How to Stay Ahead of Vulnerabilities
In April 2025, cybersecurity teams were starkly reminded of the stakes involved in patch management when Microsoft disclosed CVE-2025-29824, a zero-day privilege escalation flaw in the…
Month: May 2025
Multiple Ivanti Endpoint Manager Vulnerabilities Allows Remote Code Execution
Critical security flaws have been uncovered in Ivanti Endpoint Manager Mobile (EPMM), a widely used mobile device management (MDM) solution, exposing organizations to the risk…
researcher earned 150K hacking VMware ESXi
Pwn2Own Berlin 2025 Day Two: researcher earned 150K hacking VMware ESXi Pierluigi Paganini May 16, 2025 On day two of Pwn2Own Berlin 2025, participants earned…
Hack could cost Coinbase up to $400M: filing
Coinbase doesn’t plan on bending to a $20 million ransom demand from hackers who coaxed customer information out of international support agents, the company said…
FBI Warns of US Govt Officials Impersonated in Malicious Message Campaign
The Federal Bureau of Investigation (FBI) issued an urgent warning Thursday about an ongoing malicious campaign where cybercriminals are impersonating senior US officials through text…
Malware Mastermind Andrei Tarasov Evades US Extradition Returns to Russia
In a significant setback for US cybercrime enforcement efforts, Russian hacker Andrei Tarasov has evaded extradition to the United States and successfully returned to his…
Chinese Agent Impersonate as Stanford student For Intelligence Gathering
Chinese intelligence operative posing as a Stanford University student has been uncovered following an investigation into suspicious approaches made to students conducting China-related research. The…
New botnet HTTPBot targets gaming and tech industries with surgical attacks
New botnet HTTPBot targets gaming and tech industries with surgical attacks Pierluigi Paganini May 16, 2025 New botnet HTTPBot is targeting China’s gaming, tech, and…
DOGE could scrap identity protections for those impacted by OPM breach, senator warns
A top Senate Intelligence Democrat is warning the Office of Personnel Management against cancelling identity protection services that have been provided to current and former…
Chinese Agent Impersonates as Stanford Student For Intelligence Gathering
A recent investigation has uncovered a concerning case of espionage at one of America’s premier academic institutions, where a Chinese intelligence agent posed as a…
Printer Company Distributes Malicious Drivers Infected with XRed Malware
Procolored, a printer manufacturing company, has been found distributing software drivers infected with malicious code, including the notorious XRed backdoor malware. The issue came to…
Windows 11, VMware, Firefox and Others Hacked
The beginning of Pwn2Own Berlin 2025, hosted at the OffensiveCon conference, has concluded its first two days with notable achievements in cybersecurity research. A total…