ICYMI: 2025-04-03
Latest Headlines
Microsoft Warns of Tax-Themed Email Attacks Using PDFs and QR Codes to Deliver Malware
Lazarus Group Targets Job Seekers With ClickFix Tactic to Deploy GolangGhost Malware
AI Threats Are Evolving Fast — Learn Practical Defense Tactics in this Expert Webinar
AI Adoption in the Enterprise: Breaking Through the Security and Compliance Gridlock
Google Patches Quick Share Vulnerability Enabling Silent File Transfers Without Consent
Triada Malware Preloaded on Counterfeit Android Phones Infects 2,600+ Devices
Legacy Stripe API Exploited to Validate Stolen Payment Cards in Web Skimmer Campaign
Europol Dismantles Kidflix With 72,000 CSAM Videos Seized in Major Operation
Chinese APT Pounces on Misdiagnosed RCE in Ivanti VPN Appliances
Halo ITSM Vulnerability Exposed Organizations to Remote Hacking
Hunters International Ransomware Gang Rebranding, Shifting Focus
Two CVEs, One Critical Flaw: Inside the CrushFTP Vulnerability Controversy
Vulnerabilities Expose Cisco Meraki and ECE Products to DoS Attacks
Google Released Second Fix for Quick Share Flaws After Patch Bypass
Hackers Leveraging Fast Flux Technique to Evade Detection & Hide Malicious Servers
Oracle Acknowledges Data Breach and Starts Informing Affected Clients
New Phishing Campaign Attacking Investors to Steal Login Credentials
Secure Ideas Achieves CREST Accreditation and CMMC Level 1 Compliance
UAC-0219 Hackers Using PowerShell Stealer WRECKSTEEL to Steal Information from Computers
New Triada Malware Attacking Android Devices to Replaces Phone Numbers During Calls
DarkCloud Stealer Attacking Organizations with Weaponized .TAR Archive to Steal Passwords
Hunters International Overlaps Hive Ransomware Attacking Windows, Linux, and ESXi Systems
Qilin Operators Mimic ScreenConnect Login Page to Deliver Ransomware & Gain Admin Access
Russian Seashell Blizzard Attacking Organizations With Custom-Developed Hacking Tools
Max severity RCE flaw discovered in widely used Apache Parquet
Hunters International shifts from ransomware to pure data extortion
CISA warns of Fast Flux DNS evasion used by cybercrime gangs
Ivanti patches Connect Secure zero-day exploited since mid-March
Texas State Bar warns of data breach after INC ransomware claims attack
Recent GitHub supply chain attack traced to leaked SpotBugs token
– MTZ