China-Backed Threat Actor ‘UNC5174’ Using Open Source Tools in Stealthy Attacks darkreadingAlexander Culafi, Senior News Writer, Dark Reading
April 15, 2025

Sysdig researchers detailed an ongoing campaign from China-backed threat actor UNC5174, which is using open source hacking tools to stay under the radar. Sysdig researchers detailed an ongoing campaign from China-backed …


Critical Apache Roller Vulnerability (CVSS 10.0) Enables Unauthorized Session Persistence The Hacker [email protected] (The Hacker News)
April 15, 2025

A critical security vulnerability has been disclosed in the Apache Roller open-source, Java-based blogging server software that could allow malicious actors to retain unauthorized access even after a password change. The …


Malicious PyPI Package Targets MEXC Trading API to Steal Credentials and Redirect Orders The Hacker [email protected] (The Hacker News)
April 15, 2025

Cybersecurity researchers have disclosed a malicious package uploaded to the Python Package Index (PyPI) repository that's designed to reroute trading orders placed on the MEXC cryptocurrency exchange to a malicious …


CISA Releases Nine Industrial Control Systems Advisories AlertsCISA
April 15, 2025

CISA released nine Industrial Control Systems (ICS) advisories on April 15, 2025. These advisories provide timely information about current security issues, vulnerabilities, and exploits surrounding ICS. ICSA-25-105-01 Siemens Mendix Runtime ICSA-25-105-02 Siemens …


Majority of Browser Extensions Can Access Sensitive Enterprise Data, New Report Finds The Hacker [email protected] (The Hacker News)
April 15, 2025

Everybody knows browser extensions are embedded into nearly every user’s daily workflow, from spell checkers to GenAI tools. What most IT and security people don’t know is that browser extensions’ …


Crypto Developers Targeted by Python Malware Disguised as Coding Challenges The Hacker [email protected] (The Hacker News)
April 15, 2025

The North Korea-linked threat actor assessed to be behind the massive Bybit hack in February 2025 has been linked to a malicious campaign that targets developers to deliver new stealer …


Online Services Again Abused to Exfiltrate Data, (Tue, Apr 15th) SANS Internet Storm Center, InfoCON: green
April 14, 2025

If Attackers can abuse free online services, they will do for sure&#;x26;#;x21; Why spend time to deploy a C2 infrastructure if you have plenty of ways to use "official" services. …


Gladinet’s Triofox and CentreStack Under Active Exploitation via Critical RCE Vulnerability The Hacker [email protected] (The Hacker News)
April 14, 2025

A recently disclosed security flaw in Gladinet CentreStack also impacts its Triofox remote access and collaboration solution, according to Huntress, with seven different organizations compromised to date. Tracked as CVE-2025-30406 (CVSS …


Meta Resumes E.U. AI Training Using Public User Data After Regulator Approval The Hacker [email protected] (The Hacker News)
April 14, 2025

Meta has announced that it will begin to train its artificial intelligence (AI) models using public data shared by adults across its platforms in the European Union, nearly a year …


Trump Revenge Tour Targets Cyber Leaders, Elections Krebs on SecurityBrianKrebs
April 14, 2025

President Trump last week revoked security clearances for Chris Krebs, the former director of the Cybersecurity and Infrastructure Security Agency (CISA) who was fired by Trump after declaring the 2020 …