ICYMI: 2025-05-15
Latest Headlines
Meta to Train AI on E.U. User Data From May 27 Without Consent; Noyb Threatens Lawsuit
Coinbase Agents Bribed, Data of ~1% Users Leaked; $20M Extortion Attempt Fails
Pen Testing for Compliance Only? It’s Time to Change Your Approach
New Chrome Vulnerability Enables Cross-Origin Data Leak via Loader Referrer Policy
Russia-Linked APT28 Exploited MDaemon Zero-Day to Hack Government Webmail Servers
Malicious npm Package Leverages Unicode Steganography, Google Calendar as C2 Dropper
Andrei Tarasov: Inside the Journey of a Russian Hacker on the FBI’s Most Wanted List
Coinbase Rejects $20M Ransom After Rogue Contractors Bribed to Leak Customer Data
Proofpoint to Acquire Hornetsecurity in Reported $1 Billion Deal
Ransomware Groups, Chinese APTs Exploit Recent SAP NetWeaver Flaws
Canadian Electric Utility Lists Customer Information Stolen by Hackers
Chrome 136 Update Patches Vulnerability With ‘Exploit in the Wild’
Coinbase Hacked – Massive Data Breach Costs Them $400 Million
New .NET Multi-stage Loader Attacking Windows Systems to Deploy Malicious Payloads
Hackers Abuse Google Services to Send Malicious Law Enforcement Requests
CISA Warns of Five Actively Exploited Windows 0-Day Vulnerabilities
Windows Defender Application Control Bypassed Using Operationalizing Browser Exploits
Threat Actors Weaponizing Open Source Packages to Deliver Malware in Supply Chain Attack
Steel Manufacturer Nucor Shuts Down Production Following Cyber Attacks
U.S. officials Investigating Rogue Communication Devices in Solar Power Inverters
DIOR Cyber Attack – Customers Personal & Financial Data Exposed
Xerox Issues April 2025 Security Patch Update for FreeFlow Print Server v2
ChatGPT will soon record, transcribe, and summarize your meetings
Windows 10 KB5058379 update triggers BitLocker recovery on some devices
Government webmail hacked via XSS bugs in global spy campaign
FBI: US officials targeted in voice deepfake attacks since April
Nova Scotia Power confirms hackers stole customer data in cyberattack
New Tor Oniux tool anonymizes any Linux app’s network traffic
Malicious NPM package uses Unicode steganography to evade detection
Coinbase data breach exposes customer info and government IDs
– MTZ