A cybercriminal group known for ransomware attacks has decided to stop using those methods and instead focus only on stealing information and demanding money in return. The group, called Hunters International, has rebranded and is now running a new…
New WhatsApp Feature Allows Users to Control Media Auto-Saving
As part of WhatsApp’s ongoing efforts to ensure the safety of its users, a new feature will strengthen the confidential nature of chat histories. The enhancement is part of the platform’s overall initiative aimed at increasing privacy safeguards and…
Pixel Patchday April 2025: Mehrere Schwachstellen
Es bestehen mehrere Schwachstellen in Google Android. Ein Angreifer kann diese Schwachstellen ausnutzen, um mehr Rechte zu bekommen und vertrauliche Daten auszulesen. Eine erfolgreiche Ausnutzung erfordert eine Benutzerinteraktion. Dieser Artikel wurde indexiert von BSI Warn- und Informationsdienst (WID): Schwachstellen-Informationen (Bürger…
Palo Alto Networks: Entwickler patchen PAN-OS und GlobalProtect App
Sicherheitslücken im Firewall-Betriebssystem PAN-OS bedrohen Netzwerke. Sicherheitsupdates stehen zum Download. Dieser Artikel wurde indexiert von heise security News Lesen Sie den originalen Artikel: Palo Alto Networks: Entwickler patchen PAN-OS und GlobalProtect App
AMD CPU Signature Verification Vulnerability Enables Unauthorized Microcode Execution
A vulnerability in AMD CPUs has been uncovered, enabling attackers with administrative privileges to bypass microcode signature verification and execute malicious code. Designated as CVE-2024-36347 (CVSS score: 6.4, Medium), the flaw impacts multiple generations of AMD EPYC™ server processors and select consumer…
Cyble Urges Critical Vulnerability Fixes Affecting Industrial Systems
Rockwell Automation, Hitachi Energy and Inaba Denki Sangyo have products affected by critical vulnerabilities carrying severity ratings as high as 9.9 This article has been indexed from www.infosecurity-magazine.com Read the original article: Cyble Urges Critical Vulnerability Fixes Affecting Industrial Systems
IT Security News Hourly Summary 2025-04-11 09h : 1 posts
1 posts were published in the last hour 6:34 : RansomHouse ransomware steals 2TB data from telecom giant
Koalitionsvertrag 2025: Mehr Sicherheit für Deutschland
Der neu geschlossene Koalitionsvertrag bringt umfassende Änderungen mit sich und setzt neue Prioritäten in der inneren und äußeren Sicherheit. Dieser Artikel wurde indexiert von Newsfeed Lesen Sie den originalen Artikel: Koalitionsvertrag 2025: Mehr Sicherheit für Deutschland
Notfallupdate für Microsoft Office
Die Patchday-Updates für Microsofts Office 2016 führten offenbar zu nicht mehr reagierenden Office-Apps. Ein Notfallupdate hilft. Dieser Artikel wurde indexiert von heise security News Lesen Sie den originalen Artikel: Notfallupdate für Microsoft Office
Palo Alto Networks: Schwachstellen in PAN-OS gefährden Firewalls
Sicherheitslücken im Firewall-Betriebssystem PAN-OS bedrohen Netzwerke. Sicherheitsupdates stehen zum Download. Dieser Artikel wurde indexiert von heise security News Lesen Sie den originalen Artikel: Palo Alto Networks: Schwachstellen in PAN-OS gefährden Firewalls
March Madness: Don’t Let Cyber Scammers Attack Your Bracket Blind Spot
Now that the March Madness tournament has concluded with thrilling games and memorable moments, fans are reflecting on their brackets and the champions crowned. While the excitement of the tournament may have subsided, the cybersecurity risks tied to major events…
Gamaredon targeted the military mission of a Western country based in Ukraine
Gamaredon targeted a foreign military mission in Ukraine with updated GammaSteel malware on Feb 26, 2025, per Symantec. Symantec Threat Hunter researchers reported that the Russia-linked APT group Gamaredon (a.k.a. Shuckworm, Armageddon, Primitive Bear, ACTINIUM, Callisto) targeted a foreign military mission based in…
President fires Krebs, Nissan Leaf hack, Typhoon tariff warning
