Citrix Under Active Attack Again With Another Zero-Day – Dark Reading
The flaw is one of three that the company disclosed affecting its NetScaler ADC and NetScaler Gateway technologies. – Read More
Malicious Scanning Waves Slam Remote Desktop Services – Dark Reading
Researchers say the huge spike of coordinated scanning for Microsoft RDP services could indicate the existence of a new, as-yet-undisclosed vulnerability. – Read More
Data I/O Becomes Latest Ransomware Attack Victim – Dark Reading
The “incident” led to outages affecting a variety of the tech company’s operations, though the full scope of the breach is unknown. – Read More
Hook Android Trojan Now Delivers Ransomware-Style Attacks – Dark Reading
New features to take over smartphones and monitor user activity demonstrate the continued evolution of the malware, which is now being spread on GitHub. – Read More
Citrix Patches Three NetScaler Flaws, Confirms Active Exploitation of CVE-2025-7775 – The Hacker News
Citrix has released fixes to address three security flaws in NetScaler ADC and NetScaler Gateway, including one that it said has been actively exploited in the wild. The vulnerabilities in…
New Sni5Gect Attack Crashes Phones and Downgrades 5G to 4G without Rogue Base Station – The Hacker News
A team of academics has devised a novel attack that can be used to downgrade a 5G connection to a lower generation without relying on a rogue base station (gNB).…
Big-Tech-Zulieferer meldet Ransomware-Attacke – CSO Online
Der Anbieter für Programmiersysteme Data I/O wurde kürzlich von einem Cyberangriff getroffen. Dabei wurden möglicherweise Daten gestohlen. janews – shutterstock.com Data I/O bietet Programmierlösungen für Flash-Speicher und Mikrocontroller an. Zu…
DSLRoot, Proxies, and the Threat of ‘Legal Botnets’ – Krebs on Security
The cybersecurity community on Reddit responded in disbelief this month when a self-described Air National Guard member with top secret security clearance began questioning the arrangement they’d made with company…
The Hidden Risk of Consumer Devices in the Hybrid Workforce – Dark Reading
Until businesses begin to account for uncontrolled variables in their threat models, attackers will continue to exploit the weakest link in the chain. – Read More
Rache am Arbeitgeber bringt Entwickler vier Jahre in den Knast – CSO Online
Welche Konsequenzen es haben kann, wenn technisch versierte IT-Fachkräfte zum Innentäter werden, hat die Eaton Corporation am eigenen Leib erfahren. JHVEPhoto | shutterstock.com Wenn unzufriedene Mitarbeitende sich digital an ihrem…
MixShell Malware Delivered via Contact Forms Targets U.S. Supply Chain Manufacturers – The Hacker News
Cybersecurity researchers are calling attention to a sophisticated social engineering campaign that’s targeting supply chain-critical manufacturing companies with an in-memory malware dubbed MixShell. The activity has been codenamed ZipLine by…
NIS2 und der Mittelstand: Zwischen Pflicht und Praxis – CSO Online
NIS2 kommt: Die EU-Richtlinie ist seit 2023 in Kraft und soll europaweite Standards für IT-Sicherheit und digitale Resilienz schaffen. Die Umsetzung in Deutschland steht nach wie vor aus – wie…
Plausible nonsense – when the other side in litigation uses AI – Legal Futures
We received a comprehensive response within 90 minutes. It would have been impossible to instruct a lawyer on the facts within 90 minutes, let alone have them draft a detailed…
Internet Erasure Ltd milestone: Over 70,000 newspaper articles removed from Google to protect reputations – Legal Futures
In today’s digital world, a Google search is often the first step someone takes before offering a job, approving a tenancy, providing finance, or even starting a personal relationship The…
ShadowCaptcha Exploits WordPress Sites to Spread Ransomware, Info Stealers, and Crypto Miners – The Hacker News
A new large-scale campaign has been observed exploiting over 100 compromised WordPress sites to direct site visitors to fake CAPTCHA verification pages that employ the ClickFix social engineering tactic to…