, Kubernetes, and API VulnerabilitiesOperant AI has announced the release of Woodpecker, an open-source automated red teaming engine designed to make advanced security testing accessible to organizations of all sizes. Traditionally, red teaming—simulated cyberattacks conducted by ethical hackers to uncover vulnerabi…GBHACKERS.COM
29 MayNew ChoiceJacking Exploit Targets Android and iOS via Infected Charging PortsA team of cybersecurity researchers from the Institute of Information Security and A-SIT Secure Information Technology Centre Austria has unveiled a new class of USB-based attacks on mobile devices, dubbed “ChoiceJacking.” This attack revives and surpasses the notorious “juice ja…GBHACKERS.COM
29 MayCritical Dell PowerStore T Vulnerability Allows Full System CompromiseAs part of its ongoing commitment to product security, Dell Technologies has released a significant update for the PowerStore T family, remediating a series of vulnerabilities that could be exploited by malicious actors to compromise affected systems. The update, detailed in advi…GBHACKERS.COM
29 MayUTG-Q-015 Hackers Launch Massive Brute-Force Attacks on Government Web ServersThe hacker group UTG-Q-015, first identified in December 2024 for mounting attacks on major websites like CSDN, has escalated its malicious activities, targeting government and enterprise web servers with unprecedented aggression. Initially disclosed for their tactics of website …GBHACKERS.COM
29 MayMicrosoft Entra’s billing roles pose privilege escalation risks in AzureThreat actors can abuse one of Microsoft Entra’s by-design features, the software giant’s cloud-based identity and access management service, to gain persistence and escalate privilege inside a target Azure account. According to a BeyondTrust discovery, Entra (formerly Azure Acti…CSOONLINE.COM
29 MayHackers Exploit Cloudflare Tunnels to Launch Stealthy CyberattacksThe cybersecurity landscape, malicious actors, including notorious ransomware groups like BlackSuit, Royal, Akira, Scattered Spider, Medusa, and Hunters International, have been exploiting Cloudflared, a legitimate tunneling tool by Cloudflare, to orchestrate stealthy cyberattack…GBHACKERS.COM
29 MayNew PumaBot Hijacks IoT Devices via SSH Brute-Force for Persistent AccessA sophisticated new malware, dubbed PumaBot, has emerged as a significant threat to Internet of Things (IoT) devices worldwide. Cybersecurity researchers have identified this malicious software as a highly advanced botnet that exploits weak security configurations in IoT ecosyste…GBHACKERS.COM
29 MayFullscreen BitM Attack Discovered by SquareX Exploits Browser Fullscreen APIs to Steal Credentials in SafariToday, SquareX released new threat research on an advanced Browser-in-the-Middle (BitM) attack targeting Safari users. As highlighted by Mandiant, adversaries have been increasingly using BitM attacks to steal credentials and gain unauthorized access to enterprise SaaS apps. BitM…GBHACKERS.COM
29 MayEven $5M a year can’t keep top CISOs happyAt least one lucky US CISO earned around $5 million last year, according to a new survey, but the reality is that the average compensation for CISOs at the largest US enterprises was nearer $500,000 — and despite the good money, many were dissatisfied. The numbers come from the 2…CSOONLINE.COM
29 MayWho's Watching the Vendors? Spoiler: No One.No one's checking. No one's responsible. In this clip, veteran cybersecurity experts break down the terrifying truth behind modern e-commerce and why third-party vendors are a ticking time bomb. As supply chain attacks surge, the blame gets passed around like a hot potato—until i…YOUTUBE.COM
29 MayCybercriminals exploit AI hype to spread ransomware, malwareThreat actors linked to lesser-known ransomware and malware projects now use AI tools as lures to infect unsuspecting victims with malicious payloads. [...]BLEEPINGCOMPUTER.COM
