ICYMI: 2025-03-24
Latest Headlines
Critical Ingress NGINX Controller Vulnerability Allows RCE Without Authentication
Microsoft Adds Inline Data Protection to Edge for Business to Block GenAI Data Leaks
VanHelsing RaaS Launch: 3 Victims, $5K Entry Fee, Multi-OS, and Double Extortion Tactics
⚡ THN Weekly Recap: GitHub Supply Chain Attack, AI Malware, BYOVD Tactics, and More
VSCode Marketplace Removes Two Extensions Deploying Early-Stage Ransomware
Critical Next.js Vulnerability Allows Attackers to Bypass Middleware Authorization Checks
Using Starlink Wi-Fi in the White House Is a Slippery Slope for US Federal IT
NIST Still Struggling to Clear Vulnerability Submissions Backlog in NVD
Industry Moves for the week of March 24, 2025 - SecurityWeek
Webinar Tomorrow: Which Security Testing Approach is Right for You?
Despite Rip-and-Replace Efforts, FCC Suspects Banned Chinese Telecom Providers Still Active in US
Medusa Ransomware Uses Malicious Driver to Disable Security Tools
NetSfere Launches Quantum-Resilient Messaging Platform for Enterprise and Government Use
Encrypted Messaging Apps Promise Privacy. Government Transparency Is Often the Price
Cyber Guardians: INE Security Champions Cybersecurity Training During National Physicians Week 2025
Hackers Using Fake Semrush Ads to Steal Google Accounts Login Credentials
Pocket Card Users Under Attack Via Sophisticated Phishing Campaign
Operation Red Card – 300+ Cyber Criminals Arrested Linking to Multiple Hacking Activities
Hackers Could Drop Teams Malware via Browser’s Cache Smuggling
Clio – Real-Time Logging Tool With Locking, User Authentication, and Audit Trails
FCC Conducting Investigation into Chinese Entities Placed on the Government’s Prohibited List
WordPress Plug-in Vulnerability Let Hackers Inject Malicious SQL Queries
WordPress Plugin Vulnerability Exposes 200k+ Sites to Code Execution Attacks
23andMe files for bankruptcy, customers advised to delete DNA data
New VanHelsing ransomware targets Windows, ARM, ESXi systems
Cyberattack takes down Ukrainian state railway’s online services
Chinese Weaver Ant hackers spied on telco network for 4 years
Police arrests 300 suspects linked to African cybercrime rings
Hidden Threats: How Microsoft 365 Backups Store Risks for Future Attacks
Google Gemini’s Astra (screen sharing) rolls out on Android for some users
– MTZ