Cyber

CISA Flags Actively Exploited Vulnerability in SonicWall SMA Devices – The Hacker News

April 17, 2025

The U.S. Cybersecurity and Infrastructure Security Agency (CISA) on Wednesday added a security flaw impacting SonicWall Secure Mobile Access (SMA) 100 Series gateways to its Known Exploited Vulnerabilities (KEV) catalog,…

Cyber Hacker News

Apple Patches Two Actively Exploited iOS Flaws Used in Sophisticated Targeted Attacks – The Hacker News

April 17, 2025

Apple on Wednesday released security updates for iOS, iPadOS, macOS Sequoia, tvOS, and visionOS to address two security flaws that it said have come under active exploitation in the wild.…

Cyber Dark Reading

GPS Spoofing Attacks Spike in Middle East, Southeast Asia – Dark Reading

April 17, 2025

An Indian disaster-relief flight delivering aid is the latest air-traffic incident, as attacks increase in the Middle East and Myanmar and along the India-Pakistan border. – Read More

CSO Online Cyber

Update these two servers from Gladinet immediately, CISOs told – CSO Online

April 17, 2025

CISOs running Gladinet’s CentreStack file server or Triofox file sharing server should update the applications as soon as possible because of a hard-coded key vulnerability which is being exploited now,…

CSO Online Cyber

Russia-linked APT29 targets European diplomats with new malware – CSO Online

April 17, 2025

Cyberespionage group known as APT29 and linked to Russia’s foreign intelligence service (SVR), has added a new malware loader to its toolset. Used for fingerprinting, persistence and payload delivery, the…

CSO Online Cyber

MITRE funding still in up in the air, say experts – CSO Online

April 17, 2025

Infosec pros are relieved that the Trump administration at the last minute extended support for MITRE’s Common Vulnerabilities and Exposures (CVE) database, but at least one wonders if funding will…

CSO Online Cyber

Whistleblower alleges Russian IP address attempted access to US agency’s systems via DOGE-created accounts – CSO Online

April 17, 2025

Someone using a Russian IP address attempted to access the internal systems of the US National Labor Relations Board (NLRB) using legitimate accounts set up by staff from Elon Musk’s…

Cyber Dark Reading

Multiple Groups Exploit NTLM Flaw in Microsoft Windows – Dark Reading

April 16, 2025

The attacks have been going on since shortly after Microsoft patched the vulnerability in March. – Read More

Cyber Dark Reading

China-Linked Hackers Lay Brickstorm Backdoors on Euro Networks – Dark Reading

April 16, 2025

Researchers discovered new variants of the malware, which is tied to a China-nexus threat group, targeting Windows environments of critical infrastructure networks in Europe. – Read More

Cyber Dark Reading

Android Phones Pre-Downloaded With Malware Target User Crypto Wallets – Dark Reading

April 16, 2025

The threat actors lace pre-downloaded applications with malware to steal cryptocurrency by covertly swapping users’ wallet addresses with their own. – Read More

Cyber Dark Reading

Ransomware gang ‘CrazyHunter’ Targets Critical Taiwanese Orgs – Dark Reading

April 16, 2025

Trend Micro researchers detailed an emerging ransomware campaign by a new group known as “CrazyHunter” that is targeting critical sectors in Taiwan. – Read More

Cyber Dark Reading

NIST Updates Privacy Framework With AI and Governance Revisions – Dark Reading

April 16, 2025

The US National Institute of Standards and Technology has updated its Privacy Framework to work cohesively with its Cybersecurity Framework and guide organizations to develop stronger postures to handle privacy…

Cyber Dark Reading

Patch Now: NVDIA Flaws Expose AI Models, Critical Infrastructure – Dark Reading

April 16, 2025

A fix for a critical flaw in a tool allowing organizations to run GPU-accelerated containers released last year did not fully mitigate the issue, spurring the need to patch a…

Cyber Hacker News

Experts Uncover Four New Privilege Escalation Flaws in Windows Task Scheduler – The Hacker News

April 16, 2025

Cybersecurity researchers have detailed four different vulnerabilities in a core component of the Windows task scheduling service that could be exploited by local attackers to achieve privilege escalation and erase…

Cyber Dark Reading

Cloud, Cryptography Flaws in Mobile Apps Leak Enterprise Data – Dark Reading

April 16, 2025

Cloud misconfigurations and cryptography flaws plague some of the top apps used in work environments, exposing organizations to risk and intrusion. – Read More

CISA Flags Actively Exploited Vulnerability in SonicWall SMA Devices – The Hacker News

Apple Patches Two Actively Exploited iOS Flaws Used in Sophisticated Targeted Attacks – The Hacker News

GPS Spoofing Attacks Spike in Middle East, Southeast Asia – Dark Reading

Update these two servers from Gladinet immediately, CISOs told – CSO Online

Russia-linked APT29 targets European diplomats with new malware – CSO Online

MITRE funding still in up in the air, say experts – CSO Online

Whistleblower alleges Russian IP address attempted access to US agency’s systems via DOGE-created accounts – CSO Online

Multiple Groups Exploit NTLM Flaw in Microsoft Windows – Dark Reading

China-Linked Hackers Lay Brickstorm Backdoors on Euro Networks – Dark Reading

Android Phones Pre-Downloaded With Malware Target User Crypto Wallets – Dark Reading

Ransomware gang ‘CrazyHunter’ Targets Critical Taiwanese Orgs – Dark Reading

NIST Updates Privacy Framework With AI and Governance Revisions – Dark Reading

Patch Now: NVDIA Flaws Expose AI Models, Critical Infrastructure – Dark Reading

Experts Uncover Four New Privilege Escalation Flaws in Windows Task Scheduler – The Hacker News

Cloud, Cryptography Flaws in Mobile Apps Leak Enterprise Data – Dark Reading

You Missed

Microsoft Uncovers ‘Whisper Leak’ Attack That Identifies AI Chat Topics in Encrypted Traffic – The Hacker News

‘Landfall’ Malware Targeted Samsung Galaxy Users – Dark Reading

‘Ransomvibing’ Infests Visual Studio Extension Market – Dark Reading

Microsoft Backs Massive AI Push in UAE, Raising Security Concerns – Dark Reading