CYBERSEC BULLETIN – ONE PLACE FOR YOUR NEWS
Ahold Delhaize Confirms Data Stolen in Ransomware Attack
Security Week • 2025-04-18
RansomwareMulti-Stage Malware Attack Uses .JSE and PowerShell to Deploy Agent Tesla and XLoader
The Hacker News • 2025-04-18
RansomwareCisco Webex bug lets hackers gain code execution via meeting links
BleepingComputer • 2025-04-18
OtherFBI: Scammers pose as FBI IC3 employees to 'help' recover lost funds
BleepingComputer • 2025-04-18
OtherASUS warns of critical auth bypass flaw in routers using AiCloud
BleepingComputer • 2025-04-18
RegulatoryChinese hackers target Russian govt with upgraded RAT malware
BleepingComputer • 2025-04-18
RansomwareNode.js Malware Campaign Targets Crypto Users with Fake Binance and TradingView Installers
The Hacker News • 2025-04-17
RansomwareBlockchain Offers Security Benefits – But Don't Neglect Your Passwords
The Hacker News • 2025-04-17
OtherCritical Erlang/OTP SSH Vulnerability (CVSS 10.0) Allows Unauthenticated Code Execution
The Hacker News • 2025-04-17
VulnerabilitiesWindows NTLM hash leak flaw exploited in phishing attacks on governments
BleepingComputer • 2025-04-17
VulnerabilitiesCISA warns of increased breach risks following Oracle Cloud leak
BleepingComputer • 2025-04-17
BreachesEntertainment services giant Legends International discloses data breach
BleepingComputer • 2025-04-17
BreachesApple Patches Two Actively Exploited iOS Flaws Used in Sophisticated Targeted Attacks
The Hacker News • 2025-04-17
VulnerabilitiesNew BPFDoor Controller Enables Stealthy Lateral Movement in Linux Server Attacks
The Hacker News • 2025-04-16
RansomwareGoogle Blocked 5.1B Harmful Ads and Suspended 39.2M Advertiser Accounts in 2024
The Hacker News • 2025-04-16
OtherMicrosoft: Some devices offered Windows 11 upgrades despite Intune blocks
BleepingComputer • 2025-04-16
OtherJira Down: Atlassian users experiencing degraded performance
BleepingComputer • 2025-04-16
OtherCritical Vulnerability Found in Apache Roller Blog Server
Security Week • 2025-04-16
VulnerabilitiesExperts Uncover Four New Privilege Escalation Flaws in Windows Task Scheduler
The Hacker News • 2025-04-16
RegulatoryCISA extends funding to ensure 'no lapse in critical CVE services'
BleepingComputer • 2025-04-16
OtherMITRE warns that funding for critical CVE program expires today
BleepingComputer • 2025-04-16
OtherGoogle blocked over 5 billion ads in 2024 amid rise in AI-powered scams
BleepingComputer • 2025-04-16
OtherMany Mobile Apps Fail Basic Security—Posing Serious Risks to Enterprises
Security Week • 2025-04-16
OtherMicrosoft Warns of Node.js Abuse for Malware Delivery
Security Week • 2025-04-16
RansomwareApple Pushes iOS, MacOS Patches to Quash Two Zero-Days
Security Week • 2025-04-16
Vulnerabilities41% of Attacks Bypass Defenses: Adversarial Exposure Validation Fixes That
BleepingComputer • 2025-04-16
RansomwareGoogle begins unifying search country domains to Google.com
BleepingComputer • 2025-04-16
OtherChrome 135, Firefox 137 Updates Patch Severe Vulnerabilities
Security Week • 2025-04-16
OtherChinese Hackers Target Linux Systems Using SNOWLIGHT Malware and VShell Tool
The Hacker News • 2025-04-15
RansomwareVirtue AI Attracts $30M Investment to Address Critical AI Deployment Risks
Security Week • 2025-04-15
OtherMicrosoft warns of CPU spikes when typing in classic Outlook
BleepingComputer • 2025-04-15
OtherConduent Says Names, Social Security Numbers Stolen in Cyberattack
Security Week • 2025-04-15
RansomwareInfamous message board 4chan taken down following major hack
BleepingComputer • 2025-04-15
OtherMITRE Signals Potential CVE Program ‘Deterioration’ as US Gov Funding Expires
Security Week • 2025-04-15
OtherChatGPT 4.1 early benchmarks compared against Google Gemini
BleepingComputer • 2025-04-15
OtherChatGPT 4.1 fails to beat Google Gemini 2.5 in early benchmarks
BleepingComputer • 2025-04-15
OtherKidney Dialysis Services Provider DaVita Hit by Ransomware
Security Week • 2025-04-15
RansomwareMeta Resumes E.U. AI Training Using Public User Data After Regulator Approval
The Hacker News • 2025-04-15
OtherHertz confirms customer info, drivers' licenses stolen in data breach
BleepingComputer • 2025-04-14
BreachesCybersecurity firm buying hacker forum accounts to spy on cybercriminals
BleepingComputer • 2025-04-14
OtherMalicious NPM Packages Target Cryptocurrency, PayPal Users
Security Week • 2025-04-14
OtherMicrosoft tells Windows users to ignore 0x80070643 WinRE errors
BleepingComputer • 2025-04-14
