ICYMI: 2025-04-01
Latest Headlines
Over 1,500 PostgreSQL Servers Compromised in Fileless Cryptocurrency Mining Campaign
Enterprise Gmail Users Can Now Send End-to-End Encrypted Emails to Any Platform
Lucid PhaaS Hits 169 Targets in 88 Countries Using iMessage and RCS Smishing
Apple Backports Critical Fixes for 3 Recent 0-Days Impacting Older iOS and macOS Devices
Nearly 24,000 IPs Target PAN-OS GlobalProtect in Coordinated Login Scan Campaign
China-Linked Earth Alux Uses VARGEIT and COBEACON in Multi-Stage Cyber Intrusions
New Case Study: Global Retailer Overshares CSRF Tokens with Facebook
Apple Fined €150 Million by French Regulator Over Discriminatory ATT Consent Practices
Microsoft Using AI to Uncover Critical Bootloader Vulnerabilities
Hackers Could Unleash Chaos Through Backdoor in China-Made Robot Dogs
Hackers Looking for Vulnerable Palo Alto Networks GlobalProtect Portals
Security Operations Firm ReliaQuest Raises $500M at $3.4B Valuation
Ransomware Group Takes Credit for National Presto Industries Attack
CrushFTP Blames Security Firms for Fast Exploitation of Vulnerability
France’s Antitrust Watchdog Fines Apple for Problems With App Tracking Transparency
APT34 hackers Using New Custom Malware to Attack Finance & Telecomm Industries
Plantronics Hub Vulnerability Let Attackers Escalate Privileges
VMware Aria Operations Vulnerability Exposes Systems to Privilege Escalation Attacks
EncGPT – AI-agent that Dynamically Generates Encryption & Decryption Rules
Kentico Xperience CMS XSS Vulnerability Let Attackers Execute Remote Code
400GB of X (Twitter) Data Allegedly Leaked by Threat Actors on Hackers Forums
Rockwell Automation Vulnerability Let Attackers Gain Access to Run Arbitrary Commands
Samsung Data Leak – Threat Actors Leak 270,000 Customers Tickets Data
HijackLoader With New Modules to Hide Functions & Detect Malware Analysis
New Windows 11 trick lets you bypass Microsoft Account requirement
We Smell a (DC)Rat: Revealing a Sophisticated Malware Delivery Chain
Apple fined €150 million over App Tracking Transparency issues
Google rolls out easy end-to-end encryption for Gmail business users
Nearly 24,000 IPs behind wave of Palo Alto Global Protect scans
Critical auth bypass bug in CrushFTP now exploited in attacks
– MTZ