ICYMI: 2025-05-22
Latest Headlines
Chinese Hackers Exploit Trimble Cityworks Flaw to Infiltrate U.S. Government Networks
Critical Windows Server 2025 dMSA Vulnerability Enables Active Directory Compromise
Chinese Hackers Exploit Ivanti EPMM Bugs in Global Enterprise Network Attacks
Webinar: Learn How to Build a Reasonable and Legally Defensible Cybersecurity Program
Identity Security Has an Automation Problem—And It’s Bigger Than You Think
Unpatched Versa Concerto Flaws Let Attackers Escape Docker and Compromise Host
FBI and Europol Disrupt Lumma Stealer Malware Network Linked to 10 Million Infections
Feds Charge 16 Russians Allegedly Tied to Botnets Used in Ransomware, Cyberattacks, and Spying
Why 3D-Printing an Untraceable Ghost Gun Is Easier Than Ever
Mysterious Database of 184 Million Records Exposes Vast Array of Login Credentials
Akamai, Microsoft Disagree on Severity of Unpatched ‘BadSuccessor’ Flaw
Marlboro-Chesterfield Pathology Data Breach Impacts 235,000 People
Marks & Spencer Expects Ransomware Attack to Cost $400 Million
Taming the Hacker Storm: Why Millions in Cybersecurity Spending Isn’t Enough
Security Theater or Real Defense? The KPIs That Tell the Truth
Cisco Patches High-Severity DoS, Privilege Escalation Vulnerabilities
CefSharp Enumeration Tool Reveals Security Vulnerabilities in .NET Desktop Apps
Gujarat Teen Behind 50+ Cyberattacks During ‘Operation Sindoor’ Arrested
Russian Hackers Leverage Oracle Cloud Infrastructure to Scaleway Object Storage
Netwrix Password Manager Vulnerability Allows Authenticated Remote Code Execution
Cisco Webex Meetings Vulnerability Let Attackers Manipulate HTTP Responses
UAT-638 Hackers Exploit Cityworks Zero-Day to Attack IIS Servers With VSHell Malware
INE Security Partners with Abadnet Institute for Cybersecurity Training Programs in Saudi Arabia
Multiple GitLab Vulnerabilities Let Attackers Trigger DoS Attacks
Versa Concerto 0-Day Authentication Bypass Vulnerability Allows Remote Code Execution
Claude 4 benchmarks show improvements, but context is still 200K
US indicts leader of Qakbot botnet linked to ransomware attacks
Hackers use fake Ledger apps to steal Mac users’ seed phrases
Police arrests 270 dark web vendors, buyers in global crackdown
Ivanti EPMM flaw exploited by Chinese hackers to breach govt agencies
Chinese hackers breach US local governments using Cityworks zero-day
FTC finalizes order requiring GoDaddy to secure hosting services
Signal now blocks Microsoft Recall screenshots on Windows 11
Unpatched critical bugs in Versa Concerto lead to auth bypass, RCE
– MTZ