Other⚡ Weekly Recap: Windows 0-Day, VPN Exploits, Weaponized AI, Hijacked Antivirus and More
The Hacker News • 2025-04-14
VulnerabilitiesPhishing Campaigns Use Real-Time Checks to Validate Victim Emails Before Credential Theft
The Hacker News • 2025-04-14
OtherHertz confirms customer info and drivers' licenses stolen in data breach
BleepingComputer • 2025-04-14
BreachesCybersecurity in the AI Era: Evolve Faster Than the Threats or Get Left Behind
The Hacker News • 2025-04-14
OtherOpenAI's GPT-4.1, 4.1 nano, and 4.1 mini models release imminent
BleepingComputer • 2025-04-14
OtherNew ‘ResolverRAT’ Targeting Healthcare, Pharmaceutical Organizations
Security Week • 2025-04-14
OtherKidney dialysis firm DaVita hit by weekend ransomware attack
BleepingComputer • 2025-04-14
RansomwareThreat Actor Allegedly Selling Fortinet Firewall Zero-Day Exploit
Security Week • 2025-04-14
VulnerabilitiesGovtech giant Conduent confirms client data stolen in January cyberattack
BleepingComputer • 2025-04-14
RansomwarePakistan-Linked Hackers Expand Targets in India with CurlBack RAT and Spark RAT
The Hacker News • 2025-04-14
OtherAI-hallucinated code dependencies become new supply chain risk
BleepingComputer • 2025-04-12
OtherChina Admitted to US That It Conducted Volt Typhoon Attacks: Report
Security Week • 2025-04-11
RansomwareMicrosoft starts final Windows Recall testing before rollout
BleepingComputer • 2025-04-11
OtherGoogle's AI video generator Veo 2 is rolling out on AI Studio
BleepingComputer • 2025-04-11
OtherMicrosoft Defender will isolate undiscovered endpoints to block attacks
BleepingComputer • 2025-04-11
RansomwareMicrosoft says Edge browser is now 9% faster after optimizations
BleepingComputer • 2025-04-11
OtherVulnerability in OttoKit WordPress Plugin Exploited in the Wild
Security Week • 2025-04-11
VulnerabilitiesRansomware attack cost IKEA operator in Eastern Europe $23 million
BleepingComputer • 2025-04-11
RansomwareGamaredon Uses Infected Removable Drives to Breach Western Military Mission in Ukraine
The Hacker News • 2025-04-10
Breaches‘AkiraBot’ Spammed 80,000 Websites With AI-Generated Messages
Security Week • 2025-04-10
OtherGitHub Announces General Availability of Security Campaigns
Security Week • 2025-04-10
OtherMicrosoft releases emergency update to fix Office 2016 crashes
BleepingComputer • 2025-04-10
OtherOpenAI wants ChatGPT to know you over your life with new Memory update
BleepingComputer • 2025-04-10
OtherChatGPT's o4-mini, o4-mini-high and o3 spotted ahead of release
BleepingComputer • 2025-04-10
OtherEuropol Targets Customers of Smokeloader Pay-Per-Install Botnet
Security Week • 2025-04-10
OtherClaude copies ChatGPT with $200 Max plan, but users aren't happy
BleepingComputer • 2025-04-10
OtherOracle says "obsolete servers" hacked, denies cloud breach
BleepingComputer • 2025-04-09
BreachesGroucho’s Wit, Cloud Complexity, and the Case for Consistent Security Policy
Security Week • 2025-04-09
OtherOracle Faces Mounting Criticism as It Notifies Customers of Hack
Security Week • 2025-04-09
OtherCISA Warns of CentreStack's Hard-Coded MachineKey Vulnerability Enabling RCE Attacks
The Hacker News • 2025-04-09
VulnerabilitiesWindows 11 tests sharing apps screen and files with Copilot AI
BleepingComputer • 2025-04-09
OtherExplosive Growth of Non-Human Identities Creating Massive Security Blind Spots
The Hacker News • 2025-04-09
OtherGoogle Targets SOC Overload With Automated AI Alert and Malware Analysis Tools
Security Week • 2025-04-09
RansomwareMicrosoft: April 2025 updates break Windows Hello on some PCs
BleepingComputer • 2025-04-09
OtherLovable AI Found Most Vulnerable to VibeScamming — Enabling Anyone to Build Live Scam Pages
The Hacker News • 2025-04-09
OtherWindows 11 April update unexpectedly creates new 'inetpub' folder
BleepingComputer • 2025-04-09
OtherAurascape Banks Hefty $50 Million to Mitigate ‘Shadow AI’ Risks
Security Week • 2025-04-08
OtherMicrosoft: Windows CLFS zero-day exploited by ransomware gang
BleepingComputer • 2025-04-08
VulnerabilitiesVulnerability Management Firm Spektion Emerges From Stealth With $5 Million in Funding
Security Week • 2025-04-08
VulnerabilitiesWhatsApp Vulnerability Could Facilitate Remote Code Execution
Security Week • 2025-04-08
VulnerabilitiesAWS rolls out ML-KEM to secure TLS from quantum threats
BleepingComputer • 2025-04-08
OtherWindows 10 KB5055518 update fixes random text when printing
BleepingComputer • 2025-04-08
OtherFake Microsoft Office add-in tools push malware via SourceForge
BleepingComputer • 2025-04-08
Ransomware