29 MayGreyNoise Flags 9,000 ASUS Routers Backdoored Via Patched VulnerabilityProfessional hackers have built a network of ASUS routers that can survive firmware upgrades, factory reboots and most anti-malware scans. The post GreyNoise Flags 9,000 ASUS Routers Backdoored Via Patched Vulnerability appeared first on SecurityWeek .SECURITYWEEK.COM
29 MayDo you actually audit open source projects you download?submitted by OhVenus_Baby to cybersecurity 1 points | 0 comments cross-posted from: lemmy.ml/post/30846707 cross-posted from: lemmy.ml/post/30846701 The question is simple. I wanted to get a general consensus on if people actually audit the code that they use from FOSS or open so…SH.ITJUST.WORKS
29 MayThis Grandma’s Webcam Just Became a Security NightmareWhen grandma plugged in her old 2021 webcam, she had no idea it was already a ticking time bomb. With support long gone and vulnerabilities left unpatched, this everyday device turned into a backdoor for hackers. In a world where cast iron pans outlast tech, this short exposes th…YOUTUBE.COM
29 MayHackers Exploit Cloudflare Tunnels to Launch Stealthy Cyberattackssubmitted by kid to cybersecurity 2 points | 0 comments https://gbhackers.com/hackers-exploit-cloudflare-tunnels/SH.ITJUST.WORKS
29 MayThreat Actors Exploit Top Domain Zones for Cyber Attackssubmitted by kid to cybersecurity 1 points | 0 comments https://cybersecuritynews.com/threat-actors-exploit-top-domain-zones/SH.ITJUST.WORKS
29 MayCISA Releases Five Industrial Control Systems AdvisoriesCISA released five Industrial Control Systems (ICS) advisories on May 29, 2025. These advisories provide timely information about current security issues, vulnerabilities, and exploits surrounding ICS. ICSA-25-148-01 Siemens SiPass ICSA-25-148-02 Siemens SiPass Integrated ICSA-25…CISA.GOV
29 MayThreat Actors Exploit Nifty[.]com Infrastructure in Sophisticated Phishing AttackThreat actors have orchestrated a multi-wave phishing campaign between April and May 2025, leveraging the legitimate infrastructure of Nifty[.]com, a prominent Japanese Internet Service Provider (ISP), to execute their attacks. Uncovered by Raven, a leading threat detection entit…GBHACKERS.COM
29 MayScammers Exploit Uncertainty Surrounding US TariffsCybersecurity experts are warning that scammers are taking advantage of uncertainty surrounding the U.S. administration’s tariff policies, CNBC reports.KNOWBE4.COM
29 MayCapital One Customers Targeted By Credential Harvesting Phishing CampaignThe KnowBe4 Threat Lab has identified an active phishing campaign impersonating Capital One.KNOWBE4.COM
29 MayPing. Inject. Own. Classic IoT Fail ExplainedIn this short, cybersecurity veteran Paul breaks down one of the most embarrassingly common flaws in IoT systems—an authenticated command injection hidden in the ping feature of web interfaces. It’s Security 101, yet it still plagues devices everywhere. Sam can’t help but laugh, …YOUTUBE.COM
29 MayIt's A Trap! - PSW #876In the security news: * Vicious Trap - The malware hiding in your router * Hacking your car * WSL is open-source, but why? * Using AI to find vulnerabilities - a case study * Why you should not build your own password manager * The inside scoop behind Lumma Infostealer * Hacking …YOUTUBE.COM
29 MayPoisoned models in fake Alibaba SDKs show challenges of securing AI supply chainsDevelopers have been increasingly targeted by attackers in recent years with fake software packages on open-source component repositories — a supply chain attack technique that has now expanded to include rogue AI frameworks and poisoned machine learning (ML) models as enterprise…CSOONLINE.COM
29 MayWarning: Threat actors now abusing Google Apps Script in phishing attacksThreat actors have discovered a way to abuse Google Apps Scripts to sneak links to malicious websites past phishing defenses. According to new research from Cofense , a new attack has been discovered where, if an employee clicks on a link in a phishing email, they get taken to a …CSOONLINE.COM
📋 SECURITY BULLETINS 1[−]
