The European Commission is making a massive €1.3 billion ($1.4 billion) bet on Europe’s digital future, with a strong focus on shoring up cybersecurity defenses, boosting artificial intelligence, and closing the digital skills gap. The funding, part of the Digital…
Ted Schlein’s Ballistic Ventures is raising $100M for a new fund
Ted Schlein’s cybersecurity-focused Ballistic Ventures is raising $100 million for a new fund, TechCrunch has exclusively learned. This article has been indexed from Security News | TechCrunch Read the original article: Ted Schlein’s Ballistic Ventures is raising $100M for a…
OpenAI just made its first cybersecurity investment
OpenAI just co-led a $43 million Series A into deepfake defense startup Adaptive Security. This article has been indexed from Security News | TechCrunch Read the original article: OpenAI just made its first cybersecurity investment
China-linked group UNC5221 exploited Ivanti Connect Secure zero-day since mid-March
Ivanti addressed a critical remote code execution flaw in Connect Secure, which has been exploited since at least mid-March 2025. Ivanti released security updates to address a critical Connect Secure remote code execution vulnerability tracked as CVE-2025-22457. The vulnerability has been…
Popular VPNs are routing traffic via Chinese companies, including one with link to military
Up to one in five of the most popular mobile VPNs are owned by Chinese companies that do their best to hide the fact. This article has been indexed from Malwarebytes Read the original article: Popular VPNs are routing traffic…
Securing OT Environments with Zero Trust: A Joint Approach by ColorTokens and Claroty
The Growing Cybersecurity Threat in OT Environments As industries undergo digital transformation, the convergence of Information Technology (IT) and Operational Technology (OT) is fundamentally reshaping the landscape of critical infrastructure. This convergence brings notable benefits, including improved productivity, cost savings,…
Protecting Users: Prevent and Stop Cyberthreats Before They Start With Kaseya 365 User
Discover how Kaseya 365 User enhances end-user protection and prevents threats before they cause damage. The post Protecting Users: Prevent and Stop Cyberthreats Before They Start With Kaseya 365 User appeared first on Kaseya. The post Protecting Users: Prevent and…
IT Security News Hourly Summary 2025-04-03 21h : 9 posts
9 posts were published in the last hour 18:32 : Amazon Joins Bidders To Acquire TikTok In US 18:32 : Microsoft Warns of Tax-Themed Email Attacks Using PDFs and QR Codes to Deliver Malware 18:7 : One mighty fine-looking report…
Suspected Chinese spies right now hijacking buggy Ivanti gear – for third time in 3 years
Simple denial-of-service blunder turned out to be a remote unauth code exec disaster Suspected Chinese government spies have been exploiting a newly disclosed critical bug in Ivanti VPN appliances since mid-March. This is now at least the third time in…
Hacker Claims Twilio’s SendGrid Data Breach, Selling 848,000 Records
A hacker, previously linked to the Tracelo breach, now claims to have breached Twilio’s SendGrid, leaking and selling data on 848,000 customers, including contact and company info. This article has been indexed from Hackread – Latest Cybersecurity, Tech, AI, Crypto…
Amazon Joins Bidders To Acquire TikTok In US
But will Beijing or ByteDance allow sale? Amazon joins potential bidders for TikTok in US, ahead of 5 April deadline This article has been indexed from Silicon UK Read the original article: Amazon Joins Bidders To Acquire TikTok In US
Microsoft Warns of Tax-Themed Email Attacks Using PDFs and QR Codes to Deliver Malware
Microsoft is warning of several phishing campaigns that are leveraging tax-related themes to deploy malware and steal credentials. “These campaigns notably use redirection methods such as URL shorteners and QR codes contained in malicious attachments and abuse legitimate services like…
One mighty fine-looking report
Hazel highlights the key findings within Cisco Talos’ 2024 Year in Review (now available for download) and details our active tracking of an ongoing campaign targeting users in Ukraine with malicious LNK files. This article has been indexed from Cisco…
New Phishing Campaign Attacking Investors to Steal Login Credentials
A sophisticated phishing campaign has emerged targeting users of Monex Securities, one of Japan’s largest online brokerage platforms formed through the merger of Monex, Inc. and Nikko Beans, Inc. Since early April 2025, attackers have deployed a series of fraudulent…
Oracle Acknowledges Data Breach and Starts Informing Affected Clients
Oracle Corporation has confirmed a data breach involving its older Gen 1 servers, marking the second cybersecurity incident disclosed by the company in recent weeks. The breach, initially reported by a threat actor on Breachforums on March 20, 2025, has…
Hackers Leveraging Fast Flux Technique to Evade Detection & Hide Malicious Servers
CISA warns of threat actors’ increasing adoption of the fast flux technique to evade detection and conceal malicious server infrastructures. As cybercriminal operations grow increasingly sophisticated, threat actors adopt advanced techniques like fast flux to mask malicious infrastructure, evade defensive measures, and…
StreamElements Confirms Data Exposure via Former Third-Party Provider
Cloud-based streaming tools provider StreamElements has acknowledged a data breach stemming from a third-party service it previously collaborated with after a threat actor leaked customer data samples on a hacking forum. While StreamElements confirmed its own infrastructure remains uncompromised, the…
Threat actors leverage tax season to deploy tax-themed phishing campaigns
As Tax Day approaches in the United States on April 15, Microsoft has detected several tax-themed phishing campaigns employing various tactics. These campaigns use malicious hyperlinks and attachments to deliver credential phishing and malware including RaccoonO365, AHKBot, Latrodectus, BruteRatel C4…
Ivanti VPN customers targeted via unrecognized RCE vulnerability (CVE-2025-22457)
A suspected Chinese APT group has exploited CVE-2025-22457 – a buffer overflow bug that was previously thought not to be exploitable – to compromise appliances running Ivanti Connect Secure (ICS) 22.7R2.5 or earlier or Pulse Connect Secure 9.1x. The vulnerability…
50,000 WordPress Sites Affected by Privilege Escalation Vulnerability in Uncanny Automator WordPress Plugin
On March 5th, 2025, we received a submission for an Arbitrary File Upload vulnerability in Uncanny Automator, a WordPress plugin with more than 50,000 active installations. This vulnerability can be used by authenticated attackers, with subscriber-level access and above, to…
Judge Rejects Government’s Attempt to Dismiss EFF Lawsuit Against OPM, DOGE, and Musk
Court Confirms That, If Proven, DOGE’s Ongoing Access to Personnel Records Is Illegal < div class=”field field–name-body field–type-text-with-summary field–label-hidden”> < div class=”field__items”> NEW YORK—A lawsuit seeking to stop the U.S. Office of Personnel Management (OPM) from disclosing tens of millions…
Chinese APT Pounces on Misdiagnosed RCE in Ivanti VPN Appliances
Ivanti misdiagnoses a remote code execution vulnerability and Mandiant reports that Chinese hackers are launching in-the-wild exploits. The post Chinese APT Pounces on Misdiagnosed RCE in Ivanti VPN Appliances appeared first on SecurityWeek. This article has been indexed from SecurityWeek…
Elon Musk Dismisses Reports Of Imminent Departure From DOGE
Elon Musk dismisses report that Trump told cabinet that he expects Musk to leave his DOGE role within weeks This article has been indexed from Silicon UK Read the original article: Elon Musk Dismisses Reports Of Imminent Departure From DOGE
Android quietly installed a feature that scans your photos for ‘sensitive content’ – how to remove it
Google didn’t tell Android users much about Android System SafetyCore before it hit their phones. Fortunately, you can disable it. This article has been indexed from Latest stories for ZDNET in Security Read the original article: Android quietly installed a…