zeljkazorz - Network

Opexus, which is owned by the private equity firm Thoma Bravo and provides software services for processing US government records, was...

Opexus, which is owned by the private equity firm Thoma Bravo and provides software services for processing US government records, was compromised in February by two employees who’d previously been convicted of hacking into the US State Department.

https://www.insurancejournal.com/news/national/2025/05/21/824641.htm

#Cybersecurity #Insiderthreat

Malicious RVTools installer found on official sitehttps://www.helpnetsecurity.com/2025/05/19/rvtools-installer-malware/#cybersecurity...

Malicious RVTools installer found on official site

https://www.helpnetsecurity.com/2025/05/19/rvtools-installer-malware/

#cybersecurity #SupplyChainCompromise

#BugHunters #catsofmastodon

#BugHunters #catsofmastodon

Ivanti EPMM vulnerabilities exploited in the wild (CVE-2025-4427, CVE-2025-4428)Reported by @cert_eu...

Ivanti EPMM vulnerabilities exploited in the wild (CVE-2025-4427, CVE-2025-4428)

Reported by @cert_eu

https://www.helpnetsecurity.com/2025/05/13/ivanti-epmm-vulnerabilities-exploited-in-the-wild-cve-2025-4427-cve-2025-4428/

#Ivanti #Cybersecurity

60K BTC Wallets Tied to LockBit Ransomware Gang...

60K BTC Wallets Tied to LockBit Ransomware Gang Leaked

https://databreaches.net/2025/05/08/60k-btc-wallets-tied-to-lockbit-ransomware-gang-leaked/

#ransomware

https://trifectatech.org/blog/memory-safe-sudo-to-become-the-default-in-ubuntu/

https://trifectatech.org/blog/memory-safe-sudo-to-become-the-default-in-ubuntu/

EU's Clearview AI...

EU's Clearview AI problem:

https://wearesolomon.com/mag/format/investigation/clearview-how-a-shady-us-ai-company-dodged-fines-and-defied-regulators-across-europe/

#GDPR #AI #privacy #EU

When asked what privacy means to him, Altman answered that he “would be too shy to say that in this room.” ...

When asked what privacy means to him, Altman answered that he “would be too shy to say that in this room.”

https://therecord.media/sam-altman-openai-privacy-safeguards

Did you know that when participating in a Zoom call, you can grant permission to other participants to control your computer remotely?While...

Did you know that when participating in a Zoom call, you can grant permission to other participants to control your computer remotely?

While this feature may come in handy when dealing with trusted family, friends and colleagues, threat actors have started abusing it to install malware on targets’ computer.

https://www.helpnetsecurity.com/2025/04/18/zoom-remote-control-attack/

#cybersecurity #Zoom

Windows NTLM vulnerability exploited in multiple attack campaigns CVE-2025-24054, a Windows NTLM hash disclosure vulnerability that...

Windows NTLM vulnerability exploited in multiple attack campaigns

CVE-2025-24054, a Windows NTLM hash disclosure vulnerability that Microsoft has issued patches for last month, has been leveraged by threat actors. Active exploitation in the wild has been observed since March 19, 2025.

https://www.helpnetsecurity.com/2025/04/17/windows-ntlm-vulnerability-exploited-in-multiple-attack-campaigns-cve-2025-24054/

#cybersecurity #Windows

Chris Krebs leaves...

Chris Krebs leaves SentinelOne

https://www.linkedin.com/posts/christopherckrebs_krebs-organizational-announcement-activity-7318394838817599489-9n62/

#cybersecurity

RCE flaw in MSP-friendly file sharing platform exploited by attackers since March...

RCE flaw in MSP-friendly file sharing platform exploited by attackers since March 2025.

https://www.helpnetsecurity.com/2025/04/09/rce-gladinet-centrestack-file-sharing-exploited-cve-2025-30406/

#MSP #ZeroDay #CentreStack #cybersecurity

April 2025 Patch Tuesday is here, and Microsoft has delivered fixes for 120+ vulnerabilities, including a zero-day that's under active...

April 2025 Patch Tuesday is here, and Microsoft has delivered fixes for 120+ vulnerabilities, including a zero-day that's under active attack.

https://www.helpnetsecurity.com/2025/04/08/patch-tuesday-microsoft-zero-day-cve-2025-29824/

#PatchTuesday

Critical Firefox, Tor Browser sandbox escape flaw fixed (CVE-2025-2857)...

Critical Firefox, Tor Browser sandbox escape flaw fixed (CVE-2025-2857)

https://www.helpnetsecurity.com/2025/03/28/critical-firefox-tor-browser-sandbox-escape-flaw-fixed-cve-2025-2857/

#Firefox #Tor

A new, improved version of Darcula, a cat-themed phishing-as-a-service (PhaaS) platform aimed at serving Chinese-speaking criminals, will be...

A new, improved version of Darcula, a cat-themed phishing-as-a-service (PhaaS) platform aimed at serving Chinese-speaking criminals, will be released this month and will allow malicious users to create customized phishing kits to target a wider variety of brands than ever before.

https://www.helpnetsecurity.com/2025/02/20/darcula-allows-tech-illiterate-crooks-to-create-deploy-diy-phishing-kits-targeting-any-brand/

#Cybersecurity #Phishing #carding

About 7,000 people have been rescued from illegal call centre operations in...

About 7,000 people have been rescued from illegal call centre operations in Myanmar.

https://www.theguardian.com/world/2025/feb/19/myanmar-scam-call-centre-compound-rescues-thailand-crackdown

#catsofmastodon

#catsofmastodon

https://snyder.substack.com/p/appeasement-at-munich

https://snyder.substack.com/p/appeasement-at-munich

In this Help Net Security interview, Piotr Kijewski, CEO of The Shadowserver Foundation, discusses the organization’s mission to enhance...

In this Help Net Security interview, Piotr Kijewski, CEO of The Shadowserver Foundation, discusses the organization’s mission to enhance internet security by exposing vulnerabilities, malicious activity, and emerging threats.

https://www.helpnetsecurity.com/2024/12/05/piotr-kijewski-shadowserver-foundation-secure-internet/

@shadowserver #Cybersecurity

https://www.disruptionist.com/p/elon-musks-x-blocks-links-to-signal

https://www.disruptionist.com/p/elon-musks-x-blocks-links-to-signal