A 60-Second Walk In The Park
24 Apr Cybercrime Magazine’s First YouTube Video: A 60-Second Walk In The Park Posted at 08:33h in Blogs by Taylor Fox This week in cybersecurity…
Month: April 2025
159 CVEs Exploited in Q1 2025 — 28.3% Within 24 Hours of Disclosure
Apr 24, 2025Ravie LakshmananVulnerability / Threat Intelligence As many as 159 CVE identifiers have been flagged as exploited in the wild in the first quarter…
Challenges persist as UK’s Cyber Security and Resilience Bill moves forward
Since the government announced in the King’s speech last year that they would bring forward a Cyber Security and Resilience Bill, much has changed. The…
Crooks exploit the death of Pope Francis
Crooks exploit the death of Pope Francis Pierluigi Paganini April 24, 2025 Crooks exploit the death of Pope Francis, using public curiosity and emotion to…
Redefining AppSec Testing with Intelligent Scan Recommendations and Asset Classification
As 9 out of 10 valuable web apps are missing testing, we’re launching new capabilities to help teams know what else, beyond core applications, is…
Commvault RCE Vulnerability Exploited—PoC Released
Enterprises and managed service providers globally are now facing urgent security concerns following the disclosure of a major pre-authenticated remote code execution (RCE) vulnerability in…
AVX ONE PQC Tool delivers crypto inventory, risk insights, and readiness scoring
AppViewX has announced the launch of the AVX ONE Post-Quantum Cryptography (PQC) Assessment Tool that generates a Cryptographic Bill of Materials and PQC readiness score.…
Darcula Adds GenAI to Phishing Toolkit, Lowering the Barrier for Cybercriminals
Apr 24, 2025Ravie LakshmananPhishing / Cybercrime The threat actors behind the Darcula phishing-as-a-service (PhaaS) platform have released new updates to their cybercrime suite with generative…
Podcast: RSA 2025 to grapple with AI compliance, US and EU regulation
In this podcast, we talk to Mathieu Gorge, CEO of Vigitrust, about the ongoing impact of artificial intelligence (AI) on data, storage and compliance for…
DslogdRAT Malware Deployed In Ivanti Connect Secure Attacks
A new wave of attacks targeting Ivanti Connect Secure VPN devices has revealed a stealthy malware strain known as DslogdRAT, deployed alongside a simple but…
DeepSeek Under Fire Over Data Privacy And AI Security Risks
Chinese artificial intelligence startup DeepSeek has come under intense scrutiny from South Korean authorities for allegedly transferring user data and AI prompts without proper consent.…
Linux ‘io_uring’ security blindspot allows stealthy rootkit attacks
A significant security gap in Linux runtime security caused by the ‘io_uring’ interface allows rootkits to operate undetected on systems while bypassing advanced Enterprise security…