How to Automate CVE and Vulnerability Advisory Response with Tines
May 02, 2025The Hacker NewsVulnerability Management / Security Operations Run by the team at workflow orchestration and AI platform Tines, the Tines library features pre-built…
Month: May 2025
Government and Ofcom disagree about scope of Online Safety Act
The UK government and online harms regulator Ofcom disagree about whether misinformation is covered by the UK’s Online Safety Act (OSA). On 29 April 2025,…
200+ Fake Retail Sites Used in New Wave of Subscription Scams
Bitdefender uncovers a massive surge in sophisticated subscription scams disguised as online shops and evolving mystery boxes. Learn how to spot these fraudulent schemes and…
India’s Hexaware targets public sector business as it expands UK operation
India’s Hexaware has expanded its UK presence through a new office in London’s Canary Wharf, as part of an expansion plan that will see it…
Microsoft fixes Exchange Online bug flagging Gmail emails as spam
Microsoft has resolved an issue with a machine learning model that mistakenly flagged emails from Gmail accounts as spam in Exchange Online. Tracked as EX1064599…
Seven Malicious Packages Exploit Gmail SMTP to Run Harmful Commands
A major supply chain security incident has rocked the Python open-source community as researchers at Socket’s Threat Research Team uncovered seven interconnected malicious packages published…
MintsLoader Drops GhostWeaver via Phishing, ClickFix — Uses DGA, TLS for Stealth Attacks
May 02, 2025Ravie LakshmananMalware / Threat Intelligence The malware loader known as MintsLoader has been used to deliver a PowerShell-based remote access trojan called GhostWeaver.…
Luxury department store Harrods suffered a cyberattack
Luxury department store Harrods suffered a cyberattack Pierluigi Paganini May 02, 2025 Harrods confirmed a cyberattack, following similar incidents suffered by M&S and Co-op, making…
Dutch Services Disrupted by DDoS Attacks From Russian-Affiliated Hacktivists
Multiple Dutch organizations have experienced significant service disruptions this week due to a series of coordinated Distributed Denial-of-Service (DDoS) attacks. These attacks, which have also…
U.S. CISA adds SonicWall SMA100 and Apache HTTP Server flaws to its Known Exploited Vulnerabilities catalog
U.S. CISA adds SonicWall SMA100 and Apache HTTP Server flaws to its Known Exploited Vulnerabilities catalog Pierluigi Paganini May 02, 2025 U.S. Cybersecurity and Infrastructure…
Disney Hacker Admits Guilt After Stealing 1.1TB of Internal Data
A 25-year-old man from Santa Clarita, California, has agreed to plead guilty to hacking into the personal computer of a Walt Disney Company employee and…
Microsoft makes all new accounts passwordless by default
Microsoft has announced that all new Microsoft accounts will be “passwordless by default” to secure them against password attacks such as phishing, brute force, and…