In The News

Building Effective Security Programs Requires Strategy, Patience, and Clear Vision darkreadingArielle Waldman
May 13, 2025

Capital One executives share insights on how organizations should design their security program, implement passwordless technologies, and reduce their attack surface. Capital One executives share insights on how organizations should design …

Read More
No Comment

In The News


What Does EU’s Bug Database Mean for Vulnerability Tracking? darkreadingAlexander Culafi, Senior News Writer, Dark Reading
May 13, 2025

The EU cyber agency ENISA has launched its vulnerability database, the EUVD; security experts shared their thoughts regarding what this means for CVEs, as well as the larger conversation around …

Read More
No Comment

CISA Warns of TeleMessage Vuln Despite Low CVSS Score darkreadingKristina Beek, Associate Editor, Dark Reading
May 13, 2025

Though the app claims to use end-to-end encryption, hackers have reportedly accessed archived data on the app's servers via a new vulnerability. Though the app claims to use end-to-end encryption, hackers …

Read More
No Comment

Microsoft Patch Tuesday: May 2025, (Tue, May 13th) SANS Internet Storm Center, InfoCON: green
May 13, 2025

Today, Microsoft released its expected update for the May patch on Tuesday. This update fixes 78 vulnerabilities. 11 are rated as critical, and 66 as important. Five of the vulnerabilities …

Read More
No Comment

China-Linked APTs Exploit SAP CVE-2025-31324 to Breach 581 Critical Systems Worldwide The Hacker [email protected] (The Hacker News)
May 13, 2025

A recently disclosed critical security flaw impacting SAP NetWeaver is being exploited by multiple China-nexus nation-state actors to target critical infrastructure networks. "Actors leveraged CVE-2025-31324, an unauthenticated file upload vulnerability that …

Read More
No Comment

Malicious PyPI Package Posing as Solana Tool Stole Source Code in 761 Downloads The Hacker [email protected] (The Hacker News)
May 13, 2025

Cybersecurity researchers have discovered a malicious package on the Python Package Index (PyPI) repository that purports to be an application related to the Solana blockchain, but contains malicious functionality to …

Read More
No Comment

DeepSeek, Deep Research Mean Deep Changes for AI Security darkreadingLiam Crilly
May 13, 2025

Why securing the inference chain is now the top priority for AI applications and infrastructure. Why securing the inference chain is now the top priority for AI applications and infrastructure.  ​Read More

Read More
No Comment

CISA Adds Five Known Exploited Vulnerabilities to Catalog AlertsCISA
May 13, 2025

CISA has added five new vulnerabilities to its Known Exploited Vulnerabilities Catalog, based on evidence of active exploitation. CVE-2025-30400 Microsoft Windows DWM Core Library Use-After-Free Vulnerability CVE-2025-32701 Microsoft Windows Common Log File …

Read More
No Comment

Deepfake Defense in the Age of AI The Hacker [email protected] (The Hacker News)
May 13, 2025

The cybersecurity landscape has been dramatically reshaped by the advent of generative AI. Attackers now leverage large language models (LLMs) to impersonate trusted individuals and automate these social engineering tactics …

Read More
No Comment

North Korean Konni APT Targets Ukraine with Malware to track Russian Invasion Progress The Hacker [email protected] (The Hacker News)
May 13, 2025

The North Korea-linked threat actor known as Konni APT has been attributed to a phishing campaign targeting government entities in Ukraine, indicating the threat actor's targeting beyond Russia. Enterprise security firm …

Read More
No Comment