ICYMI: 2025-06-17
Latest Headlines
Google Chrome Zero-Day CVE-2025-2783 Exploited by TaxOff to Deploy Trinper Backdoor
LangSmith Bug Could Expose OpenAI Keys and User Data via Malicious Agents
Silver Fox APT Targets Taiwan with Complex Gh0stCringe and HoldingHands RAT Malware
Google Warns of Scattered Spider Attacks Targeting IT Support Teams at U.S. Insurance Firms
Hard-Coded ‘b’ Password in Sitecore XP Sparks Major RCE Risk in Enterprise Deployments
New Flodrix Botnet Variant Exploits Langflow AI Server RCE Bug to Launch DDoS Attacks
TP-Link Router Flaw CVE-2023-33538 Under Active Exploit, CISA Issues Immediate Alert
Meta Starts Showing Ads on WhatsApp After 6-Year Delay From 2018 Announcement
Minnesota Shooting Suspect Allegedly Used Data Broker Sites to Find Targets’ Addresses
New ClickFix Malware Variant ‘LightPerlGirl’ Targets Users in Stealthy Hack
Organizations Warned of Vulnerability Exploited Against Discontinued TP-Link Routers
Asus Armoury Crate Vulnerability Leads to Full System Compromise
Google’s Gerrit Code Platform Vulnerability Allows Hack of 18 Google Projects Including ChromiumOS
How to Detect Threats Early For Fast Incident Response: 3 Examples
New Veeam Vulnerabilities Enables Malicious Remote Code Execution on Backup Servers
Email Hosting Provider Cock.li Hacked – 1 Million Email Addresses Stolen
Citrix NetScaler ADC and Gateway Vulnerabilities Allow Attackers to Access Sensitive Data
New Microsoft Excel Token Protection Policy May Block Certain Data Imports
BeyondTrust Tools RCE Vulnerability Let Attackers Execute Arbitrary Code
New Sorillus RAT Actively Attacking European Organizations Via Tunneling Services
Critical Sitecore CMS Platform Vulnerabilities Let Attackers Gain Full Control of Deployments
Paddle settles for $5 million over facilitating tech support scams
Scania confirms insurance claim data breach in extortion attempt
Instagram ‘BMO’ ads use AI deepfakes to scam banking customers
Sitecore CMS exploit chain starts with hardcoded ‘b’ password
UK fines 23andMe for ‘profoundly damaging’ breach exposing genetics data
Microsoft fixes Surface Hub boot issues with emergency update
Hacker steals 1 million Cock.li user records in webmail data breach
– MTZ