29 MayMicrosoft: Windows 11 might fail to start after installing KB5058405Microsoft has confirmed that some Windows 11 systems might fail to start after installing the KB5058405 security update released during this month's Patch Tuesday. [...]BLEEPINGCOMPUTER.COM
📢 SECURITY ADVISORIES 2[−]
29 MayCISA Releases Dedicated SIEM & SOAR Guide for Cybersecurity ProfessionalsSecurity Information and Event Management (SIEM) platforms are essential for detecting, analyzing, and responding to cybersecurity threats in real time. However, the effectiveness of a SIEM system depends heavily on the quality and prioritization of logs ingested. This article ex…GBHACKERS.COM
29 MayYou Call That Age Verification? 😂 #cybersecurityfailSome companies are still using photos of Trump or Half-Life’s G-Man to pass off as legit age verification—and cybersecurity pros are losing it 😂. In this hilarious but eye-opening clip, Adrian Sanabria and Sean Metcalf react to the laziest attempt at compliance you’ll see all yea…YOUTUBE.COM
🔥 INCIDENT REPORTING 13[−]
29 MayRisk assessment vital when choosing an AI model, say expertsAlmost every organization is using an AI platform these days. Large language models (LLMs) are either being integrated into existing applications, come with new applications, are being tried by employees, or being selected for addition into workflows. However, warn cybersecurity …CSOONLINE.COM
29 MayData broker LexisNexis discloses data breach affecting 364,000 peopleData broker giant LexisNexis Risk Solutions has revealed that unknown attackers stole the personal information of over 364,000 individuals in a December breach. [...]BLEEPINGCOMPUTER.COM
29 MayVictoria’s Secret Website Taken Offline After Cybersecurity BreachVictoria’s Secret, the iconic lingerie retailer, has taken its US website offline and suspended some in-store services following a major cybersecurity incident. Customers attempting to access the site since Monday have been greeted with a black screen and a terse message: “We ide…GBHACKERS.COM
29 MayAdidas Data Breach Linked to Third-Party VendorAdidas said hackers accessed a “third-party customer service provider” and stole customer information. The post Adidas Data Breach Linked to Third-Party Vendor appeared first on SecurityWeek .SECURITYWEEK.COM
29 MayVictoria’s Secret takes down website after security incidentVictoria's Secret, the fashion giant, has taken down its website and some store services because of an ongoing security incident [...]BLEEPINGCOMPUTER.COM
29 MayVictoria’s Secret Website Taken Offline After CyberattackWebsite remains offline following suspected cyber incident, as experts warn of escalating threats targeting major retailers The post Victoria’s Secret Website Taken Offline After Cyberattack appeared first on SecurityWeek .SECURITYWEEK.COM
29 May364,000 Impacted by Data Breach at LexisNexis Risk Solutions - SecurityWeeksubmitted by kid to cybersecurity 1 points | 0 comments https://www.securityweek.com/364000-impacted-by-data-breach-at-lexisnexis-risk-solutions/SH.ITJUST.WORKS
29 MayRE/MAX allegedly hit by hacker attack | Cybernewssubmitted by kid to cybersecurity 1 points | 0 comments https://cybernews.com/security/medusa-ransomware-threatens-release-remax-data/SH.ITJUST.WORKS
29 MayNew Windows RAT Evades Detection for Weeks Using Corrupted DOS and PE HeadersCybersecurity researchers have taken the wraps off an unusual cyber attack that leveraged malware with corrupted DOS and PE headers, according to new findings from Fortinet. The DOS (Disk Operating System) and PE (Portable Executable) headers are essential parts of a Windows PE f…THEHACKERNEWS.COM
29 MayCybercriminals Target AI Users with Malware-Loaded Installers Posing as Popular ToolsFake installers for popular artificial intelligence (AI) tools like OpenAI ChatGPT and InVideo AI are being used as lures to propagate various threats, such as the CyberLock and Lucky_Gh0$t ransomware families, and a new malware dubbed Numero. "CyberLock ransomware, developed usi…THEHACKERNEWS.COM
