SecurityWeek4h
In Other News: Bank of America Warns of Data Breach, Trucking Cybersecurity, Treasury Hack Linked to Silk Typhoon
Microsoft has released fixes for high-severity flaws in Azure SaaS Resources and Purview (no user action required), while ...
SecurityWeek5h
PayPal Phishing Campaign Employs Genuine Links to Take Over Accounts
If the user attempts to log in, however, the page automatically links the victim’s PayPal account with the email address of ...
SecurityWeek5h
Banshee macOS Malware Expands Targeting
The latest version of the Banshee macOS information stealer no longer checks if the infected systems have the Russian ...
SecurityWeek6h
Microsoft DRM Hacking Raises Questions on Vulnerability Disclosures
A research project into vulnerabilities affecting Microsoft’s PlayReady DRM raises some questions on responsible disclosure.
SecurityWeek22h
Exploitation of New Ivanti VPN Zero-Day Linked to Chinese Cyberspies
Google Cloud’s Mandiant has linked the exploitation of CVE-2025-0282, a new Ivanti VPN zero-day, to Chinese cyberspies.
SecurityWeek5h
Major Addiction Treatment Firm BayMark Confirms Ransomware Attack Caused Data Breach
Substance abuse treatment provider BayMark Health Services says patient personal information was compromised in a data breach.
SecurityWeek1d
Palo Alto Networks Patches High-Severity Vulnerability in Retired Migration Tool
Palo Alto Networks has released patches for multiple vulnerabilities in the Expedition migration tool, which was retired on ...
SecurityWeek1d
The ‘Worst in Show’ CES Products Put Your Data at Risk and Cause Waste, Privacy Advocates Say
But not all innovation is good, according to a panel of self-described dystopia experts that has judged some products as ...
SecurityWeek1d
SonicWall Patches Authentication Bypass Vulnerabilities in Firewalls
SonicWall has released patches for multiple vulnerabilities in SonicOS, including high-severity authentication bypass flaws.
SecurityWeek1d
From Silos to Synergy: Transforming Threat Intelligence Sharing in 2025
How breaking down silos, fostering collaboration, and sharing threat intelligence can strengthen cybersecurity resilience.
SecurityWeek2d
Insider Threat: Tackling the Complex Challenges of the Enemy Within
The insider threat problem will worsen, and the solutions will widen, in the age of generative-AI. The insider threat is a ...
SecurityWeek2d
First Android Update of 2025 Patches Critical Code Execution Vulnerabilities
This year’s first batch of monthly security updates for Android resolves 36 vulnerabilities, including critical remote code ...