ICYMI: 2025-04-11
Latest Headlines
Fortinet Warns Attackers Retain FortiGate Access Post-Patching via SSL-VPN Symlink Exploit
Paper Werewolf Deploys PowerModul Implant in Targeted Cyberattacks on Russian Sectors
Palo Alto Networks Warns of Brute-Force Attempts Targeting PAN-OS GlobalProtect Gateways
SpyNote, BadBazaar, MOONSHINE Malware Target Android and iOS Users via Fake Apps
OttoKit WordPress Plugin Admin Creation Vulnerability Under Active Exploitation
Sex-Fantasy Chatbots Are Leaking a Constant Stream of Explicit Messages
Rapid7 Reveals RCE Path in Ivanti VPN Appliance After Silent Patch Debacle
Vulnerability in OttoKit WordPress Plugin Exploited in the Wild
In Other News: Scattered Spider Still Active, EncryptHub Unmasked, Rydox Extraditions
SonicWall Patches High-Severity Vulnerability in NetExtender
1.6 Million People Impacted by Data Breach at Laboratory Services Cooperative
China Admitted to Volt Typhoon Cyberattacks on US Critical Infrastructure: Report
Rising Tides: Bryson Bort on Cyber Entrepreneurship and the Needed Focus on Critical Infrastructure
Beware of Fake mParivahan App Attacking Mobile Users Via WhatsApp to Steal Sensitive Data
APT32 Hackers Weaponizing GitHub to Attack Cybersecurity Professionals & Enterprises
CISA Releases 10 ICS Advisories Covering Vulnerabilities & Exploits
Laboratory Services Cooperative Data Breach – 1.6 Million People Impacted
WordPress Plugin Vulnerability Exposes Sites to Critical File Inclusion Attacks
Sensata Technologies Hacked – Ransomware Attack Disrupts Operations
Calix Pre-Auth RCE on TCP Port 6998 Allow Arbitrary Code Execution as Root User
Microsoft Enhances Exchange & SharePoint Security With New Antimalware Scan
AMD CPU Signature Verification Vulnerability Let Attackers Load Malicious Microcode
Microsoft Defender will isolate undiscovered endpoints to block attacks
Microsoft starts final Windows Recall testing before rollout
Western Sydney University discloses security breaches, data leak
Fortinet: Hackers retain access to patched FortiGate VPNs using symlinks
Microsoft: Windows ‘inetpub’ folder created by security fix, don’t delete
Google’s AI video generator Veo 2 is rolling out on AI Studio
US lab testing provider exposed health data of 1.6 million people
Microsoft says Edge browser is now 9% faster after optimizations
Ransomware attack cost IKEA operator in Eastern Europe $23 million
– MTZ