Stay Updated with the Latest Tech News
Get ahead of the curve with the latest insights, trends, and analysis in the tech world.
Browse by Category
RVTools Official Site Hacked to Deliver Bumblebee Malware via Trojanized Installer
The official site for RVTools has been hacked to serve a compromised installer for the popular VMware environment reporting utility. "Robware.net and RVTools.com are currently offline. We are working expeditiously to restore service and appreciate your patience," the company said in a statement posted on its website. "Robware.net and RVTools.com are the only authorized and supported websites for
Published on: May 19, 2025 | Source:
Share on Facebook
Share in Tweet (rip twitter)
Share on LinkedIn
Share on Reddit
Share on Threads
Share on Bluesky
Ransomware Gangs Use Skitnet Malware for Stealthy Data Theft and Remote Access
Several ransomware actors are using a malware called Skitnet as part of their post-exploitation efforts to steal sensitive data and establish remote control over compromised hosts. "Skitnet has been sold on underground forums like RAMP since April 2024," Swiss cybersecurity company PRODAFT told The Hacker News. "However, since early 2025, we have observed multiple ransomware operators using it
Published on: May 19, 2025 | Source:CVE Disruption Threatens Foundations of Defensive Security
If the Common Vulnerabilities and Exposures system continues to face uncertainty, the repercussions will build slowly, and eventually the cracks will become harder to contain.
Published on: May 19, 2025 | Source:UK Legal Aid Agency Finds Data Breach Following Cyberattack
The UKβs Legal Aid Agency was targeted in a cyberattack in April and it recently determined that hackers have stolen sensitive data. The post UK Legal Aid Agency Finds Data Breach Following Cyberattack appeared first on SecurityWeek.
Published on: May 19, 2025 | Source:The NSAβs βFifty Years of Mathematical Cryptanalysis (1937β1987)β
In response to a FOIA request, the NSA released βFifty Years of Mathematical Cryptanalysis (1937-1987),β by Glenn F. Stahly, with a lot of redactions. Weirdly, this is the second time the NSA has declassified the document. John Young got a copy in 2019. This one has a few less redactions. And nothing that was provided in 2019 was redacted here. If you find anything interesting in the document, please tell us about it...
Published on: May 19, 2025 | Source:480,000 Catholic Health Patients Impacted by Serviceaide Data Leak
Serviceaide exposed a database containing personal and medical information belonging to Catholic Health patients. The post 480,000 Catholic Health Patients Impacted by Serviceaide Data Leak appeared first on SecurityWeek.
Published on: May 19, 2025 | Source:Why CTEM is the Winning Bet for CISOs in 2025
Continuous Threat Exposure Management (CTEM) has moved from concept to cornerstone, solidifying its role as a strategic enabler for CISOs. No longer a theoretical framework, CTEM now anchors todayβs cybersecurity programs by continuously aligning security efforts with real-world risk. At the heart of CTEM is the integration of Adversarial Exposure Validation (AEV), an advanced, offensive
Published on: May 19, 2025 | Source:Donβt let DOGE destroy CISA
Elon Muskβs DOGE isnβt about efficiency β itβs about destruction. We should not let this administration tear down our best defenses against those trying to attack us in cyberspace. The post Donβt let DOGE destroy CISA appeared first on CyberScoop.
Published on: May 19, 2025 | Source:Firefox Patches 2 Zero-Days Exploited at Pwn2Own Berlin with $100K in Rewards
Mozilla has released security updates to address two critical security flaws in its Firefox browser that could be potentially exploited to access sensitive data or achieve code execution. The vulnerabilities, both of which were exploited as a zero-day at Pwn2Own Berlin, are listed below - CVE-2025-4918 - An out-of-bounds access vulnerability when resolving Promise objects that could allow an
Published on: May 19, 2025 | Source:Spiking Neural Networks: Brain-Inspired Chips That Could Keep Your Data Safe
Neuromorphic computing is moving from theory to reality, with brain-inspired processors offering real-time intelligence, low power consumption, and built-in privacyβushering in a new era for edge devices and cybersecurity. The post Spiking Neural Networks: Brain-Inspired Chips That Could Keep Your Data Safe appeared first on SecurityWeek.
