May 2025

New Chrome Vulnerability Enables Cross-Origin Data Leak via Loader Referrer Policy

Uncategorized /

New Chrome Vulnerability Enables Cross-Origin Data Leak via Loader Referrer Policy 2025-05-15 at 14:47 By Google on Wednesday released updates to address four security issues in its Chrome web browser, including one for which it said there exists an exploit in the wild. The high-severity vulnerability, tracked as CVE-2025-4664 (CVSS score: 4.3), has been characterized […]

New Chrome Vulnerability Enables Cross-Origin Data Leak via Loader Referrer Policy Read More »

PentestPad streamlines security testing workflows

Industry news, PentestPad /

PentestPad streamlines security testing workflows 2025-05-15 at 14:39 By Industry News PentestPad announced a major rollout of new features to its platform, built to transform how modern security teams deliver penetration testing and manage vulnerabilities, clients and deliverables. PentestPad is an all-in-one workspace designed for penetration testing companies, internal security teams, and IT departments. With

PentestPad streamlines security testing workflows Read More »

Chinese Hackers Hit Drone Sector in Supply Chain Attacks

China APT, drone, Featured, Nation-State, supply chain, Supply Chain Security /

Chinese Hackers Hit Drone Sector in Supply Chain Attacks 2025-05-15 at 14:39 By Ionut Arghire The China-linked hacking group Earth Ammit has launched multi-wave attacks in Taiwan and South Korea to disrupt the drone sector. The post Chinese Hackers Hit Drone Sector in Supply Chain Attacks appeared first on SecurityWeek. This article is an excerpt

Chinese Hackers Hit Drone Sector in Supply Chain Attacks Read More »

Samsung patches MagicINFO 9 Server vulnerability exploited by attackers

Don't miss, Hot stuff, Huntress, News, PoC, Samsung, SANS ISC, vulnerability /

Samsung patches MagicINFO 9 Server vulnerability exploited by attackers 2025-05-15 at 14:18 By Zeljka Zorz Companies running Samsung MagicINFO, a platform for managing content on Samsung commercial digital displays, should upgrade to the latest available version of its v9 branch to fix a vulnerability that’s reportedly being exploited by attackers. If this advice sounds familiar,

Samsung patches MagicINFO 9 Server vulnerability exploited by attackers Read More »

Pi Network to invest $100M in startups building blockchain apps

Uncategorized /

Pi Network to invest $100M in startups building blockchain apps 2025-05-15 at 14:02 By Cointelegraph by Adrian Zmudzinski Mobile-first blockchain Pi Network has launched a $100 million fund to invest in initiatives built on its infrastructure. According to a May 14 announcement, the Pi Foundation is launching Pi Network Ventures with an initial investment of

Pi Network to invest $100M in startups building blockchain apps Read More »

Pareto launches synthetic dollar backed by private credit

Uncategorized /

Pareto launches synthetic dollar backed by private credit 2025-05-15 at 14:02 By Cointelegraph by Sam Bourgi Private credit marketplace Pareto has introduced a new synthetic dollar aimed at linking institutional investors with decentralized finance (DeFi) opportunities — a move that highlights the expanding role of stablecoins in global finance. The newly launched USP synthetic dollar

Pareto launches synthetic dollar backed by private credit Read More »

Ransomware Groups, Chinese APTs Exploit Recent SAP NetWeaver Flaws

China APT, exploited, Malware & Threats, Ransomware, SAP /

Ransomware Groups, Chinese APTs Exploit Recent SAP NetWeaver Flaws 2025-05-15 at 13:48 By Ionut Arghire Two ransomware groups and several Chinese APTs have been exploiting two recent SAP NetWeaver vulnerabilities. The post Ransomware Groups, Chinese APTs Exploit Recent SAP NetWeaver Flaws appeared first on SecurityWeek. This article is an excerpt from SecurityWeek View Original Source

Ransomware Groups, Chinese APTs Exploit Recent SAP NetWeaver Flaws Read More »

5 BCDR Essentials for Effective Ransomware Defense

Uncategorized /

5 BCDR Essentials for Effective Ransomware Defense 2025-05-15 at 13:48 By Ransomware has evolved into a deceptive, highly coordinated and dangerously sophisticated threat capable of crippling organizations of any size. Cybercriminals now exploit even legitimate IT tools to infiltrate networks and launch ransomware attacks. In a chilling example, Microsoft recently disclosed how threat actors misused

5 BCDR Essentials for Effective Ransomware Defense Read More »

Russia-Linked APT28 Exploited MDaemon Zero-Day to Hack Government Webmail Servers

Uncategorized /

Russia-Linked APT28 Exploited MDaemon Zero-Day to Hack Government Webmail Servers 2025-05-15 at 13:48 By A Russia-linked threat actor has been attributed to a cyber espionage operation targeting webmail servers such as Roundcube, Horde, MDaemon, and Zimbra via cross-site scripting (XSS) vulnerabilities, including a then-zero-day in MDaemon, according to new findings from ESET. The activity, which

Russia-Linked APT28 Exploited MDaemon Zero-Day to Hack Government Webmail Servers Read More »