President orders probe of former CISA Director Chris Krebs Nissan Leaf cars can be hacked for remote spying and physical takeover Infosec experts warn of China Typhoon retaliation against tariffs Thanks to our episode sponsor, Nudge Security Are you struggling…
Vendetta: Trump entzieht IT-Sicherheitsfirma Sicherheitsfreigaben
Die IT-Sicherheitsfirma SentinelOne hat den ehemaligen Chef der CISA eingestellt. Trump hat der Firma nun die Sicherheitsfreigaben entzogen. Dieser Artikel wurde indexiert von heise security News Lesen Sie den originalen Artikel: Vendetta: Trump entzieht IT-Sicherheitsfirma Sicherheitsfreigaben
Maryland Community Colleges to Host Ribbon Cutting Events as Maryland’s Cyber Workforce Accelerator Program Ramps Up
Seven Schools Have Confirmed Event Dates for April and May BCR Cyber, a leading provider of comprehensive cybersecurity training and job placement services, and the Maryland Association of Community Colleges (MACC), the advocate and unified voice for Maryland’s 16 community…
Smart TVs and security risks: What you need to know
Smart TVs sit at the heart of many home entertainment systems. Offering internet connectivity, streaming services, and advanced features like voice commands, these TVs allow… The post Smart TVs and security risks: What you need to know appeared first on…
Ivanti 0-Day RCE Flaw Exploitation Details Revealed
A critical unauthenticated Remote Code Execution (RCE) vulnerability, CVE-2025-22457, has been disclosed by Ivanti, sparking concerns across the cybersecurity industry. The flaw, which affects several Ivanti products, allows attackers to execute arbitrary code remotely, potentially compromising sensitive enterprise environments. Researchers, including the Rapid7…
Researchers Exploit Windows Defender with XOR and System Calls
A recent cybersecurity revelation has demonstrated how researchers successfully bypassed Windows Defender antivirus mechanisms using advanced techniques involving XOR encryption and direct system calls. This breakthrough has sparked discussions about the effectiveness of traditional antivirus measures against increasingly sophisticated attack…
Microsoft Issues Urgent Patch to Resolve Office Update Crashes
Microsoft has issued an emergency patch addressing widespread crashes in Office 2016 applications following a problematic update. The fix, identified as KB5002623 and released on April 10, 2025, resolves critical issues that caused Microsoft Word, Excel, and Outlook to stop…
iOS 18.4 Update Introduces Critical Bug in Dynamic Symbol Resolution
Apple’s latest iOS 18.4 update has introduced a significant bug affecting dynamic symbol resolution on devices supporting Pointer Authentication Code (PAC). This issue, first observed by Fabien Perigaud, a noted reverse-engineering expert, has implications for applications relying on dynamic library…
OpenAI Shuts Down Spammer | New RAT Threatens Windows | WordPress Bug Exploited
In this episode of Cybersecurity Today, host Jim Love covers the shutdown of a spammer exploiting OpenAI’s GPT model, a cybersecurity breach at the US Office of the Comptroller of the Currency, and a new malware operation called ‘Operation End…
RansomHouse ransomware steals 2TB data from telecom giant
Ransomware attacks have been on the rise in recent months, likely due to the ease with which hackers can generate substantial earnings through increasingly aggressive tactics, including double and triple extortion. These methods force victims to not only pay a…
Volt Typhoon: China gesteht Cyberangriffe auf die USA angeblich indirekt ein
Schon lange warnen US-Behörden vor Angriffen auf kritische Infrastruktur. Nun hat China angeblich eingestanden, verantwortlich zu sein und einen Grund genannt. Dieser Artikel wurde indexiert von heise security News Lesen Sie den originalen Artikel: Volt Typhoon: China gesteht Cyberangriffe auf…
Jenkins Docker Vulnerability Allows Hackers to Hijack Network Traffic
A newly disclosed vulnerability affecting Jenkins Docker images has raised serious concerns about network security. The vulnerability, stemming from the reuse of SSH host keys, could allow attackers to impersonate Jenkins build agents and hijack sensitive network traffic. Vulnerability Details…