Published on: May 19, 2025 | Source:200,000 Harbin Clinic Patients Impacted by NRS Data Breach
Harbin Clinic says the information of over 200,000 patients was stolen in a July 2024 data breach at Nationwide Recovery Services. The post 200,000 Harbin Clinic Patients Impacted by NRS Data Breach appeared first on SecurityWeek.
Published on: May 19, 2025 | Source:β‘ Weekly Recap: Zero-Day Exploits, Insider Threats, APT Targeting, Botnets and More
Cybersecurity leaders arenβt just dealing with attacksβtheyβre also protecting trust, keeping systems running, and maintaining their organizationβs reputation. This weekβs developments highlight a bigger issue: as we rely more on digital tools, hidden weaknesses can quietly grow. Just fixing problems isnβt enough anymoreβresilience needs to be built into everything from the ground up.
Published on: May 19, 2025 | Source:Prison Sentence for Man Involved in SEC X Account Hack
Eric Council Jr. was sentenced to prison for hacking SECβs official X account and publishing fraudulent posts increasing Bitcoin value. The post Prison Sentence for Man Involved in SEC X Account Hack appeared first on SecurityWeek.
Published on: May 19, 2025 | Source:ESET APT Activity Report Q4 2024βQ1 2025
An overview of the activities of selected APT groups investigated and analyzed by ESET Research in Q4 2024 and Q1 2025
Published on: May 19, 2025 | Source:Hackers Earn Over $1 Million at Pwn2Own Berlin 2025
Pwn2Own participants demonstrated exploits against VMs, AI, browsers, servers, containers, and operating systems. The post Hackers Earn Over $1 Million at Pwn2Own Berlin 2025 appeared first on SecurityWeek.
Published on: May 19, 2025 | Source:[Webinar] From Code to Cloud to SOC: Learn a Smarter Way to Defend Modern Applications
Modern apps move fastβfaster than most security teams can keep up. As businesses rush to build in the cloud, security often lags behind. Teams scan code in isolation, react late to cloud threats, and monitor SOC alerts only after damage is done. Attackers donβt wait. They exploit vulnerabilities within hours. Yet most organizations take days to respond to critical cloud alerts. That delay isnβt
Published on: May 17, 2025 | Source:Friday Squid Blogging: Pet Squid Simulation
From Hackaday.com, this is a neural network simulation of a pet squid. Autonomous Behavior: The squid moves autonomously, making decisions based on his current state (hunger, sleepiness, etc.). Implements a vision cone for food detection, simulating realistic foraging behavior. Neural network can make decisions and form associations. Weights are analysed, tweaked and trained by Hebbian learning algorithm. Experiences...
Published on: May 16, 2025 | Source:Coinbase Extorted, Offers $20M for Info on Its Hackers
Coinbase is going Liam Neeson on its attackers, potentially setting a new precedent for incident response in the wake of crypto- and blockchain-targeting cyberattacks.
Published on: May 16, 2025 | Source:Australian Human Rights Commission Leaks Docs in Data Breach
An internal error led to public disclosure of reams of sensitive data that could be co-opted for follow-on cyberattacks.
Published on: May 16, 2025 | Source:DOGE could scrap identity protections for those impacted by OPM breach, senator warns
Sen. Mark Warner urged OPMβs acting director to ensure identity protection services continue for the more than 21 million individuals affected by the 2015 breach. The post DOGE could scrap identity protections for those impacted by OPM breach, senator warns appeared first on CyberScoop.
Published on: May 16, 2025 | Source:Dynamic DNS Emerges as Go-to Cyberattack Facilitator
Scattered Spider and other phishers and hacking groups are using rentable subdomains from dynamic DNS providers to obfuscate their activity and impersonate well-known brands.
Published on: May 16, 2025 | Source:Attacker Specialization Puts Threat Modeling on Defensive
Specialization among threat groups poses challenges for defenders, who now must distinguish between different actors responsible for different facets of an attack.
Published on: May 16, 2025 | Source:FCC commissioner blasts Trump administration censorship policies
βWhen minority commissioners dissent, they are fired,β Commissioner Anna Gomez said of the Trump administrationβs assault on free speech. The post FCC commissioner blasts Trump administration censorship policies appeared first on CyberScoop.
