Play Ransomware Exploited Windows CVE-2025-29824 as Zero-Day to Breach U.S. Organization
Threat actors with links to the Play ransomware family exploited a recently patched security flaw in Microsoft Windows as a zero-day as part of an…
Month: May 2025
Cisco lays out plans for networking in era of quantum computing
Cisco has unveiled its plans to prepare networking for the era of quantum computing. As it officially opened its Quantum Labs in Santa Monica, the…
Microsoft Telnet 0-Click Vulnerability Threatens Networks
Security researchers have uncovered a severe vulnerability affecting the Microsoft Telnet Client, which allows remote attackers to harvest user credentials without any interaction from the…
April updates cause Windows Server auth issues
Microsoft says the April 2025 security updates are causing authentication issues on some Windows Server 2025 domain controllers. The list of impacted platforms includes Windows…
Lampion Banking Malware Uses ClickFix Lures to Steal Banking Credentials
Unit 42 researchers at Palo Alto Networks, a highly targeted malicious campaign orchestrated by the threat actors behind the Lampion banking malware has been uncovered.…
DSIT aims to bolster expertise with year-long secondments
The government has put out a call to hire 25 scientists and technologists with expertise in the areas of artificial intelligence (AI), semiconductors and quantum…
NSO Group must pay WhatsApp over $167M in damages for attacks on its users
NSO Group must pay WhatsApp over $167M in damages for attacks on its users Pierluigi Paganini May 07, 2025 NSO Group must pay WhatsApp over…
Critical AWS Amplify Studio Flaw Allowed Attackers to Execute Arbitrary Code
Why Application Security is Non-Negotiable The resilience of your digital infrastructure directly impacts your ability to scale. And yet, application security remains a critical weak…
ServiceNow K25: McDermott vaunts agentic AI platform as revolutionary
ServiceNow CEO Bill McDermott hailed AI as an “absolute requirement” for the survival of humanity at the supplier’s Knowledge 2025 customer and partner conference in…
IBM Cognos Analytics Security Vulnerability Allowed Unauthorized File Uploads
IBM has issued a security bulletin addressing two newly discovered, high-severity vulnerabilities in its Cognos Analytics platform. These flaws, tracked as CVE-2024-40695 (Malicious File Upload) and CVE-2024-51466 (Expression Language…
Researchers Uncover Malware in Fake Discord PyPI Package Downloaded 11,500+ Times
May 07, 2025Ravie LakshmananSoftware Supply Chain / Malware Cybersecurity researchers have discovered a malicious package on the Python Package Index (PyPI) repository that masquerades as…
May 2025 Android Security Bulletin Fixes 46 Vulnerabilities
Google has published its Android Security Bulletin for May 2025, delivering critical updates to the Android ecosystem. This monthly update resolves 46 vulnerabilities, one of…