Featured

Ivanti Patches Two EPMM Zero-Days Exploited to Hack Customers

exploited, Featured, Ivanti, Vulnerabilities, vulnerability, Zero-Day /

Ivanti Patches Two EPMM Zero-Days Exploited to Hack Customers 2025-05-14 at 11:01 By Ionut Arghire Ivanti has released patches for two EPMM vulnerabilities that have been chained in the wild for remote code execution. The post Ivanti Patches Two EPMM Zero-Days Exploited to Hack Customers appeared first on SecurityWeek. This article is an excerpt from […]

React to this headline:

Loading spinner

Ivanti Patches Two EPMM Zero-Days Exploited to Hack Customers Read More »

CISA Warns of Flaw in TeleMessage App Used by Ex-National Security Advisor 

Data Protection, Encryption, Featured, Government, hacked, Signal, TeleMessage /

CISA Warns of Flaw in TeleMessage App Used by Ex-National Security Advisor  2025-05-13 at 12:03 By Eduard Kovacs An information exposure flaw in TeleMessage has been added to CISA’s Known Exploited Vulnerabilities catalog.  The post CISA Warns of Flaw in TeleMessage App Used by Ex-National Security Advisor  appeared first on SecurityWeek. This article is an

React to this headline:

Loading spinner

CISA Warns of Flaw in TeleMessage App Used by Ex-National Security Advisor  Read More »

Apple Patches Major Security Flaws in iOS, macOS Platforms

apple, Featured, iOS 18.5, iPadOS, macOS, Mobile & Wireless, Patch Tuesday, Vulnerabilities /

Apple Patches Major Security Flaws in iOS, macOS Platforms 2025-05-12 at 22:16 By Ryan Naraine Apple rolls out iOS and macOS platform updates to fix serious security bugs that could be triggered simply by opening an image or video file. The post Apple Patches Major Security Flaws in iOS, macOS Platforms appeared first on SecurityWeek.

React to this headline:

Loading spinner

Apple Patches Major Security Flaws in iOS, macOS Platforms Read More »

US Announces Botnet Takedown, Charges Against Russian Administrators

5socks, Anyproxy, botnet, Featured, law enforcement, Proxy, takedown, Tracking & Law Enforcement /

US Announces Botnet Takedown, Charges Against Russian Administrators 2025-05-12 at 11:38 By Eduard Kovacs Anyproxy and 5socks, websites offering proxy services through devices ensnared by a botnet, have been disrupted in a law enforcement operation. The post US Announces Botnet Takedown, Charges Against Russian Administrators appeared first on SecurityWeek. This article is an excerpt from

React to this headline:

Loading spinner

US Announces Botnet Takedown, Charges Against Russian Administrators Read More »

Valuable Information Leaked in LockBit Ransomware Hack 

Data leak, Featured, hacked, LockBit, Ransomware /

Valuable Information Leaked in LockBit Ransomware Hack  2025-05-09 at 11:25 By Eduard Kovacs Private messages, Bitcoin addresses, victim data, and attacker information were leaked after someone hacked a LockBit admin panel. The post Valuable Information Leaked in LockBit Ransomware Hack  appeared first on SecurityWeek. This article is an excerpt from SecurityWeek View Original Source React

React to this headline:

Loading spinner

Valuable Information Leaked in LockBit Ransomware Hack  Read More »

Possible Zero-Day Patched in SonicWall SMA Appliances

exploited, Featured, SMA, SonicWall, Vulnerabilities, vulnerability, Zero-Day /

Possible Zero-Day Patched in SonicWall SMA Appliances 2025-05-08 at 16:11 By Ionut Arghire SonicWall patches three SMA 100 vulnerabilities, including a potential zero-day, that could be chained to execute arbitrary code remotely. The post Possible Zero-Day Patched in SonicWall SMA Appliances appeared first on SecurityWeek. This article is an excerpt from SecurityWeek View Original Source

React to this headline:

Loading spinner

Possible Zero-Day Patched in SonicWall SMA Appliances Read More »

US Warns of Hackers Targeting ICS/SCADA at Oil and Gas Organizations

alert, CISA, Featured, guidance, ICS, ICS/OT, SCADA /

US Warns of Hackers Targeting ICS/SCADA at Oil and Gas Organizations 2025-05-07 at 11:17 By Ionut Arghire The US government warns of threat actors targeting ICS/SCADA systems at oil and natural gas organizations. The post US Warns of Hackers Targeting ICS/SCADA at Oil and Gas Organizations appeared first on SecurityWeek. This article is an excerpt

