Ghost Ransomware Strikes Again—Is Your Organization At Risk?
A Ghost ransomware group also referred to as Cring, has been actively exploiting vulnerabilities in software and firmware as recently as January 2025, according to…
Month: February 2025
Windows Disk Cleanup Tool Exploit Allows SYSTEM Privilege Escalation
Microsoft has urgently addressed a high-severity privilege escalation vulnerability (CVE-2025-21420) in the Windows Disk Cleanup Utility (cleanmgr.exe) during its February 2025 Patch Tuesday updates. The…
Microsoft Patches Actively Exploited Power Pages Privilege Escalation Vulnerability
Feb 20, 2025Ravie LakshmananSoftware Security / Vulnerability Microsoft has released security updates to address two Critical-rated flaws impacting Bing and Power Pages, including one that…
Citrix NetScaler Vulnerability Exposes Systems to Unauthorized Commands
Cloud Software Group has raced to address a severe security flaw in its widely used NetScaler management infrastructure that could enable authenticated attackers to execute…
Ghost Ransomware targeting Obsolete IT Systems
A joint report from the FBI and CISA has revealed that the Ghost Ransomware group has been targeting businesses running outdated hardware and software. Since…
Unknown and unsecured: The risks of poor asset visibility
In this Help Net Security interview, Juliette Hudson, CTO of CybaVerse, discusses why asset visibility remains a critical cybersecurity challenge. She explains how to maintain…
Citrix Releases Security Fix for NetScaler Console Privilege Escalation Vulnerability
Feb 20, 2025Ravie LakshmananVulnerability / IT Security Citrix has released security updates for a high-severity security flaw impacting NetScaler Console (formerly NetScaler ADM) and NetScaler…
DOGE Now Has Access to the Top US Cybersecurity Agency
Edward Coristine, a 19-year-old engineer with Elon Musk’s so-called Department of Government Efficiency (DOGE) known as “Big Balls,” is now on staff at the Cybersecurity…
Case Study: Devonport City Council embraces transformation – Governance
Located in the Northwest of Tasmania, Devonport City Council’s transformation project, ‘Living City’ is one of the largest urban renewal projects undertaken in the state…
Russia-linked APTs target Signal messenger
Russia-linked APTs target Signal messenger Pierluigi Paganini February 19, 2025 Russia-linked threat actors exploit Signal ‘s “linked devices” feature to hijack accounts, per Google Threat…
Malware-Infected Signal, Line, and Gmail Apps Alter System Defenses
A recent cybersecurity analysis has uncovered a campaign targeting Chinese-speaking users through malicious installers of popular applications such as Signal, Line, and Gmail. These backdoored…
Next Wave of ‘Scam-Yourself’ Attacks Leverages AI-Generated Deepfake Videos
Cybersecurity experts have uncovered a new wave of “Scam-Yourself” attacks that exploit AI-generated deepfake videos and malicious scripts to deceive users into compromising their own…