ICYMI: 2025-04-17
Latest Headlines
Mustang Panda Targets Myanmar With StarProxy, EDR Bypass, and TONESHELL Updates
State-Sponsored Hackers Weaponize ClickFix Tactic in Targeted Malware Campaigns
Critical Erlang/OTP SSH Vulnerability (CVSS 10.0) Allows Unauthenticated Code Execution
Blockchain Offers Security Benefits – But Don’t Neglect Your Passwords
Node.js Malware Campaign Targets Crypto Users with Fake Binance and TradingView Installers
CISA Flags Actively Exploited Vulnerability in SonicWall SMA Devices
Apple Patches Two Actively Exploited iOS Flaws Used in Sophisticated Targeted Attacks
New Jersey Sues Discord for Allegedly Failing to Protect Children
This ‘College Protester’ Isn’t Real. It’s an AI-Powered Undercover Bot for Cops
Man Helped Chinese Nationals Get Jobs Involving Sensitive US Government Projects
Critical Erlang/OTP SSH Flaw Exposes Many Devices to Remote Hacking
CrazyHunter Hacker Group Using Open-Source Tools from GitHub to Attack Organizations
Ransomware Attacks Rose by 126% Attacking Consumer Goods & Services Companies
Threat Actors Using Cascading Shadows Attack Chain to Avoid Detection & Complicate Analysis
Microsoft Vulnerabilities Hit Record High With 1,300+ Reported in 2024
43% Top 100 Enterprise-Used Mobile Apps Opens Door for Hackers to Access Sensitive Data
Why Threat Modeling Should Be Part of Every Security Program
The Future of GRC – Integrating ESG, Cyber, and Regulatory Risk
Hackers Weaponize MMC Script to Deploy MysterySnail RAT Malware
China Plans to Strengthen Its Cybersecurity Cooperation With Russia
Critical Erlang/OTP SSH pre-auth RCE is ‘Surprisingly Easy’ to exploit, patch now
Entertainment services giant Legends International discloses data breach
Windows NTLM hash leak flaw exploited in phishing attacks on governments
Chrome extensions with 6 million installs have hidden tracking code
Ahold Delhaize confirms data theft after INC ransomware claims attack
CTM360 Tracks Global Surge in SMS-Based Reward and Toll Scams
Microsoft: Office 2016 and Office 2019 reach end of support in October
CISA warns of increased breach risks following Oracle Cloud leak
New Windows Server emergency updates fix container launch issue
CISA tags SonicWall VPN flaw as actively exploited in attacks
– MTZ