Intel Corporation has announced the divestiture of a 51% stake in its Altera division to Silver Lake, valuing the programmable logic company at $8.75 billion. This transaction marks a significant shift in Intel’s focus, enabling the tech giant to streamline…
Agent Tesla Malware Uses Multi-Stage Attacks with PowerShell Scripts
Researchers from Palo Alto Networks have uncovered a series of malicious spam campaigns leveraging the notorious Agent Tesla malware through intricate, multi-stage infection vectors. The attack begins innocuously enough with the receipt of a socially engineered email, often crafted to…
US Senators Push for Stronger Cybercrime and Computer Fraud Legislation
It’s been a pretty divisive few months in US politics. The Trump administration has made sweeping changes in almost all areas of policy, ranging from international relations to domestic regulations and everything in between. However, some areas of American politics…
From PyPI to the Dark Marketplace: How a Malicious Package Fuels the Sale of Telegram Identities
Introduction In today’s digital era, security breaches can occur in the blink of an eye. Telegram Desktop is renowned for its secure, user-friendly messaging interface, but what if the data used to provide seamless experience could also be your greatest…
Mustang Panda Employs Using Weaponized RAR Archives to Install New ToneShell Malware
Security researchers have uncovered new malicious activities attributed to Mustang Panda, a China-sponsored espionage group known for targeting government entities, military organizations, and non-governmental organizations primarily in East Asia and Europe. The threat actor has been observed utilizing weaponized RAR…
Windows 11 24H2 Update Bug Triggers BSOD Error – Emergency Fix Released
Microsoft has officially confirmed a major bug in its recent Windows 11 24H2 updates that is causing widespread Blue Screen of Death (BSOD) crashes, displaying the stop error code “SECURE_KERNEL_ERROR” (0x18B). The issue, first reported by Windows Latest in March…
MITRE Hackers’ Backdoor Has Targeted Windows for Years
Windows versions of the BrickStorm backdoor that the Chinese APT used in the MITRE hack last year have been active for years. The post MITRE Hackers’ Backdoor Has Targeted Windows for Years appeared first on SecurityWeek. This article has been…
CISA Throws Lifeline to CVE Program with Last-Minute Contract Extension
MITRE will be able to keep running the CVE program for at least the next 11 months This article has been indexed from www.infosecurity-magazine.com Read the original article: CISA Throws Lifeline to CVE Program with Last-Minute Contract Extension
[UPDATE] [mittel] Mattermost Plugins: Schwachstelle ermöglicht Offenlegung von Daten
Ein Angreifer kann eine Schwachstelle in Mattermost ausnutzen, um Informationen offenzulegen Dieser Artikel wurde indexiert von BSI Warn- und Informationsdienst (WID): Schwachstellen-Informationen (Security Advisories) Lesen Sie den originalen Artikel: [UPDATE] [mittel] Mattermost Plugins: Schwachstelle ermöglicht Offenlegung von Daten
IronHusky updates the forgotten MysterySnail RAT to target Russia and Mongolia
MysterySnail RAT attributed to IronHusky APT group hasn’t been reported since 2021. Recently, Kaspersky GReAT detected new versions of this implant in government organizations in Mongolia and Russia. This article has been indexed from Securelist Read the original article: IronHusky…
Apple plugs zero-days holes used in targeted iPhone attacks (CVE-2025-31200, CVE-2025-31201)
Apple has released emergency security updates for iOS/iPadOS, macOS, tvOS and visionOS that fix two zero-day vulnerabilities (CVE-2025-31200, CVE-2025-31201) that have been exploited “in an extremely sophisticated attack against specific targeted individuals on iOS.” CVE-2025-31200 and CVE-2025-31201 CVE-2025-31200 affects CoreAudio,…
Network Edge Devices the Biggest Entry Point for Attacks on SMBs
Sophos found that compromise of network edge devices, such as VPN appliances, accounted for 30% of incidents impacted SMBs in 2024 This article has been indexed from www.infosecurity-magazine.com Read the original article: Network Edge Devices the Biggest Entry Point for…