29 MayInterlock Ransomware Uses NodeSnake RAT for Persistent Access to Corporate NetworksIn a two UK-based universities have fallen victim to a sophisticated Remote Access Trojan (RAT) dubbed NodeSnake within the past two months. According to analysis by Quorum Cyber’s Threat Intelligence (QCTI) team Report, this malware, likely deployed by the ransomware group Inter…GBHACKERS.COM
29 MayConnectWise breached in cyberattack linked to nation-state hackersIT management software firm ConnectWise says a suspected state-sponsored cyberattack breached its environment and impacted a limited number of ScreenConnect customers. [...]BLEEPINGCOMPUTER.COM
29 MayWhen Code Becomes the Enemy 🧠💻When AI starts behaving like a threat from within, cybersecurity isn’t just about protecting networks—it’s about watching the very tools designed to help us. In this short, cybersecurity expert Mike questions whether LLMs could evolve into a new class of insider threat. Jeff Man …YOUTUBE.COM
🕵️ THREAT INTELLIGENCE 28[−]
29 MayAlternate Data Streams ? Adversary Defense Evasion and Detection [Guest Diary], (Wed, May 28th)[This is a Guest Diary by Ehsaan Mavani, an ISC intern as part of the SANS.edu BACS program]
ISC.SANS.EDU
29 MayThousands of Asus routers are being hit with stealthy, persistent backdoorssubmitted by PhilipTheBucket to cybersecurity 3 points | 0 comments https://arstechnica.com/security/2025/05/thousands-of-asus-routers-are-being-hit-with-stealthy-persistent-backdoors/SH.ITJUST.WORKS
29 MayISC Stormcast For Thursday, May 29th, 2025 https://isc.sans.edu/podcastdetail/9470, (Thu, May 29th)(c) SANS Internet Storm Center. https://isc.sans.edu Creative Commons Attribution-Noncommercial 3.0 United States License.ISC.SANS.EDU
29 MayGreyNoise Discovers Stealthy Backdoor Campaign Affecting Thousands of ASUS Routerssubmitted by Pro to cybersecurity 1 points | 0 comments https://www.greynoise.io/blog/stealthy-backdoor-campaign-affecting-asus-routers Full analysis .INFOSEC.PUB
29 MayMalicious WordPress Plugin Disguised as Java Update Infects Site VisitorsA troubling new cyber threat has emerged targeting WordPress websites, where a malicious plugin masquerading as a legitimate tool tricks visitors into downloading harmful software. Disguised as “Yoast SEO” with convincing metadata, this plugin was recently uncovered in the /wp-co…GBHACKERS.COM
29 MayBeyond GenAI: Why Agentic AI Was the Real Conversation at RSA 2025Agentic AI can be a great tool for many of the ‘gray area’ tasks that SOC analysts undertake. The post Beyond GenAI: Why Agentic AI Was the Real Conversation at RSA 2025 appeared first on SecurityWeek .SECURITYWEEK.COM
29 MayNew Spear-Phishing Campaign Targets Financial Executives with NetBird MalwareTrellix’s email security systems detected a highly targeted spear-phishing campaign aimed at CFOs and finance executives across industries like banking, energy, insurance, and investment firms in regions spanning Europe, Africa, Canada, the Middle East, and South Asia. This…GBHACKERS.COM
29 MayRSAC Fireside Chat: Cyber risk mitigation turns personal–defending the CEO as an attack vectorExecutives are under digital siege— and most don’t even know it . Related: Shareholders sue over murder At RSAC 2025, I sat down with Chuck Randolph , SVP of Strategic Intelligence and Security at 360 Privacy , to unpack a … (more…) The post RSAC Fireside Chat: Cyber …LASTWATCHDOG.COM
29 MayNew Research Reveals Key TCP SYN Patterns for Detecting Malicious ActivityA groundbreaking study by NETSCOUT, utilizing data from their honeypot systems designed to capture unsolicited internet traffic, has shed light on the intricate patterns within Transmission Control Protocol (TCP) SYN segments the initial step in the TCP three-way handshake. Publi…GBHACKERS.COM
29 MayWebinar Today: Why Context is a Secret Weapon in Application Security Posture ManagementJoin the live webinar to understand why data in itself is not enough to make informed decisions for prioritization. The post Webinar Today: Why Context is a Secret Weapon in Application Security Posture Management appeared first on SecurityWeek .SECURITYWEEK.COM
