Google’s Mandiant team has released its M-Trends 2025 report, highlighting the increasing sophistication of threat actors, particularly China-nexus groups. These adversaries are deploying custom malware ecosystems, exploiting zero-day vulnerabilities in security appliances, and utilizing proxy networks resembling botnets to evade…
Category: EN
Heimdal Awarded Patent for Predictive DNS™ Technology
COPENHAGEN, Denmark, April 23, 2025 – Heimdal, a leading European cybersecurity company, today announced that it has been granted U.S. Patent No. 18333620 for a pioneering invention that calculates the probability of a domain being malicious. This milestone reinforces Heimdal’s…
Blue Shield Leaked Health Info of 4.7M patients with Google Ads
Blue Shield of California has disclosed a significant data breach affecting 4.7 million members, representing the majority of its nearly 6 million customers. The health insurance provider revealed that protected health information (PHI) was inadvertently shared with Google’s advertising platforms…
SonicWall SSLVPN Vulnerability Let Remote Attackers Crash Firewall Appliances
SonicWall has disclosed a critical security vulnerability in its SSLVPN service that allows unauthenticated remote attackers to crash affected firewall appliances, potentially causing significant disruptions to enterprise networks. The vulnerability, tracked as CVE-2025-32818, received a high severity CVSS score of…
Threat Actors Using Weaponized SVG Files to Redirect Users to Malicious Websites
Phishing campaigns have evolved significantly in 2025, with threat actors increasingly leveraging unconventional file formats to bypass security solutions. A particularly concerning trend involves the weaponization of Scalable Vector Graphics (SVG) files, which are being embedded with malicious JavaScript code…
Blue Shield of California Data Breach Impacts 4.7 Million People
Blue Shield of California says a website misconfiguration exposed the health information of its members to Google. The post Blue Shield of California Data Breach Impacts 4.7 Million People appeared first on SecurityWeek. This article has been indexed from SecurityWeek…
Adversary-in-the-Middle Attacks Persist – Strategies to Lessen the Impact
Adversary-in-the-middle fraud (AiTM) represents a significant, ongoing challenge for businesses, with tactics like email hijacking, AI attacks and account takeovers becoming increasingly complex. The post Adversary-in-the-Middle Attacks Persist – Strategies to Lessen the Impact appeared first on Security Boulevard. This…
Ofcom Lays Down the Law with Child Safety Rules for Tech Giants
Ofcom’s Protection of Children Codes and Guidance lists 40 new child safety measures for tech firms This article has been indexed from www.infosecurity-magazine.com Read the original article: Ofcom Lays Down the Law with Child Safety Rules for Tech Giants
GitLab Releases Critical Patch for XSS, DoS, and Account Takeover Bugs
GitLab, a leading DevOps platform, has released a critical security patch impacting both its Community (CE) and Enterprise (EE) editions, urging all self-managed users to update immediately. The new versions—17.11.1, 17.10.5, and 17.9.7—address several high and medium-severity vulnerabilities, including cross-site…
Scams 2.0: How Technology Is Powering the Next Generation of Fraud
Technology is transforming the way financial scams operate, making them more sophisticated, automated, and harder to detect. From deepfake impersonations to cryptocurrency fraud and tech support scams, bad actors are leaving no stone unturned and are leveraging every advanced tool…
Heimdal Awarded Patent for Predictive DNS™ Technology
COPENHAGEN, Denmark, April 23, 2025 – Heimdal, a leading European cybersecurity company, today announced that it has been granted U.S. Patent No. 18333620 for a pioneering invention that calculates the probability of a domain being malicious. This milestone reinforces Heimdal’s…
Cisco Confirms Some Products Impacted by Critical Erlang/OTP Flaw
Cisco is investigating the impact of the Erlang/OTP remote code execution vulnerability CVE-2025-32433 on its products. The post Cisco Confirms Some Products Impacted by Critical Erlang/OTP Flaw appeared first on SecurityWeek. This article has been indexed from SecurityWeek Read the…
Why Smart Retrieval is Critical for Compliance Success
Let’s explore how four key elements can significantly improve how organizations find and use compliance documentation. The post Why Smart Retrieval is Critical for Compliance Success appeared first on Security Boulevard. This article has been indexed from Security Boulevard Read…
Detecting Multi-Stage Infection Chains Madness
During our daily tracking and analysis routine at Sekoia TDR team (Threat Detection & Research), we have been monitoring an attacker infrastructure internally called “Cloudflare tunnel infrastructure to deliver multiple RATs”. This infrastructure is used by several actors to host…
SonicWall SSLVPN Flaw Allows Hackers to Crash Firewalls Remotely
SonicWall has issued an urgent advisory (SNWLID-2025-0009) warning of a high-severity vulnerability in its SSLVPN Virtual Office interface that enables unauthenticated attackers to remotely crash firewalls, causing widespread network disruptions. Tracked as CVE-2025-32818, this flaw carries a CVSS v3 score of…
Heimdal Awarded Patent for Predictive DNS™ Technology
COPENHAGEN, Denmark, April 23, 2025 – Heimdal, a leading European cybersecurity company, today announced that it has been granted U.S. Patent No. 18333620 for a pioneering invention that calculates the probability of a domain being malicious. This milestone reinforces Heimdal’s…
The Human Advantage in the Age of Technological Uncertainties
Our excessive reliance on technology has disabled us from crossing the barriers to experience, sense, and relate with others the way we used to. The post The Human Advantage in the Age of Technological Uncertainties appeared first on Security Boulevard.…
Hackers Use 1000+ IP Addresses to Target Ivanti VPN Vulnerabilities
A sweeping wave of suspicious online activity is putting organizations on alert as hackers ramp up their efforts to probe vulnerabilities in Ivanti Connect Secure (ICS) and Ivanti Pulse Secure (IPS) VPN systems. Cybersecurity firm GreyNoise has identified a dramatic…
Heimdal Awarded Patent for Predictive DNS™ Technology
COPENHAGEN, Denmark, April 23, 2025 – Heimdal, a leading European cybersecurity company, today announced that it has been granted U.S. Patent No. 18333620 for a pioneering invention that calculates the probability of a domain being malicious. This milestone reinforces Heimdal’s…
1000+ Unique IPs Attacking Ivanti Connect Secure Systems to Exploit Vulnerabilities
A significant increase in suspicious scanning activity targeting Ivanti Connect Secure (ICS) and Ivanti Pulse Secure (IPS) VPN systems, signaling a potential coordinated reconnaissance effort by threat actors. The spike, registering more than 230 unique IP addresses probing ICS/IPS endpoints…