‘Earth Lamia’ Exploits Known SQL, RCE Bugs Across Asia darkreadingNate Nelson, Contributing Writer
May 30, 2025

A "highly active" Chinese threat group is taking proverbial candy from babies, exploiting known bugs in exposed servers to steal data from organizations in sensitive sectors. A "highly active" Chinese threat …


FBI Warns of Filipino Tech Company Running Sprawling Crypto Scams darkreadingKristina Beek, Associate Editor, Dark Reading
May 30, 2025

The US Treasury said cryptocurrency investment schemes like the ones facilitated by Funnull Technology Inc. have cost Americans billions of dollars annually. The US Treasury said cryptocurrency investment schemes like the …


New EDDIESTEALER Malware Bypasses Chrome’s App-Bound Encryption to Steal Browser Data The Hacker [email protected] (The Hacker News)
May 30, 2025

A new malware campaign is distributing a novel Rust-based information stealer dubbed EDDIESTEALER using the popular ClickFix social engineering tactic initiated via fake CAPTCHA verification pages. "This campaign leverages deceptive CAPTCHA …


Vibe Coding Changed the Development Process darkreadingMichael Nov
May 30, 2025

AI tools shook up development. Now, product security must change too. AI tools shook up development. Now, product security must change too.  ​Read More


Tenable to Acquire AI Security Startup Apex darkreadingJeffrey Schwartz
May 30, 2025

Apex will enhance Tenable's AI Aware tool by mitigating the threats of AI applications and tools not governed by organizations, while enforcing existing security policies. Apex will enhance Tenable's AI Aware …


CISO Stature Rises, but Security Budgets Remain Tight darkreadingRobert Lemos, Contributing Writer
May 30, 2025

The rate of compensation gains has slowed from the COVID years, and budgets remain largely static due to economic fears, but CISOs are increasingly gaining executive status and responsibilities. The rate …


ConnectWise Breached, ScreenConnect Customers Targeted darkreadingRob Wright
May 30, 2025

The software company, which specializes in remote IT management, said a "sophisticated nation state actor" was behind the attack but provided few details. The software company, which specializes in remote IT …


China-Linked Hackers Exploit SAP and SQL Server Flaws in Attacks Across Asia and Brazil The Hacker [email protected] (The Hacker News)
May 30, 2025

The China-linked threat actor behind the recent in-the-wild exploitation of a critical security flaw in SAP NetWeaver has been attributed to a broader set of attacks targeting organizations in Brazil, …


From the “Department of No” to a “Culture of Yes”: A Healthcare CISO’s Journey to Enabling Modern Care The Hacker [email protected] (The Hacker News)
May 30, 2025

Breaking Out of the Security Mosh Pit When Jason Elrod, CISO of MultiCare Health System, describes legacy healthcare IT environments, he doesn't mince words: "Healthcare loves to walk backwards into the …


U.S. Sanctions Funnull for $200M Romance Baiting Scams Tied to Crypto Fraud The Hacker [email protected] (The Hacker News)
May 30, 2025

The U.S. Department of Treasury's Office of Foreign Assets Control (OFAC) has levied sanctions against a Philippines-based company named Funnull Technology Inc. and its administrator Liu Lizhi for providing infrastructure …