29 MaySurveillance Via Smart ToothbrushThe only links are from The Daily Mail and The Mirror , but a marital affair was discovered because the cheater was recorded using his smart toothbrush at home when he was supposed to be at work.SCHNEIER.COM
29 MayImproving National Security Through Secure AIWendi Whitmore spoke on a panel of witnesses at a field hearing at Stanford’s Hoover Institution on May 28, outlining the AI innovations our team developed. The post Improving National Security Through Secure AI appeared first on Palo Alto Networks Blog .PALOALTONETWORKS.COM
29 MaySem títulosubmitted by kid to cybersecurity 1 points | 0 comments https://therecord.media/cork-protocol-defi-12million-crypto-theftSH.ITJUST.WORKS
29 MayData leak exposes 1.6M Etsy customer emails | Cybernewssubmitted by kid to cybersecurity 1 points | 0 comments https://cybernews.com/security/etsy-tiktok-shop-customer-data-leak/SH.ITJUST.WORKS
29 MayNew Microsoft Entra Connect Update Replaces Legacy Login MethodsQuantum computing is rapidly emerging as one of the most transformative technology trends of 2025, promising to revolutionize industries by solving complex problems that are currently beyond the reach of classical computers. Unlike traditional computers that process information i…GBHACKERS.COM
29 MayDark Partner Hackers Leverage Fake AI, VPN, and Crypto Sites to Target macOS and Windows UsersA group dubbed “Dark Partners” by cybersecurity researchers has launched a sophisticated malware campaign targeting both macOS and Windows users through a network of deceptive websites impersonating well-known AI, VPN, and software brands. This operation, which has be…GBHACKERS.COM
29 MayCriminal IP Set to Make Its Debut at Infosecurity Europe 2025Criminal IP, the AI-powered threat intelligence platform developed by AI SPERA (led by CEO Byungtak Kang), has announced its first participation in Infosecurity Europe 2025, the largest cybersecurity conference in Europe. The event will take place from June 3 to 5, 2025, at ExCeL…GBHACKERS.COM
29 MayAPT41 malware abuses Google Calendar for stealthy C2 communicationsubmitted by kid to cybersecurity 1 points | 0 comments https://www.bleepingcomputer.com/news/security/apt41-malware-abuses-google-calendar-for-stealthy-c2-communication/SH.ITJUST.WORKS
29 MayApple Safari exposes users to fullscreen browser-in-the-middle attacksA weakness in Apple's Safari web browser allows threat actors to leverage the fullscreen browser-in-the-middle (BitM) technique to steal account credentials from unsuspecting users. [...]BLEEPINGCOMPUTER.COM
29 MayChinese Hacking Group ‘Earth Lamia’ Targets Multiple IndustriesActive since at least 2023, the hacking group has been targeting the financial, government, IT, logistics, retail, and education sectors. The post Chinese Hacking Group ‘Earth Lamia’ Targets Multiple Industries appeared first on SecurityWeek .SECURITYWEEK.COM
29 MayUnbound Raises $4 Million to Secure Gen-AI AdoptionSecurity startup Unbound has raised $4 million in funding to help organizations adopt generative-AI tools securely and responsibly. The post Unbound Raises $4 Million to Secure Gen-AI Adoption appeared first on SecurityWeek .SECURITYWEEK.COM
29 MayThreat actors abuse Google Apps Script in evasive phishing attacksThreat actors are abusing the trusted Google platform 'Google Apps Script' to host phishing pages, making them appear legitimate and eliminating the risk of them getting flagged by security tools. [...]BLEEPINGCOMPUTER.COM
29 MayHow to deploy AI safelyMicrosoft Deputy CISO Yonatan Zunger shares tips and guidance for safely and efficiently implementing AI in your organization. The post How to deploy AI safely appeared first on Microsoft Security Blog .MICROSOFT.COM
29 MayPureHVNC RAT Uses Fake Job Offers and PowerShell to Evade Security DefensesA new and highly evasive malware campaign delivering the PureHVNC Remote Access Trojan (RAT) has been identified by Netskope Threat Labs, showcasing a complex multi-layer infection chain designed to bypass modern security defenses. This campaign, active in 2024, leverages fake jo…GBHACKERS.COM
