Latest Cybersecurity News and Articles
02 June 2025
Russian national Vitaly Nikolaevich Kovalev is believed to be the leader of the Conti and TrickBot cybercrime groups.
The post Alleged Conti, TrickBot Gang Leader Unmasked appeared first on SecurityWeek.
02 June 2025
The critical flaw, tracked as CVE-2025-20188 (CVSS score of 10/10), allows attackers to execute arbitrary code remotely.
The post Technical Details Published for Critical Cisco IOS XE Vulnerability appeared first on SecurityWeek.
02 June 2025
Counter antivirus services such as AVCheck allow cybercriminals to test whether their malware is detected by antivirus products.
The post Counter Antivirus Service AVCheck Shut Down by Law Enforcement appeared first on SecurityWeek.
02 June 2025
Elected officials, business executives and other prominent figures in recent weeks received messages from someone impersonating Susie Wiles.
The post US Government Is Investigating Messages Impersonating Trump’s Chief of Staff, Susie Wiles appeared first on SecurityWeek.
02 June 2025
Noteworthy stories that might have slipped under the radar: simple PoC code released for Fortinet zero-day, OpenAI O3 disobeys shutdown orders, source code of SilverRAT emerges online.
The post In Other News: PoC for Fortinet Bug, AI Model Subverts Shutdown, RAT Source Code Leaked appeared first on SecurityWeek.
02 June 2025
Cybersecurity researchers have warned of a new spear-phishing campaign that uses a legitimate remote access tool called Netbird to target Chief Financial Officers (CFOs) and financial executives at banks, energy companies, insurers, and investment firms across Europe, Africa, Canada, the Middle East, and South Asia.
"In what appears to be a multi-stage phishing operation, the attackers
31 May 2025
Two information disclosure flaws have been identified in apport and systemd-coredump, the core dump handlers in Ubuntu, Red Hat Enterprise Linux, and Fedora, according to the Qualys Threat Research Unit (TRU).
Tracked as CVE-2025-5054 and CVE-2025-4598, both vulnerabilities are race condition bugs that could enable a local attacker to obtain access to access sensitive information. Tools like
31 May 2025
A multinational law enforcement operation has resulted in the takedown of an online cybercrime syndicate that offered services to threat actors to ensure that their malicious software stayed undetected from security software.
To that effect, the U.S. Department of Justice (DoJ) said it seized four domains and their associated server facilitated the crypting service on May 27, 2025, in
30 May 2025
Security researchers flag two phishing campaigns abusing Firebase and Google Apps Script to host malware and fake login pages.
The post Firebase, Google Apps Script Abused in Fresh Phishing Campaigns appeared first on SecurityWeek.
30 May 2025
The US Treasury Department US has slapped sanctions on Funnull Technology for providing support to cryptocurrency investment scams.
The post US Sanctions Philippine Company for Supporting Crypto Scams appeared first on SecurityWeek.
30 May 2025
A new malware campaign is distributing a novel Rust-based information stealer dubbed EDDIESTEALER using the popular ClickFix social engineering tactic initiated via fake CAPTCHA verification pages.
"This campaign leverages deceptive CAPTCHA verification pages that trick users into executing a malicious PowerShell script, which ultimately deploys the infostealer, harvesting sensitive data such as
30 May 2025
Security leaders discuss the Serviceaide data leak, which impacted around 500,000 Catholic Health patients.
30 May 2025
On May 19th, Kettering Health experienced an unscheduled downtime for most of its IT applications. Security leaders share some of their thoughts on the recent cyberattack.
30 May 2025
The China-linked threat actor behind the recent in-the-wild exploitation of a critical security flaw in SAP NetWeaver has been attributed to a broader set of attacks targeting organizations in Brazil, India, and Southeast Asia since 2023.
"The threat actor mainly targets the SQL injection vulnerabilities discovered on web applications to access the SQL servers of targeted organizations," Trend
30 May 2025
China-linked hackers used a compromised government site to target other government entities with the ToughProgress malware that uses an attacker-controlled Google Calendar for C&C.
The post Chinese Hacking Group APT41 Exploits Google Calendar to Target Governments appeared first on SecurityWeek.
30 May 2025
The roadmap provides an overview of four key stages of the migration process, namely preparation, baseline understanding, planning and execution, and monitoring and evaluation.
The post MITRE Publishes Post-Quantum Cryptography Migration Roadmap appeared first on SecurityWeek.
30 May 2025
The IT software provider says ScreenConnect users were impacted by the attack, which exploited a high-severity ASP.NET vulnerability.
The post ConnectWise Discloses Suspected State-Sponsored Hack appeared first on SecurityWeek.
30 May 2025
Breaking Out of the Security Mosh Pit
When Jason Elrod, CISO of MultiCare Health System, describes legacy healthcare IT environments, he doesn't mince words: "Healthcare loves to walk backwards into the future. And this is how we got here, because there are a lot of things that we could have prepared for that we didn't, because we were so concentrated on where we were."
This chaotic approach has
30 May 2025
The guidance outlines the benefits and challenges or SIEM and SOAR platforms, and shares implementation recommendations.
The post CISA Releases Guidance on SIEM and SOAR Implementation appeared first on SecurityWeek.
30 May 2025
The U.S. Department of Treasury's Office of Foreign Assets Control (OFAC) has levied sanctions against a Philippines-based company named Funnull Technology Inc. and its administrator Liu Lizhi for providing infrastructure to conduct romance baiting scams that led to massive cryptocurrency losses.
The Treasury accused the Taguig-headquartered company of enabling thousands of websites involved in