React to this headline:

Loading spinner

US Warns of Hackers Targeting ICS/SCADA at Oil and Gas Organizations Read More »

Hacker Conversations: John Kindervag, a Making not Breaking Hacker

Featured, Hacker Conversations, zero trust /

Hacker Conversations: John Kindervag, a Making not Breaking Hacker 2025-05-06 at 16:04 By Kevin Townsend John Kindervag is best known for developing the Zero Trust Model. He is a hacker, but not within our common definition of a hacker today. The post Hacker Conversations: John Kindervag, a Making not Breaking Hacker appeared first on SecurityWeek.

React to this headline:

Loading spinner

Hacker Conversations: John Kindervag, a Making not Breaking Hacker Read More »

Android Update Patches FreeType Vulnerability Exploited as Zero-Day

Android, exploited, Featured, FreeType, Mobile & Wireless, Zero-Day /

Android Update Patches FreeType Vulnerability Exploited as Zero-Day 2025-05-06 at 12:00 By Ionut Arghire Android’s May 2025 security update includes patches for an exploited vulnerability in the FreeType open source rendering engine. The post Android Update Patches FreeType Vulnerability Exploited as Zero-Day appeared first on SecurityWeek. This article is an excerpt from SecurityWeek View Original

React to this headline:

Loading spinner

Android Update Patches FreeType Vulnerability Exploited as Zero-Day Read More »

Man Admits Hacking Disney and Leaking Data Disguised as Hacktivist 

cybercrime, Data leak, Disney, Featured, guilty, hacker /

Man Admits Hacking Disney and Leaking Data Disguised as Hacktivist  2025-05-05 at 14:48 By Eduard Kovacs A 25-year-old has admitted hacking Disney systems and leaking data under the guise of a hacktivist collective named NullBulge. The post Man Admits Hacking Disney and Leaking Data Disguised as Hacktivist  appeared first on SecurityWeek. This article is an

React to this headline:

Loading spinner

Man Admits Hacking Disney and Leaking Data Disguised as Hacktivist  Read More »

UK Retailers Co-op, Harrods and M&S Struggle With Cyberattacks

Co-op, cyberattack, cybercrime, Featured, Harrods, M&S, Retail, UK /

UK Retailers Co-op, Harrods and M&S Struggle With Cyberattacks 2025-05-02 at 14:05 By Ionut Arghire Major UK retailers Co-op, Harrods, and M&S are scrambling to restore services that were affected by cyberattacks. The post UK Retailers Co-op, Harrods and M&S Struggle With Cyberattacks appeared first on SecurityWeek. This article is an excerpt from SecurityWeek View

React to this headline:

Loading spinner

UK Retailers Co-op, Harrods and M&S Struggle With Cyberattacks Read More »

Canadian Electric Utility Hit by Cyberattack

Canada, cyberattack, electric, Emera, Featured, Incident Response, Nova Scotia Power, utility /

Canadian Electric Utility Hit by Cyberattack 2025-05-01 at 17:15 By Eduard Kovacs Nova Scotia Power and Emera are responding to a cybersecurity incident that impacted IT systems and networks.  The post Canadian Electric Utility Hit by Cyberattack appeared first on SecurityWeek. This article is an excerpt from SecurityWeek View Original Source React to this headline:

React to this headline:

Loading spinner

Canadian Electric Utility Hit by Cyberattack Read More »

JPMorgan Chase CISO Fires Warning Shot Ahead of RSA Conference

CISO Strategy, Featured, RSA Conference 2025 /

JPMorgan Chase CISO Fires Warning Shot Ahead of RSA Conference 2025-04-28 at 19:18 By Ryan Naraine This tension between hard-edged risk realism and breathless AI evangelism sets an unmistakable tone for a bellwether conference where 40,000-plus gather to do business.  The post JPMorgan Chase CISO Fires Warning Shot Ahead of RSA Conference appeared first on

React to this headline:

Loading spinner

JPMorgan Chase CISO Fires Warning Shot Ahead of RSA Conference Read More »