29 MayDefending against evolving identity attack techniquesThreat actors continue to develop and leverage various techniques that aim to compromise cloud identities. Despite advancements in protections like multifactor authentication (MFA) and passwordless solutions, social engineering remains a key aspect of phishing attacks. Implementi…MICROSOFT.COM
29 MayAntivirus ≠ EDR. Stop Mixing Them Up.Most IT teams still think antivirus and EDR are the same... but cybersecurity pro Adrian breaks it down with brutal clarity. EDR and AV may come bundled, but they're totally different beasts under the hood. In this short, he exposes why this confusion is hurting security teams an…YOUTUBE.COM
29 MayThe Shiny Object Syndrome Is Killing CybersecurityCybersecurity expert Ben Carr breaks down a hard truth: the industry is addicted to the next shiny thing. Instead of finishing critical security implementations, teams jump from one trend to another—leaving core systems vulnerable. In this short, he calls it out with brutal hones…YOUTUBE.COM
29 MayFriday Squid Blogging: NGC 1068 Is the “Squid Galaxy”I hadn’t known that the NGC 1068 galaxy is nicknamed the “Squid Galaxy.” It is, and it’s spewing neutrinos without the usual accompanying gamma rays.SCHNEIER.COM
📡 INFOSEC NEWS 9[−]
29 MayAttackers are mapping your attack surface—are you?Attackers are mapping your infrastructure before you even realize what's exposed. Sprocket ASM flips the script — giving you the same recon capabilities they use, plus change detection and actionable insights to close gaps fast. See your attack surface the way hackers do and beat…BLEEPINGCOMPUTER.COM
29 MayA decade in, bootstrapped Thinkst Canary reaches $20M in ARR without VC fundingReflecting on 10 years since its launch, the honeypot maker explains why the company did not take on any VC funding.TECHCRUNCH.COM
29 May57 suspicious Chrome extensions with millions of installs | Kaspersky official blog57 suspicious extensions with millions of installs have been found in the Chrome Web Store. Here's how they work, and why you need to remove them.KASPERSKY.COM
29 MayUS sanctions firm linked to cyber scams behind $200 million in lossesThe U.S. Treasury Department has sanctioned Funnull Technology, a Philippines-based company that supports hundreds of thousands of malicious websites behind cyber scams linked to over $200 million in losses for Americans. [...]BLEEPINGCOMPUTER.COM
29 MayOverworked and Under Attack – Cybersecurity’s Alert FatigueCybersecurity teams are drowning in alerts! 🚨 Too many signals, too much noise—SOC analysts are overwhelmed. But what if they could focus on only the high-risk threats? Cybersecurity experts Ayman Elsawah and John Dwyer break down the alert fatigue crisis and what needs to change…YOUTUBE.COM
29 MayUS government sanctions tech company involved in cyber scamsThe Treasury said FUNNULL was involved in providing infrastructure for pig butchering crypto scams.TECHCRUNCH.COM
29 MayWhy Taking Breaks Makes You BETTER at Cybersecurity!Taking breaks isn’t just about relaxing—it actually makes you BETTER at cybersecurity! 🔥 In this short, Gavin shares the advice he’d give to his younger self: take things less seriously and find a balance. Cybersecurity can be intense, but stepping away helps sharpen your focus a…YOUTUBE.COM
29 MayMozilla releases Firefox 139.0.1 update to fix artifacts on Nvidia GPUsMozilla has rolled out an emergency Firefox 139.0.1 update after the Tuesday release caused graphical artifacts on PCs with NVIDIA GPUs. [...]BLEEPINGCOMPUTER.COM
29 MayMicrosoft Authenticator now warns to export passwords before July cutoffThe Microsoft Authenticator app is now issuing notifications warning that the password autofill feature is being deprecated in July, suggesting users move to Microsoft Edge instead. [...]BLEEPINGCOMPUTER.COM