Ivanti EPMM 0-Day RCE Vulnerability Under Active Attack
Ivanti’s Endpoint Manager Mobile (EPMM) contains a critical vulnerability chain that has been actively abused. The vulnerabilities, initially disclosed by Ivanti on March 13th, 2025,…
Latest Cybersecurity News — Page 1929
View all →
Virtual Event Today: Threat Detection & Incident Response (TDIR) Summit
SecurityWeek’s 2025 Threat Detection & Incident Response (TDIR) Summit takes place today (May 21st) from 11 AM ET to 4PM ET. Free to attend, this…
Scammers Use Fake Kling AI Ads to Spread Malware
A series of malware scams was spotted targeting users of generative AI tools, with attackers posing as the popular Kling AI platform to spread malicious…
Ransomware Attack Forces Kettering Health to Cancel Procedures
Ohio healthcare network Kettering Health on Tuesday announced that patient procedures were canceled as it was dealing with a system-wide outage caused by a cyberattack.…
The End of VPNs — Part 2: Beyond the Buzz of Zero Trust
[Part 2 of 2 – Based on an interview with Zscaler CSO Deepen Desai] By Holger Schulze, Cybersecurity Insiders “Zero Trust isn’t a feature,” Deepen…
Google Chrome Can Now Auto-Change Compromised Passwords Using Its Built-In Manager
May 21, 2025Ravie LakshmananData Breach / Account Security Google has announced a new feature in its Chrome browser that lets its built-in Password Manager automatically…
Strong fintech security posture at risk via third-party weak links
Financial technology (fintech) companies have a strong security posture but are at risk from third-party weaknesses, according to analysis. In its latest report, SecureScorecard stated…
Elevate your testing with Burp AI: watch Clint Gibler’s exclusive interview with PortSwigger’s Dafydd Stuttard and James Kettle
Amelia Coen | 21 May 2025 at 07:54 UTC AI is transforming Application Security, and PortSwigger is leading the charge. In a must-watch interview, Clint…
Google Warns Users About Phishing Scam Targeting 2 Billion Active Accounts
Google has recently issued a security alert regarding a sophisticated phishing scam that is targeting its massive user base of 2 billion active accounts. The…
Strider Spark protects organizations from state-sponsored threats
Strider announced new capabilities for Spark, the company’s proprietary AI-powered intelligence engine that is transforming how organizations identify and mitigate risks associated with state-sponsored threats.…
Ransomware attacks dropped by a third last month
High-profile ransomware incidents affecting leading UK retailers continue to grab headlines, but in the background, total ransomware attack volumes appear to have eased off over…
Multer Vulnerabilities Expose Node.js Apps To DoS Attacks
Two high-severity security flaws have been identified in Multer, a popular middleware used in Node.js applications for handling file uploads. The Multer vulnerabilities, tracked as…