SAP Zero-Day Possibly Exploited by Initial Access Broker

exploited, Featured, initial access broker, SAP, Vulnerabilities, Zero-Day /

SAP Zero-Day Possibly Exploited by Initial Access Broker 2025-04-25 at 12:38 By Ionut Arghire A zero-day vulnerability in SAP NetWeaver potentially affects more than 10,000 internet-facing applications. The post SAP Zero-Day Possibly Exploited by Initial Access Broker appeared first on SecurityWeek. This article is an excerpt from SecurityWeek View Original Source React to this headline:

React to this headline:

Loading spinner

SAP Zero-Day Possibly Exploited by Initial Access Broker Read More »

Cyberattack Hits British Retailer Marks & Spencer

cyberattack, cybercrime, Featured, M&S, Marks&Spencer /

Cyberattack Hits British Retailer Marks & Spencer 2025-04-23 at 13:35 By Ionut Arghire British retailer Marks & Spencer has been experiencing certain service disruptions after falling victim to a cyberattack. The post Cyberattack Hits British Retailer Marks & Spencer appeared first on SecurityWeek. This article is an excerpt from SecurityWeek View Original Source React to

React to this headline:

Loading spinner

Cyberattack Hits British Retailer Marks & Spencer Read More »

Korean Telco Giant SK Telecom Hacked

cyberattack, data breach, Data Breaches, Featured, SK Telecom, South Korea, telecoms /

Korean Telco Giant SK Telecom Hacked 2025-04-23 at 10:33 By Eduard Kovacs SK Telecom, South Korea’s largest telecom company, disclosed a data leak involving a malware infection. The post Korean Telco Giant SK Telecom Hacked appeared first on SecurityWeek. This article is an excerpt from SecurityWeek View Original Source React to this headline:

React to this headline:

Loading spinner

Korean Telco Giant SK Telecom Hacked Read More »

The Shadow AI Surge: Study Finds 50% of Workers Use Unapproved AI Tools

AI, Artificial Intelligence, CISO Strategy, Data Protection, Featured, Shadow AI /

The Shadow AI Surge: Study Finds 50% of Workers Use Unapproved AI Tools 2025-04-18 at 19:28 By Kevin Townsend With unapproved AI tools entrenched in daily workflows, experts say it’s time to shift from monitoring to managing Shadow AI use across the enterprise. The post The Shadow AI Surge: Study Finds 50% of Workers Use

React to this headline:

Loading spinner

The Shadow AI Surge: Study Finds 50% of Workers Use Unapproved AI Tools Read More »

Fresh Windows NTLM Vulnerability Exploited in Attacks

exploited, Featured, NTLM, Vulnerabilities, Windows /

Fresh Windows NTLM Vulnerability Exploited in Attacks 2025-04-18 at 11:30 By Ionut Arghire A Windows NTLM vulnerability patched in March has been exploited in attacks targeting government and private institutions. The post Fresh Windows NTLM Vulnerability Exploited in Attacks appeared first on SecurityWeek. This article is an excerpt from SecurityWeek View Original Source React to

React to this headline:

Loading spinner

Fresh Windows NTLM Vulnerability Exploited in Attacks Read More »

SonicWall Flags Old Vulnerability as Actively Exploited

exploited, Featured, SMA, SonicWall, Vulnerabilities, vulnerability /

SonicWall Flags Old Vulnerability as Actively Exploited 2025-04-17 at 14:05 By Eduard Kovacs A SonicWall SMA 100 series vulnerability patched in 2021, which went unnoticed at the time of patching, is being exploited in the wild. The post SonicWall Flags Old Vulnerability as Actively Exploited appeared first on SecurityWeek. This article is an excerpt from

React to this headline:

Loading spinner

SonicWall Flags Old Vulnerability as Actively Exploited Read More »

Apple Quashes Two Zero-Days With iOS, MacOS Patches

apple, CVE-2025-31200, CVE-2025-31201, Featured, iOS 18.4.1, macOS, Malware & Threats, Vulnerabilities, Zero-Day /

Apple Quashes Two Zero-Days With iOS, MacOS Patches 2025-04-16 at 23:38 By Ryan Naraine The vulnerabilities are described as code execution and mitigation bypass issues that affect Apple’s iOS, iPadOS and macOS platforms. The post Apple Quashes Two Zero-Days With iOS, MacOS Patches appeared first on SecurityWeek. This article is an excerpt from SecurityWeek View

React to this headline:

Loading spinner

Apple Quashes Two Zero-Days With iOS, MacOS Patches Read More »

Scroll to Top