ICYMI: 2025-03-31
Latest Headlines
Russian Hackers Exploit CVE-2025-26633 via MSC EvilTwin to Deploy SilentPrism and DarkWisp
Hackers Exploit WordPress mu-Plugins to Inject Spam and Hijack Site Images
⚡ Weekly Recap: Chrome 0-Day, IngressNightmare, Solar Bugs, DNS Tactics, and More
Russia-Linked Gamaredon Uses Troop-Related Lures to Deploy Remcos RAT in Ukraine
Cybersecurity Professor Mysteriously Disappears as FBI Raids His Homes
An AI Image Generator’s Exposed Database Reveals What People Really Used It For
Threat Actors Deploy WordPress Malware in ‘mu-plugins’ Directory
Industry Moves for the week of March 31, 2025 - SecurityWeek
Zero to Hero – A “Measured” Approach to Building a World-Class Offensive Security Program
Part of EU’s New €1.3 Billion Investment Going to Cybersecurity
‘Crocodilus’ Android Banking Trojan Allows Device Takeover, Data Theft
170,000 Impacted by Data Breach at Chord Specialty Dental Partners
Lazarus Group is No Longer Consider a Single APT Group, But Collection of Many Sub Groups
Cannon Printer Vulnerability Let Attackers Execute Arbitrary Code
Technical Analysis Published for OpenSSH’s Agent Forwarding RCE Vulnerability
Multiple Dell Unity Vulnerabilities Let Attackers Compromise Affected System
New Ubuntu Security Bypasses Allow Attackers to Exploit Kernel Vulnerabilities
Earth Alux Hackers Employ VARGIET Malware to Attack Organizations
ClickFake Interview – Lazarus Hackers Exploit Windows and macOS Users Fake Job Campaign
DarkCloud – An Advanced Stealer Malware Selling Via Telegram To Steal Data From Windows
VMware Workstation auto-updates broken after Broadcom URL redirect
OpenAI says Deep Research is coming to ChatGPT free “very soon”
Microsoft uses AI to find flaws in GRUB2, U-Boot, Barebox bootloaders
Phishing platform ‘Lucid’ behind wave of iOS, Android SMS attacks
North Korean hackers adopt ClickFix attacks to target crypto firms
– MTZ