177/68 Friday, May 16, 2025 Researchers have uncovered a new ad fraud network named Kaleidoscope, targeting Android users with unskippable ads that cause significant disruption and frustration. Traditionally, ad fraud mainly affects advertisers, who pay for impressions or clicks that are not genuine—often generated by bots or deceptive tricks. These malicious activities typically run in […]
176/68 Thursday, May 15, 2025 Adobe has released its scheduled Patch Tuesday security updates, addressing more than 39 vulnerabilities across various products. The company issued warnings about the risk of remote code execution (RCE), which could allow attackers to gain unauthorized access to systems or escalate privileges. The most critical updates affect Adobe ColdFusion, with […]
175/68 Thursday, May 15, 2025 Ivanti has issued an urgent security advisory urging customers to immediately update their Endpoint Manager Mobile (EPMM) software after discovering two critical vulnerabilities that can be chained together to allow unauthenticated remote code execution by attackers. The first vulnerability, CVE-2025-4427, is an authentication bypass on the EPMM API that enables […]
174/68 Wednesday, May 14, 2025 Cybersecurity researchers at Morphisec have issued a warning about a new cyberattack campaign that exploits the popularity of AI tools to trick users into downloading a newly discovered malware called Noodlophile Stealer. This information stealer malware is being spread under the guise of fake AI applications like “Dream Machine” or […]
173/68 Wednesday, May 14, 2025 The U.S. Cybersecurity and Infrastructure Security Agency (CISA) has announced a significant change in how it shares cybersecurity-related information. Starting May 12, 2025, CISA will discontinue general updates on its “Cybersecurity Alerts & Advisories” webpage and will shift to using social media and email as primary channels for disseminating cybersecurity […]
172/68 Tuesday, May 13, 2025 South African Airways (SAA), the national carrier of South Africa, confirmed that it experienced a cyberattack on May 3, 2025, which temporarily disrupted its website, mobile app, and some internal operating systems. However, flight operations and core services remained unaffected. The airline’s IT team quickly brought the situation under control, […]
171/68 Tuesday, May 13, 2025 Following the April 22, 2025, shooting incident targeting tourists in Pahalgam, Kashmir, tensions between India and Pakistan have rapidly escalated into the cyber domain. Hacktivist groups from across Asia, the Middle East, and North Africa (MENA) have united under an operation dubbed #OpIndia, targeting Indian government agencies and critical infrastructure. […]
170/68 Thursday, May 8, 2025 Google has released its May 2025 Android security update, addressing 46 vulnerabilities. Among them is CVE-2025-27363, a high-severity flaw (CVSS score: 8.1) that has already been exploited in the wild. While Google did not disclose specific details about the attackers or the nature of the exploitation, it confirmed that the […]
168/68 Wednesday, May 7, 2025 The U.S. Cybersecurity and Infrastructure Security Agency (CISA) has added the vulnerability identified as CVE-2025-34028, affecting Commvault Command Center, to its Known Exploited Vulnerabilities (KEV) catalog after confirming it is being actively exploited following public disclosure. This vulnerability, which has a maximum CVSS score of 10.0, is a path traversal […]
167/68 Wednesday, May 7, 2025 Researchers at Arctic Wolf Labs have uncovered a new cyberattack campaign conducted by a threat group called Venom Spider, which is specifically targeting human resources personnel – particularly recruiters and hiring managers – with phishing emails disguised as job applications. These emails often include what appear to be resumes from […]
