11 nation-state groups exploit unpatched Microsoft zero-day
At least 11 state-sponsored threat groups since 2017 have been actively exploiting a Microsoft zero-day flaw allowing for abuse of Windows shortcut files to steal…
Month: March 2025
Click Profit blocked by the FTC over alleged e-commerce scams
The US Federal Trade Commission (FTC) has taken action against the “Click Profit” business opportunity scheme for allegedly earning $14 million while deceiving consumers with false…
Threat Actors Leverage Legacy Drivers to Circumvent TLS Certificate Validation
Threat actors have recently been exploiting legacy drivers to bypass certificate validation, leveraging a technique known as “Legacy Driver Exploitation.” This method involves using vulnerable…
Hackers Exploit Severe PHP Flaw to Deploy Quasar RAT and XMRig Miners
Mar 19, 2025Ravie LakshmananThreat Intelligence / Cryptojacking Threat actors are exploiting a severe security flaw in PHP to deliver cryptocurrency miners and remote access trojans…
VMware vSAN: What are the VM storage alternatives?
Broadcom’s takeover of virtualisation supplier VMWare has brought changes to VMWare’s product line-up and its licensing terms. VMware’s storage virtualisation technology – vSAN – is…
Google acquisition of Wiz driven by enterprise embrace of multicloud
After previously being left at the altar, Alphabet Inc. reached a deal Tuesday through its Google business to buy Wiz for $32 billion in an…
Congress should re-up 2015 information-sharing law, top Hill staffer says
Congress needs to reauthorize an expiring law that provides legal protections to companies for sharing cyber threat information with the federal government and each other,…
WhatsApp patched zero-click flaw exploited in Paragon spyware attacks
WhatsApp has patched a zero-click, zero-day vulnerability used to install Paragon’s Graphite spyware following reports from security researchers at the University of Toronto’s Citizen Lab.…
Hackers Use RMM Tools to Maintain Persistence and Navigate Networks Undetected
Threat actors have increasingly been leveraging legitimate remote monitoring and management (RMM) software to infiltrate and navigate through networks undetected. RMM tools, such as AnyDesk,…
Researchers Use AI Jailbreak on Top LLMs to Create Chrome Infostealer
Cato Networks, a Secure Access Service Edge (SASE) solution provider, has released its 2025 Cato CTRL Threat Report, revealing an important development. According to researchers,…
Shifting to Decentralized Data Storage: The Key to Better Data Security and Privacy
In today’s digital world, data security and privacy are more critical than ever. With the increasing number of cyberattacks, data breaches, and privacy concerns, individuals…
Most organizations change policies to reduce CISO liability risk
93% of organizations made policy changes over the preceding 12 months to address concerns about increased personal liability for CISOs, according to Fastly. This includes…