ICYMI: 2025-05-07
Latest Headlines
Europol Shuts Down Six DDoS-for-Hire Services Used in Global Attacks
OttoKit WordPress Plugin with 100K+ Installs Hit by Exploits Targeting Multiple Flaws
SysAid Patches 4 Critical Flaws Enabling Pre-Auth RCE in On-Premise Version
Reevaluating SSEs: A Technical Gap Analysis of Last-Mile Protection
Play Ransomware Exploited Windows CVE-2025-29824 as Zero-Day to Breach U.S. Organization
Researchers Uncover Malware in Fake Discord PyPI Package Downloaded 11,500+ Times
NSO Group Fined $168M for Targeting 1,400 WhatsApp Users With Pegasus Spyware
Customs and Border Protection Confirms Its Use of Hacked Signal Clone TeleMessage
The Trump Administration Sure Is Having Trouble Keeping Its Comms Private
Cisco’s Quantum Bet: Linking Small Machines Into One Giant Quantum Computer
CodeAnt AI Raises $2 Million for Code Quality and Application Security Platform
Ox Security Bags $60M Series B to Tackle Appsec Alert Fatigue
New UK Framework Pressures Vendors on SBOMs, Patching and Default MFA
Spyware Maker NSO Ordered to Pay $167 Million Over WhatsApp Hack
AppSignal Raises $22 Million for Application Monitoring Solution
Second Ransomware Group Caught Exploiting Windows Flaw as Zero-Day
Second OttoKit Vulnerability Exploited to Hack WordPress Sites
Healthcare Sector Emerges as a Prime Target for Cyber Attacks in 2025
Critical Open Source Easyjson Library Under Full Control of Russian Company
Lampion Banking Malware Employs ClickFix Lures To Steal Banking Information
UK Government Sets Timeline to Replace Passwords With Passkeys
Wormable Linux Rootkit Attack Multiple Systems to Steal SSH Keys and Privilege Escalation
PoC Tool Released for Max Severity Apache Parquet Vulnerability to Detect Affected Servers
DragonForce – The Rise of a Hybrid Cyber Threat in The Ransomware Landscape of 2025
PowerSchool hacker now extorting individual school districts
CoGUI phishing platform sent 580 million emails to steal credentials
Hackers exploit OttoKit WordPress plugin flaw to add admin accounts
Play ransomware exploited Windows logging flaw in zero-day attacks
NSO Group fined $167M for spyware attacks on 1,400 WhatsApp users
Doubling down: How Universal 2nd Factor (U2F) boosts online security
Medical device maker Masimo warns of cyberattack, manufacturing delays
Police takes down six DDoS-for-hire services, arrests admins
– MTZ