170/68 Thursday, May 8, 2025 Google has released its May 2025 Android security update, addressing 46 vulnerabilities. Among them is CVE-2025-27363, a high-severity flaw (CVSS score: 8.1) that has already been exploited in the wild. While Google did not disclose specific details about the attackers or the nature of the exploitation, it confirmed that the […]
168/68 Wednesday, May 7, 2025 The U.S. Cybersecurity and Infrastructure Security Agency (CISA) has added the vulnerability identified as CVE-2025-34028, affecting Commvault Command Center, to its Known Exploited Vulnerabilities (KEV) catalog after confirming it is being actively exploited following public disclosure. This vulnerability, which has a maximum CVSS score of 10.0, is a path traversal […]
167/68 Wednesday, May 7, 2025 Researchers at Arctic Wolf Labs have uncovered a new cyberattack campaign conducted by a threat group called Venom Spider, which is specifically targeting human resources personnel – particularly recruiters and hiring managers – with phishing emails disguised as job applications. These emails often include what appear to be resumes from […]
166/68 Tuesday, May 6, 2025 The U.S. Department of Justice (DoJ) has charged Rami Khaled Ahmed, a 36-year-old Yemeni national, suspected of operating the Black Kingdom ransomware campaign. Ahmed is accused of being involved in over 1,500 ransomware attacks on Microsoft Exchange servers worldwide, including targets in the United States such as schools, hospitals, and […]
165/68 Tuesday, May 6, 2025 Despite law enforcement agencies in multiple countries identifying and arresting several members of the hacker group Scattered Spider, the group continues to launch cyberattacks against high-profile targets. Recent reports indicate that the group was behind an attack on the network of Marks & Spencer, a major British retailer, using the […]
164/68 Friday, May 2, 2025 SonicWall has disclosed that two security vulnerabilities affecting its Secure Mobile Access (SMA100) devices continue to be actively exploited in the wild, despite patches having been released. The details of the vulnerabilities are as follows: These vulnerabilities affect the SMA 100 Series, including the SMA 200, 210, 400, 410, and […]
163/68 Friday, May 2, 2025 Security researchers from Wordfence have uncovered a new type of malware targeting WordPress websites by disguising itself as a legitimate anti-malware plugin. The malware often uses deceptive filenames such as WP-antymalwary-bot[.]php or addons[.]php, allowing it to remotely control infected sites. It remains hidden from the WordPress admin dashboard and injects […]
162/68 Thursday, May 1, 2025 France’s Ministry of Foreign Affairs issued a statement on Tuesday accusing APT28, a hacking group linked to Russia’s military intelligence agency (GRU), of carrying out cyberattacks on at least 12 organizations within France over the past four years. The ministry condemned the actions as “destabilizing and dishonorable behavior by a […]
161/68 Thursday, May 1, 2025 Google’s Threat Intelligence Group (GTIG) has released its 2024 annual report, revealing that 75 zero-day vulnerabilities were exploited in the wild—down from 98 in 2023, but still higher than the 63 reported in 2022. One key trend is the increasing focus on enterprise technologies, rather than only end-user platforms. In […]
160/68 Wednesday, April 30, 2025 Trend Research has uncovered a new advanced persistent threat (APT) group dubbed “Earth Kurma”, which is actively targeting government agencies and telecommunications organizations in the Philippines, Vietnam, Thailand, and Malaysia. The group employs custom malware, rootkits, and cloud storage services such as Dropbox and OneDrive to exfiltrate sensitive data, steal […]