Published on: May 16, 2025 | Source:Coinbase flips $20M extortion demand into bounty for info on attackers
The largest cryptocurrency exchange in the U.S. said cybercriminals bribed insiders to steal data on customers, some of whom were duped into handing over crypto assets. The post Coinbase flips $20M extortion demand into bounty for info on attackers appeared first on CyberScoop.
Published on: May 16, 2025 | Source:Google Warns UK Retailer Hackers Now Targeting US
Google says the hacking group behind the recent cyberattacks on UK retailers is now shifting focus to the US. The post Google Warns UK Retailer Hackers Now Targeting US appeared first on SecurityWeek.
Published on: May 16, 2025 | Source:Consensus forms on reauthorizing 2015 cyber info-sharing law now, upgrading it later
Both witnesses and lawmakers at a House hearing said the law must not lapse in September. The post Consensus forms on reauthorizing 2015 cyber info-sharing law now, upgrading it later appeared first on CyberScoop.
Published on: May 16, 2025 | Source:In Other News: Hackers Not Behind Blackout, CISO Docuseries, Dior Data Breach
A summary of noteworthy stories that might have slipped under the radar this week. The post In Other News: Hackers Not Behind Blackout, CISO Docuseries, Dior Data Breach appeared first on SecurityWeek.
Published on: May 16, 2025 | Source:How to Develop and Communicate Metrics for CSIRPs
A well-documented cybersecurity incident response program (CSIRP) provides the transparency needed for informed decision-making, protecting the organization in a constantly changing threat environment.
Published on: May 16, 2025 | Source:Communications Backdoor in Chinese Power Inverters
This is a weird story: U.S. energy officials are reassessing the risk posed by Chinese-made devices that play a critical role in renewable energy infrastructure after unexplained communication equipment was found inside some of them, two people familiar with the matter said. [β¦] Over the past nine months, undocumented communication devices, including cellular radios, have also been found in some batteries from multiple...
Published on: May 16, 2025 | Source:Preparing for the post-quantum era: a CIOβs guide to securing the future of encryption
Hereβs why CIOs must lead post-quantum cryptography adoption in 2025 to secure digital assets and future-proof organizations. The post Preparing for the post-quantum era: a CIOβs guide to securing the future of encryption appeared first on CyberScoop.
Published on: May 16, 2025 | Source:New HTTPBot Botnet Launches 200+ Precision DDoS Attacks on Gaming and Tech Sectors
Cybersecurity researchers are calling attention to a new botnet malware called HTTPBot that has been used to primarily single out the gaming industry, as well as technology companies and educational institutions in China. "Over the past few months, it has expanded aggressively, continuously leveraging infected devices to launch external attacks," NSFOCUS said in a report published this week. "By
Published on: May 16, 2025 | Source:From 60 to 4,000: NATOβs Locked Shields Reflects Cyber Defense Growth
The 15th edition of NATOβs Locked Shields cyber defense exercise brought together 4,000 experts from 41 countries. The post From 60 to 4,000: NATOβs Locked Shields Reflects Cyber Defense Growth appeared first on SecurityWeek.
Published on: May 16, 2025 | Source:Top 10 Best Practices for Effective Data Protection
Data is the lifeblood of productivity, and protecting sensitive data is more critical than ever. With cyber threats evolving rapidly and data privacy regulations tightening, organizations must stay vigilant and proactive to safeguard their most valuable assets. But how do you build an effective data protection framework? In this article, we'll explore data protection best practices from meeting
Published on: May 16, 2025 | Source:Russian APT Exploiting Mail Servers Against Government, Defense Organizations
Russia-linked APT28 has been exploiting mail server vulnerabilities against government and defense entities since September 2023. The post Russian APT Exploiting Mail Servers Against Government, Defense Organizations appeared first on SecurityWeek.
Published on: May 16, 2025 | Source:Researchers Expose New Intel CPU Flaws Enabling Memory Leaks and Spectre v2 Attacks
Researchers at ETH ZΓΌrich have discovered yet another security flaw that they say impacts all modern Intel CPUs and causes them to leak sensitive data from memory, showing that the vulnerability known as Spectre continues to haunt computer systems after more than seven years. The vulnerability, referred to as Branch Privilege Injection (BPI), "can be exploited to misuse the prediction
Published on: May 16, 2025 | Source: