In The News

Commvault CVE-2025-34028 Added to CISA KEV After Active Exploitation Confirmed The Hacker [email protected] (The Hacker News)
May 5, 2025

The U.S. Cybersecurity and Infrastructure Security Agency (CISA) has added a maximum-severity security flaw impacting Commvault Command Center to its Known Exploited Vulnerabilities (KEV) catalog, a little over a week …

Read More
No Comment

In The News


How to Prevent AI Agents From Becoming the Bad Guys darkreadingMarla Hay
May 5, 2025

When designed with strong governance principles, AI can drive innovation while maintaining the people's trust and security. When designed with strong governance principles, AI can drive innovation while maintaining the people's …

Read More
No Comment

CISA Adds One Known Exploited Vulnerability to Catalog AlertsCISA
May 5, 2025

CISA has added one new vulnerability to its Known Exploited Vulnerabilities Catalog, based on evidence of active exploitation. CVE-2025-3248 Langflow Missing Authentication Vulnerability These types of vulnerabilities are frequent attack vectors for …

Read More
No Comment

⚡ Weekly Recap: Nation-State Hacks, Spyware Alerts, Deepfake Malware, Supply Chain Backdoors The Hacker [email protected] (The Hacker News)
May 5, 2025

What if attackers aren't breaking in—they're already inside, watching, and adapting? This week showed a sharp rise in stealth tactics built for long-term access and silent control. AI is being used …

Read More
No Comment

Perfection is a Myth. Leverage Isn’t: How Small Teams Can Secure Their Google Workspace The Hacker [email protected] (The Hacker News)
May 5, 2025

Let’s be honest: if you're one of the first (or the first) security hires at a small or midsize business, chances are you're also the unofficial CISO, SOC, IT Help …

Read More
No Comment

Golden Chickens Deploy TerraStealerV2 to Steal Browser Credentials and Crypto Wallet Data The Hacker [email protected] (The Hacker News)
May 4, 2025

The threat actors known as Golden Chickens have been attributed to two new malware families dubbed TerraStealerV2 and TerraLogger, suggesting continued development efforts to fine-tune and diversify their arsenal. "TerraStealerV2 is …

Read More
No Comment

ISC Stormcast For Monday, May 5th, 2025 https://isc.sans.edu/podcastdetail/9436, (Mon, May 5th) SANS Internet Storm Center, InfoCON: green
May 4, 2025

(c) SANS Internet Storm Center. https://isc.sans.edu Creative Commons Attribution-Noncommercial 3.0 United States License. (c) SANS Internet Storm Center. https://isc.sans.edu Creative Commons Attribution-Noncommercial 3.0 United States License.  ​Read More

Read More
No Comment

Malicious Go Modules Deliver Disk-Wiping Linux Malware in Advanced Supply Chain Attack The Hacker [email protected] (The Hacker News)
May 3, 2025

Cybersecurity researchers have discovered three malicious Go modules that include obfuscated code to fetch next-stage payloads that can irrevocably overwrite a Linux system's primary disk and render it unbootable. The names …

Read More
No Comment

Iranian Hackers Maintain 2-Year Access to Middle East CNI via VPN Flaws and Malware The Hacker [email protected] (The Hacker News)
May 3, 2025

An Iranian state-sponsored threat group has been attributed to a long-term cyber intrusion aimed at a critical national infrastructure (CNI) in the Middle East that lasted nearly two years. The activity, …

Read More
No Comment

Steganography Challenge, (Sat, May 3rd) SANS Internet Storm Center, InfoCON: green
May 3, 2025

If you are interested in experimenting with steganography and my tools, I propose the following challenge.  If you are interested in experimenting with steganography and my tools, I propose the following …

Read More
No Comment