Newest stories

AI and the Future of Cybersecurity Work by Sohrob Kazerounian
2025-11-07T00:00:00Z

In recent years, new studies and institutes have emerged to explore which future jobs will stay huma...

https://www.vectra.ai/blog/ai-and-the-future-of-cybersecurity-work
OP varoittaa: Huijarit kalastelevat tietoja Whatsappissa
2025-04-03T02:00:11Z

Finanssikonserni OP-ryhmä kertoo, että huijarit ovat ryhtyneet käyttämään viestipalvelu Whatsappia t...

https://www.mtvuutiset.fi/artikkeli/op-varoittaa-huijarit-kalastelevat-tietoja-whatsappissa/9130432
Anubis Backdoor
2025-04-03T02:00:10Z

The Savage Ladybug , also known as FIN7, has developed a new, mildly obfuscated Python-based backdoo...

https://catalyst.prodaft.com/public/report/anubis-backdoor/overview
Jenkins Security Advisory 2025-04-02
2025-04-03T02:00:10Z

Classification: Severe, Solution: Official Fix, Exploit Maturity: Not Defined, CVSSv3.1: None, CVEs:...

https://www.jenkins.io/security/advisory/2025-04-02/
Counterfeit Android devices found preloaded with Triada malware
2025-04-03T02:00:09Z

A new version of the Triada trojan has been discovered preinstalled on thousands of new Android devi...

https://www.bleepingcomputer.com/news/security/counterfeit-android-devices-found-preloaded-with-triada-malware/
Drupal - Obfuscate - Cross Site Scripting
2025-04-03T02:00:09Z

Classification: Severe, Solution: Official Fix, Exploit Maturity: Not Defined, CVSSv3.1: None, CVEs:...

https://www.drupal.org/sa-contrib-2025-029
TookPS: DeepSeek isn’t the only game in town
2025-04-03T02:00:08Z

In early March, we published a study detailing several malicious campaigns that exploited the popula...

https://securelist.com/tookps/116019/
Drupal - Access code -Access bypass
2025-04-03T02:00:08Z

Classification: Severe, Solution: Official Fix, Exploit Maturity: Not Defined, CVSSv3.1: None, CVEs:...

https://www.drupal.org/sa-contrib-2025-028
RolandSkimmer: Silent Credit Card Thief Uncovered
2025-04-03T02:00:07Z

Web-based credit card skimming remains a widespread and persistent threat, known for its ability to ...

https://www.fortinet.com/blog/threat-research/rolandskimmer-silent-credit-card-thief-uncovered
Drupal - TacJS - Cross Site Scripting -
2025-04-03T02:00:07Z

Classification: Severe, Solution: Official Fix, Exploit Maturity: Not Defined, CVSSv3.1: 7.2, CVEs: ...

https://www.drupal.org/sa-contrib-2025-027
Latest Ivanti bug, paired with malware, earns an alert from CISA
2025-04-03T02:00:06Z

Federal cybersecurity officials are warning about powerful malware used alongside the exploitation o...

https://therecord.media/cisa-alert-ivanti-bug-resurge-malware
Moxa - Command Injection Leading to Denial-of-Service in Secure Routers, Cellular Routers, and Network Security Appliances
2025-04-03T02:00:06Z

Classification: Critical, Solution: Official Fix, Exploit Maturity: Not Defined, CVSSv4.0: 9.2, CVEs...

https://www.moxa.com/en/support/product-support/security-advisory/mpsa-259491-cve-2025-0415-command-injection-leading-to-denial-of-service-(dos)
Cisco warns of CSLU backdoor admin account used in attacks
2025-04-03T02:00:05Z

Cisco has warned admins to patch a critical Cisco Smart Licensing Utility (CSLU) vulnerability, whic...

https://www.bleepingcomputer.com/news/security/cisco-warns-of-cslu-backdoor-admin-account-used-in-attacks/
Moxa - Command Injection Leading to Privilege Escalation in Secure Routers, Cellular Routers, Network Security Appliances
2025-04-03T02:00:05Z

Classification: Severe, Solution: Official Fix, Exploit Maturity: Not Defined, CVSSv4.0: 8.6, CVEs: ...

https://www.moxa.com/en/support/product-support/security-advisory/mpsa-259491-cve-2025-0676-command-injection-leading-to-privilege-escalation
Malaysian Airport's Cyber Disruption a Warning for Asia
2025-04-03T02:00:04Z

A US$10 million ransomware attack on the Kuala Lumpur International Airport (KLIA) in Malaysia resul...

https://www.darkreading.com/cyberattacks-data-breaches/malaysian-airport-cyber-disruption-warning-asia
Out-of-bounds Write vulnerabilities in Canon Printer Drivers for Production Printers, Office/Small Office Multifunction Printers and Laser Printers
2025-04-03T02:00:04Z

Classification: Critical, Solution: Official Fix, Exploit Maturity: Not Defined, CVSSv3.1: 9.4, CVEs...

https://jvndb.jvn.jp/en/contents/2025/JVNDB-2025-002790.html
The Weaponization of PDFs : 68% of Cyberattacks begin in your inbox, with 22% of these hiding in PDFs
2025-04-03T02:00:03Z

Over 400 billion PDF files were opened last year, and 16 billion documents were edited in Adobe Acro...

https://blog.checkpoint.com/research/the-weaponization-of-pdfs-68-of-cyberattacks-begin-in-your-inbox-with-22-of-these-hiding-in-pdfs/
Multiple vulnerabilities in JTEKT ELECTRONICS CORPORATION's products
2025-04-03T02:00:03Z

Classification: Important, Solution: Official Fix, Exploit Maturity: Not Defined, CVSSv3.1: 6.4, CVE...

https://jvndb.jvn.jp/en/contents/2025/JVNDB-2025-000022.html
Puolan johtavan puolueen IT-järjestelmiin kohdistunut kyberhyökkäys
2025-04-03T02:00:02Z

Puolan pääministerin Donald Tusk kertoi keskiviikkona, että hänen luotsaamansa Kansalaisfoorumi-puol...

https://yle.fi/a/74-20153534
Django security releases issued: 5.1.8 and 5.0.14
2025-04-03T02:00:02Z

Classification: Important, Solution: Official Fix, Exploit Maturity: Not Defined, CVSSv3.1: 5.8, CVE...

https://www.djangoproject.com/weblog/2025/apr/02/security-releases/