Malicious npm Package Leverages Unicode Steganography, Google Calendar as C2 Dropper

Uncategorized /

Malicious npm Package Leverages Unicode Steganography, Google Calendar as C2 Dropper 2025-05-15 at 13:48 By Cybersecurity researchers have discovered a malicious package named “os-info-checker-es6” that disguises itself as an operating system information utility to stealthily drop a next-stage payload onto compromised systems. “This campaign employs clever Unicode-based steganography to hide its initial malicious code and

Malicious npm Package Leverages Unicode Steganography, Google Calendar as C2 Dropper Read More »

Royal Navy freshens up ships’ electromagnetic warfare defenses

Uncategorized /

Royal Navy freshens up ships’ electromagnetic warfare defenses 2025-05-15 at 13:34 By Dan Robinson MEWSIC to Brit crews’ ears will see off anti-ship missiles, among other things Britain’s Royal Navy is to get updated electromagnetic warfare (EW) capabilities including launchable decoys to help defend its vessels against threats such as modern anti-ship missiles.… This article

Royal Navy freshens up ships’ electromagnetic warfare defenses Read More »

Ukraine strategic Bitcoin reserve bill reportedly in final stages

Uncategorized /

Ukraine strategic Bitcoin reserve bill reportedly in final stages 2025-05-15 at 13:03 By Cointelegraph by Zoltan Vardai Ukraine is reportedly moving closer to adopting Bitcoin as a national reserve asset, a move that could bolster its financial resilience amid the ongoing war with Russia. Lawmakers are reportedly working on a Bitcoin (BTC) national reserve proposal,

Ukraine strategic Bitcoin reserve bill reportedly in final stages Read More »

Coinbase’s x402: Crypto payments over HTTP for AI and APIs

AI, API, Coinbase, crypto payments, HTTP /

Coinbase’s x402: Crypto payments over HTTP for AI and APIs 2025-05-15 at 13:03 By Cointelegraph by Arunkumar Krishnakumar What is HTTP 402, and why does it matter? The web was not really built with payments in mind, especially not for autonomous agents or machines. But with the rise of AI and decentralized finance (DeFi), the

Coinbase’s x402: Crypto payments over HTTP for AI and APIs Read More »

Nasdaq-listed BTCS to boost ETH holdings with $57.8M raise

Uncategorized /

Nasdaq-listed BTCS to boost ETH holdings with $57.8M raise 2025-05-15 at 13:03 By Cointelegraph by Ezra Reguerra Publicly traded company BTCS announced a $57.8 million financing agreement led by investment firm ATW Partners to purchase Ether as it expands its blockchain infrastructure strategy.  The Rockville, Maryland-based company announced the deal on May 14, saying that

Nasdaq-listed BTCS to boost ETH holdings with $57.8M raise Read More »

Canadian Electric Utility Lists Customer Information Stolen by Hackers

data breach, Data Breaches, electric, Nova Scotia Power, power /

Canadian Electric Utility Lists Customer Information Stolen by Hackers 2025-05-15 at 12:47 By Eduard Kovacs Nova Scotia Power says a wide range of personal and financial information was stolen in the recent cyberattack. The post Canadian Electric Utility Lists Customer Information Stolen by Hackers appeared first on SecurityWeek. This article is an excerpt from SecurityWeek

Canadian Electric Utility Lists Customer Information Stolen by Hackers Read More »

Bitcoin looks ‘ridiculous’ as bulls attempt $2T market cap flip — Analyst

Uncategorized /

Bitcoin looks ‘ridiculous’ as bulls attempt $2T market cap flip — Analyst 2025-05-15 at 12:01 By Cointelegraph by William Suberg Key points: Bitcoin has a fight for a $100,000 price and a $2 trillion market cap on its hands this month. Dips below six figures are “easily possible,” analyst filbfilb says, but the odds are

Bitcoin looks ‘ridiculous’ as bulls attempt $2T market cap flip — Analyst Read More »

Russia-linked hackers target webmail servers in Ukraine-related espionage operation

APT, cyber espionage, email security, ESET, News, Russian Federation, XSS /

Russia-linked hackers target webmail servers in Ukraine-related espionage operation 2025-05-15 at 12:01 By Help Net Security ESET researchers have uncovered RoundPress, a Russia-aligned espionage operation targeting webmail servers via XSS vulnerabilities. Behind it is most likely the Russia-aligned Sednit (also known as Fancy Bear or APT28) cyberespionage group, holding the ultimate goal of stealing confidential

Russia-linked hackers target webmail servers in Ukraine-related espionage operation Read More »

Australian Human Rights Commission Discloses Data Breach

AHRC, Australia, data breach, Data Breaches, human rights /

Australian Human Rights Commission Discloses Data Breach 2025-05-15 at 12:01 By Ionut Arghire The Australian Human Rights Commission says data submitted through the complaint form on its website was inadvertently exposed. The post Australian Human Rights Commission Discloses Data Breach appeared first on SecurityWeek. This article is an excerpt from SecurityWeek View Original Source

Australian Human Rights Commission Discloses Data Breach Read More »

Scroll to Top