Android banking trojan Crocodilus rapidly evolves and goes global
Android banking trojan Crocodilus rapidly evolves and goes global Pierluigi Paganini June 03, 2025 A new Android banking trojan called Crocodilus is being used in…
Month: June 2025
Finding Hidden Parameters: Advanced Enumeration Guide
Reconnaissance plays an integral part in bug bounty hunting, with hidden parameter discovery an even more crucial role as they are often left with inadequate…
Three things the news doesn’t tell you
With the recent attacks on UK retailers Marks & Spencer and Co-op, so-called Scattered Spider has been all over the media, with coverage spilling over…
Microsoft Edge for Android Adds InPrivate Tab Locking with PIN & Bio Authentication
Microsoft Edge for Android is rolling out an enhanced privacy feature that allows users to secure their InPrivate browsing sessions with PIN codes or biometric…
Aembit Extends Workload IAM to Microsoft Ecosystem, Securing Hybrid Access for Non-Human Identities
Silver Spring, Maryland, June 3rd, 2025, CyberNewsWire Aembit, the workload identity and access management (IAM) company, today announced a major expansion of its platform to…
AttackIQ Ready3 identifies which vulnerabilities are truly exposed
AttackIQ releaseed AttackIQ Ready3. With expanded discovery capabilities, Ready3 maps both internal and external attack surfaces. By correlating asset discovery with vulnerability context, attack paths…
Preparing for AI: The CISO’s role in security, ethics and compliance
As generative AI (GenAI) tools become embedded in the fabric of enterprise operations, they bring transformative promise, but also considerable risk. For CISOs, the challenge…
1,000 Instantel Industrial Monitoring Devices Possibly Exposed to Hacking
Over 1,000 industrial monitoring devices made by Canada-based Instantel may be exposed to remote hacking due to a critical vulnerability. An advisory published recently by…
Victoria’s Secret delays earnings release after security incident
Fashion retail giant Victoria’s Secret has delayed its first quarter 2025 earnings release because of ongoing corporate system restoration efforts following a May 24 security…
Splunk Universal Forwarder on Windows Lets Non-Admin Users Access All Contents
A high-severity vulnerability was uncovered in Splunk Universal Forwarder for Windows that compromises directory access controls. The flaw, designated CVE-2025-20298 with a CVSSv3.1 score of…
Apple iOS Activation Flaw Enables Injection of Unauthenticated XML Payloads
A severe vulnerability in Apple’s iOS activation infrastructure has been uncovered, posing a significant risk to device security during the setup phase. This flaw, identified…
Lessons from Ireland on closing the cybersecurity talent gap
There are an estimated 3.5 million unfilled cybersecurity roles worldwide as of 2025. That figure has remained steady since 2021, according to Cybersecurity Ventures. Some countries…