Here’s what to look out for
Have you received a text message about an unpaid road toll? Make sure you’re not the next victim of a smishing scam. 06 May 2025…
Latest Cybersecurity News — Page 2030
View all →
PoC Tool Released to Detect Servers Affected by Critical Apache Parquet Vulnerability
F5 Labs has released a new proof-of-concept (PoC) tool designed to help organizations detect servers vulnerable to the recently disclosed Apache Parquet vulnerability, CVE-2025-30065. This…
Cybercrime Magazine YouTube Channel Receives Gold Creator Award
We just opened a package containing our YouTube Gold Play Button Plaque and this letter: Cybercrime Magazine, You did it. One million YouTube subscribers. Congratulations!…
PoC exploit for SysAid pre-auth RCE released, upgrade quickly!
WatchTowr researchers have released a proof-of-concept (PoC) exploit that chains two vulnerabilities in SysAid On-Prem – the self-hosted version of the platform behind SysAid’s popular…
A Technical Gap Analysis of Last-Mile Protection
May 07, 2025The Hacker NewsBrowser Security / Enterprise Security Security Service Edge (SSE) platforms have become the go-to architecture for securing hybrid work and SaaS…
Schools pilot exam results app that could save £30m
Thousands of students will receive exam results digitally this summer, as part of a government plan that could cut bureaucracy in education and save £30m…
Police takes down six DDoS-for-hire services, arrests admins
Polish authorities have detained four suspects linked to six DDoS-for-hire platforms, believed to have facilitated thousands of attacks targeting schools, government services, businesses, and gaming…
Windows 0-Day Vulnerability Exploited in Wild to Deploy Play ransomware
Threat actors linked to the Play ransomware operation exploited a zero-day vulnerability in Microsoft Windows prior to its patching on April 8, 2025. The vulnerability,…
SysAid ITSM Vulnerabilities Enables Pre-Auth Remote Command Execution
Security researchers have disclosed a chain of critical vulnerabilities affecting SysAid ITSM’s On-Premise solution, enabling unauthenticated attackers to execute remote commands by exploiting several pre-auth…
Critical Langflow Vulnerability (CVE-2025-3248) Actively Exploited, Warns CISA
CISA warns of active exploitation of critical Langflow vulnerability (CVE-2025-3248). Critical RCE flaw allows full server takeover. Patch to version 1.3.0 now! In April 2025,…
Microsoft to say NO to passwords and to shut down Authenticator App
For years, tech companies have been advocating for a shift toward passwordless login systems, citing the reduced security risks associated with traditional passwords. Now, in…
SysAid Patches 4 Critical Flaws Enabling Pre-Auth RCE in On-Premise Version
May 07, 2025Ravie LakshmananVulnerability / IT Service Cybersecurity researchers have disclosed multiple security flaw in the on-premise version of SysAid IT support software that could…