ICYMI: 2025-03-11
Latest Headlines
Blind Eagle Hacks Colombian Institutions Using NTLM Flaw, RATs and GitHub-Based Attacks
Ballista Botnet Exploits Unpatched TP-Link Vulnerability, Infects Over 6,000 Devices
Your Risk Scores Are Lying: Adversarial Exposure Validation Exposes Real Threats
SideWinder APT Targets Maritime, Nuclear, and IT Sectors Across Asia, Middle East, and Africa
Moxa Issues Fix for Critical Authentication Bypass Vulnerability in PT Switches
CISA Adds Five Actively Exploited Vulnerabilities in Advantive VeraCore and Ivanti EPM to KEV List
Microsoft Flags Six Active Zero-Days, Patches 57 Flaws: Patch Tuesday
Patch Tuesday: Critical Code-Execution Bugs in Acrobat and Reader
UK Government Report Calls for Stronger Open Source Supply Chain Security Practices
SAP Patches High-Severity Vulnerabilities in Commerce, NetWeaver
Edimax Says No Patches Coming for Zero-Day Exploited by Botnets
AI Turned As A Powerful Tool For Cybercriminals To Execute Attacks At High Speed
Blind Eagle Hackers Leveraging Google Drive, Dropbox & GitHub To Bypass Security Defenses
Threat Actors Bypass Security Layers To Fuel SIM Swap Attacks
Multiple SCADA Vulnerabilities Let Attackers Trigger DoS & Elevate Privileges
ANY.RUN’s Threat Intelligence Feeds Now Get Enriched with Unique IOC’s
Google Details Microsoft’s Time Travel Debugging Framework Security Bugs
North Korean Lazarus hackers infect hundreds via npm packages
Apple fixes WebKit zero-day exploited in ‘extremely sophisticated’ attacks
Microsoft March 2025 Patch Tuesday fixes 7 zero-days, 57 flaws
Windows 11 KB5053598 & KB5053602 cumulative updates released
Microsoft replacing Remote Desktop app with Windows App in May
MassJacker malware uses 778,000 wallets to steal cryptocurrency
Critical PHP RCE vulnerability mass exploited in new attacks
The AI race: Dark AI is in the lead, but good AI is catching up
PowerSchool previously hacked in August, months before data breach
CISA tags critical Ivanti EPM flaws as actively exploited in attacks
– MTZ