2025-05-13 • CSA • Ahmad Abdillah • elf.lockbit, osx.lockbit, win.lockbit Open article on Malpedia
Microsoft is replacing 'Copilot Runtime' with Windows AI Foundry to help developers build, experiment, and reach users with AI experiences in their apps. [...]
2025-05-01 • Recorded Future • Insikt Group, Insikt Group® • win.terralogger Open article on Malpedia
2025-05-14 • Zscaler • ThreatLabZ research team • win.transferloader Open article on Malpedia
The Brussels Court of Appeal ruled on May 14, 2025, that the consent model used in tracking-based advertising by major tech companies such as Google, Microsoft, Amazon, and X (formerly Twitter)...
At the Build 2025 developer conference, Microsoft announced a new 'Advanced Settings' feature to help users and developers personalize the OS experience. [...]
Microsoft has open-sourced the Windows Subsystem for Linux (WSL), making its source code available on GitHub, except for a few components that are part of Windows. [...]
2025-05-16 • Gdata • Karsten Hahn • win.snipvex Open article on Malpedia
Mozilla Firefox experiments with AI-powered Perplexity Search Engine in its address bar for version 139, signalling a potential…
2025-05-19 • RalfHacker • win.adaptix_c2 Open article on Malpedia
2025-05-15 • Medium b.magnezi • 0xMrMagnezi • win.ave_maria Open article on Malpedia
Following the disclosure of CVE-2025-31324, an unauthenticated file upload vulnerability in SAP NetWeaver enabling RCE, two more security flaws have surfaced in Ivanti Endpoint Manager Mobile...
The United Kingdom's Legal Aid Agency (LAA) has confirmed that a recent cyberattack is more serious than first believed, with hackers stealing a large trove of sensitive applicant data in a data...
Elon Musk’s DOGE isn’t about efficiency — it’s about destruction. We should not let this administration tear down our best defenses against those trying to attack us in cyberspace. The post Don’t...
Disciplined, well-trained, and well-equipped, AI agents are digital soldiers. They operate independently to carry out their orders, working…
Mozilla released emergency security updates to address two Firefox zero-day vulnerabilities demonstrated in the recent Pwn2Own Berlin 2025 hacking competition. [...]
The Pwn2Own Berlin 2025 hacking competition has concluded, with security researchers earning $1,078,750 after exploiting 29 zero-day vulnerabilities and encountering some bug collisions. [...]
In the wake of Luigi Mangione’s alleged killing of a health care CEO with a partially 3D-printed pistol, we built the exact same weapon ourselves—and test-fired it.
WIRED loves a rogue. Except rogues ruined the internet. Is there any salvaging the rebellious spirit without destroying everything?
Amber Scorah and Psst are building a “digital safe” to help people shine a light on the bad things their bosses are doing, without getting found out.
Format Boy makes a living teaching Yahoo Boys, notorious West African scammers, how to use AI and deepfake technology to ensnare their next victims.
As cyber threats targeting industrial control systems (ICS) grow more advanced, the SANS Institute is rolling out a... The post SANS Institute debuts ICS613 hands-on OT penetration testing course...
Highlighting findings from the World Economic Forum’s Global Cybersecurity Outlook 2025 report that showed 72 percent of businesses... The post AI-powered threats, cyber workforce gaps, policy...
The Georgia Republican Party congratulates Marci McCarthy, chairman of the DeKalb County Republican Party and cybersecurity and communications... The post Marci McCarthy tapped by Trump to serve...
An Alabama man has been sentenced to 14 months for hacking the SEC’s X account
Each Monday, the Tenable Exposure Management Academy provides the practical, real-world guidance you need to shift from vulnerability management to exposure management. In this Exposure Management...
An overview of the activities of selected APT groups investigated and analyzed by ESET Research in Q4 2024 and Q1 2025
The UK government says that hackers accessed a “large amount” of personal information in attack on Legal Aid Agency
Security experts tell Infosecurity about the cloud attack trends in the past year, and how CISOs can mitigate evolving techniques
A severe security vulnerability has been discovered in the popular WordPress plugin, Crawlomatic Multisite Scraper Post Generator, potentially placing thousands of websites at risk. Tracked as...