Cybercriminals recently leveraged a fake Zoom installer to deploy BlackSuit ransomware across an enterprise network. The attack began when an unsuspecting victim visited a malicious website mimicking Zoom’s official download page (zoommanager[.]com), where they downloaded what appeared to be a…
Category: EN
Why we’re no longer doing April Fools’ Day
The internet is so filled with falsehoods that April Fools hits different these days. That’s why, as a cybersecurity company, we’re out. This article has been indexed from Malwarebytes Read the original article: Why we’re no longer doing April Fools’…
A week in security (March 24 – March 30)
A list of topics we covered in the week of March 24 to March 30 of 2025 This article has been indexed from Malwarebytes Read the original article: A week in security (March 24 – March 30)
US Seizes $8.2m from Romance Baiting Scammers
The DoJ has managed to recoup over $8m from scammers, stolen in romance baiting schemes This article has been indexed from www.infosecurity-magazine.com Read the original article: US Seizes $8.2m from Romance Baiting Scammers
From Contagious to ClickFake Interview: Lazarus leveraging the ClickFix tactic
This post was originally distributed as a private FLINT report to our customers on 21 March 2025. Introduction In March 2025, Bybit, an UAE-based crypto exchange platform, was targeted by Lazarus, a state-sponsored intrusion set attributed to the Democratic People’s…
Malicious Plays: Network Security Challenges During Major Sports Events
Major sporting events like the Super Bowl, the World Series or March Madness can be prime time for cybercriminals to try to prey on people. Whether it’s by using URLs that look like real sports betting and news sites or…
senhasegura rebrands as Segura, marking a new chapter in identity security
senhasegura, a globally recognized leader in Privileged Access Management (PAM), announces its evolution into Segura, marking a new chapter for the company and its mission to deliver futureproof identity security. Founded in Brazil in 2009, senhasegura quickly earned international recognition…
Canada launches breach risk self-assessment online tool
Privacy Commissioner of Canada Philippe Dufresne has launched a new online tool that will help businesses and federal institutions that experience a privacy breach to assess whether the breach is likely to create a real risk of significant harm to…
Canadian Hacker Linked To Anonymous Charged In Texas GOP Hack: Cyber Security Today for March 31, 2025
Cybersecurity Today: Hacktivism, Solar Power Vulnerabilities, and Global Phishing Challenges In this episode of Cybersecurity Today, host David Shipley covers multiple cybersecurity stories including: a Canadian hacker charged for the 2021 Texas GOP hack, vulnerabilities in solar power gear, France’s…
Document converter warning, Resurge exploits Ivanti, Blacklock hackers exposed
FBI warns of increase in free online document converter scams Resurge malware exploits Ivanti flaw BlackLock hackers exposed through leak site vulnerability Thanks to today’s episode sponsor, Qualys “Overwhelmed by noise in your cybersecurity processes? Cut through the clutter with…
Navigating the API Security Landscape: Lessons from GoDaddy’s FTC Settlement
In today’s digital landscape, APIs (Application Programming Interfaces) are essential for modern business operations. They facilitate seamless connectivity and data exchange across diverse platforms and services, driving innovation and efficiency. However, this interconnectedness also brings significant security and privacy challenges.…
23andMe users delete data as company files for bankruptcy and seeks buyer
DNA testing company 23andMe has filed for bankruptcy. Tens of thousands of people are now racing to delete their genome profiles from the company’s website.… The post 23andMe users delete data as company files for bankruptcy and seeks buyer appeared…
Canon Printer Vulnerability Allows Attackers to Execute Arbitrary Code
A security vulnerability, tracked as CVE-2025-1268, has been found in certain Canon printer drivers, potentially allowing attackers to execute arbitrary code. The flaw, categorized as an out-of-bounds vulnerability, affects printer drivers for office multifunction printers, small office printers, production printers, and laser…
Cybersecurity in 2025: The Biggest Threats and How to Protect Yourself
The year 2025 is critical for cybersecurity as cyber threats are advancing unprecedentedly. AI-driven attacks, deepfake scams, and state-of-the-art ransomware schemes have become more prevalent. Businesses and individuals must remain vigilant against these emerging dangers. Implementing various security measures, adopting…
ClickFix Captcha – A New Technique Hackers Used to Deliver Infostealers, Ransomware, & Quakbot Malware
Cybercriminals are leveraging fake CAPTCHA verification pages dubbed ClickFix to distribute malware, including infostealers, ransomware, and the notorious Qakbot banking trojan. This technique manipulates users into executing malicious commands disguised as routine “verify you are human” prompts. The attack begins…
Mitel Alerts Users to Severe XSS Vulnerability in MiContact Center
Mitel has issued a security advisory (MISA-2025-0003) to notify users of its MiContact Center Business software about a high-severity reflected cross-site scripting (XSS) vulnerability. The vulnerability, identified in its Legacy Chat component, poses significant risks, allowing attackers to execute malicious…
Cybersecurity news headlines trending on Google
New Malware Crocodilus Targets Crypto Wallet Credentials Malware gangs are continually evolving their tactics to steal sensitive information, especially in the ever-growing world of cryptocurrency. Recently, a new malware variant called Crocodilus has emerged, specifically targeting mobile users in Spain…
The Critical Role of Backup and Encryption in Ransomware Defenses
In today’s increasingly digital world, ransomware attacks have become one of the most pervasive threats to businesses and individuals alike. Ransomware is a type of malicious software that locks a victim’s files or entire system, demanding a ransom to restore…
Multiple Dell Unity Vulnerabilities Allow Attackers to Compromise Systems
Dell Technologies has released a security advisory detailing multiple critical vulnerabilities in its Dell Unity storage systems and related software. These vulnerabilities, if exploited, could allow attackers to gain unauthorized access, execute arbitrary commands, or even compromise the affected systems…
Two things you need in place to successfully adopt AI
Organizations should not shy away from taking advantage of AI tools, but they need to find the right balance between maximizing efficiency and mitigating organizational risk. They need to put in place: 1. A seamless AI security policy AI may…