IT Security News Hourly Summary 2025-04-17 09h : 8 posts
8 posts were published in the last hour 7:4 : KI: Gamechanger in der Cybersecurity 7:4 : iPhone-Nutzer attackiert: Apple warnt vor aktiv ausgenutzten iOS-Lücken 7:3 : Hacker Leaks 33,000 Employee Records in Third-Party API Breach 7:3 : Cisco Webex…
Gezielte Angriffe auf iPhones: Apple patcht Betriebssysteme außerhalb der Reihe
Die Updates sollen zwei Zero-Day-Lücken beseitigen, die offenbar für gezielte Angriffe genutzt wurden. Auch ein CarPlay-Problem geht Apple an. Dieser Artikel wurde indexiert von heise security News Lesen Sie den originalen Artikel: Gezielte Angriffe auf iPhones: Apple patcht Betriebssysteme außerhalb…
Gurucul introduces self-driving SIEM powered by AI enhancements
Gurucul announced a quantum leap forward with a self-driving SIEM powered by extensive AI enhancements and infused within a revamped AI-centric user interface for improved and effective execution of collect, detect, investigate, threat hunt and response workflows to its Unified…
ICO Issues Merseyside-Based Law Firm £60,000 Fine After Cyber-Attack
A UK Law firm has been fined £60,000 after data stolen during a 2022 cyber-attack was published on the dark web This article has been indexed from www.infosecurity-magazine.com Read the original article: ICO Issues Merseyside-Based Law Firm £60,000 Fine After…
Notfallupdate für anonymisierendes Linux Tails
Die Tails-Maintainer haben das Notfallupdate auf Version 6.14.2 veröffentlicht. Sie schließen darin Sicherheitslücken. Dieser Artikel wurde indexiert von heise security News Lesen Sie den originalen Artikel: Notfallupdate für anonymisierendes Linux Tails
iOS 18.4.1, macOS 15.4.1 & Co: Apple liefert Notfall-Patches für mehrere Systeme
Die Updates sollen zwei Zero-Day-Lücken beseitigen, die offenbar für gezielte Angriffe genutzt wurden. Auch ein CarPlay-Problem geht Apple an. Dieser Artikel wurde indexiert von heise security News Lesen Sie den originalen Artikel: iOS 18.4.1, macOS 15.4.1 & Co: Apple liefert…
Microsoft bestätigt: Neue Windows-11-Updates lösen Bluescreens aus
Wer unter Windows 11 nach den jüngsten Updates mit Bluescreens konfrontiert wird, ist damit nicht allein. Auch Microsoft hat das Problem nun erkannt. (Windows 11, Microsoft) Dieser Artikel wurde indexiert von Golem.de – Security Lesen Sie den originalen Artikel: Microsoft…
MITRE bailout, Krebs exits SentinelOne, Apple fixes zero-days
MITRE gets last-minute bailout from CISA Krebs exits SentinelOne after security clearance pulled Apple fixes two zero-days exploited in targeted iPhone attacks Thanks to this week’s episode sponsor, Vanta Do you know the status of your compliance controls right now?…
KI: Gamechanger in der Cybersecurity
Die aktuellen Trends in der Cybersecurity machen deutlich: KI ist gekommen, um zu bleiben. Auf der Angreifer- wie auf der Verteidigerseite. Dieser Artikel wurde indexiert von Newsfeed Lesen Sie den originalen Artikel: KI: Gamechanger in der Cybersecurity
iPhone-Nutzer attackiert: Apple warnt vor aktiv ausgenutzten iOS-Lücken
Zwei Sicherheitslücken in iOS wurden für gezielte Angriffe ausgenutzt. Auch andere Apple-Systeme sind anfällig. Anwender sollten dringend patchen. (Sicherheitslücke, Apple) Dieser Artikel wurde indexiert von Golem.de – Security Lesen Sie den originalen Artikel: iPhone-Nutzer attackiert: Apple warnt vor aktiv ausgenutzten…
Hacker Leaks 33,000 Employee Records in Third-Party API Breach
A hacker has exposed the personal records of over 33,000 employees after discovering unrestricted endpoints belonging to a major technology service provider. The breach, first reported by cybersecurity platform CloudSEK’s BeVigil, highlights alarming gaps in API security that could have…
Cisco Webex Vulnerability Allows Code Execution via Weaponized Meeting Links
A critical vulnerability in Cisco Webex App that could allow attackers to execute malicious code on target systems through specially crafted meeting invitation links. The high-severity flaw, tracked as CVE-2025-20236, has prompted Cisco to release emergency patches for affected versions…