In The News

Microsoft Uncovers Sandworm Subgroup’s Global Cyber Attacks Spanning 15+ Countries The Hacker [email protected] (The Hacker News)
February 12, 2025

A subgroup within the infamous Russian state-sponsored hacking group known as Sandworm has been attributed to a multi-year initial access operation dubbed BadPilot that stretched across the globe. "This subgroup has …


Researchers Find New Exploit Bypassing Patched NVIDIA Container Toolkit Vulnerability The Hacker [email protected] (The Hacker News)
February 12, 2025

Cybersecurity researchers have discovered a bypass for a now-patched security vulnerability in the NVIDIA Container Toolkit that could be exploited to break out of a container's isolation protections and gain …


How to Steer AI Adoption: A CISO Guide The Hacker [email protected] (The Hacker News)
February 12, 2025

CISOs are finding themselves more involved in AI teams, often leading the cross-functional effort and AI strategy. But there aren’t many resources to guide them on what their role should …


North Korean Hackers Exploit PowerShell Trick to Hijack Devices in New Cyberattack The Hacker [email protected] (The Hacker News)
February 12, 2025

The North Korea-linked threat actor known as Kimsuky has been observed using a new tactic that involves deceiving targets into running PowerShell as an administrator and then instructing them to …


Microsoft’s Patch Tuesday Fixes 63 Flaws, Including Two Under Active Exploitation The Hacker [email protected] (The Hacker News)
February 12, 2025

Microsoft on Tuesday released fixes for 63 security flaws impacting its software products, including two vulnerabilities that it said has come under active exploitation in the wild. Of the 63 vulnerabilities, …


Ivanti Patches Critical Flaws in Connect Secure and Policy Secure – Update Now The Hacker [email protected] (The Hacker News)
February 11, 2025

Ivanti has released security updates to address multiple security flaws impacting Connect Secure (ICS), Policy Secure (IPS), and Cloud Services Application (CSA) that could be exploited to achieve arbitrary code …


Microsoft Patch Tuesday, February 2025 Edition Krebs on SecurityBrianKrebs
February 11, 2025

Microsoft today issued security updates to fix at least 56 vulnerabilities in its Windows operating systems and supported software, including two zero-day flaws that are being actively exploited.  Microsoft today issued …


Google Confirms Android SafetyCore Enables AI-Powered On-Device Content Classification The Hacker [email protected] (The Hacker News)
February 11, 2025

Google has stepped in to clarify that a newly introduced Android System SafetyCore app does not perform any client-side scanning of content. "Android provides many on-device protections that safeguard users against …


4 Ways to Keep MFA From Becoming too Much of a Good Thing The Hacker [email protected] (The Hacker News)
February 11, 2025

Multi-factor authentication (MFA) has quickly become the standard for securing business accounts. Once a niche security measure, adoption is on the rise across industries. But while it’s undeniably effective at …


Progress Software Patches High-Severity LoadMaster Flaws Affecting Multiple Versions The Hacker [email protected] (The Hacker News)
February 11, 2025

Progress Software has addressed multiple high-severity security flaws in its LoadMaster software that could be exploited by malicious actors to execute arbitrary system commands or download any file from the …