SPRITE+ is sponsoring 5 places at our International Perspectives on Cybercrime summer school, including travel and accommodation. Apply now: https://www.spritehub.org/2025/02/27/call-for-applications-cybercrime-summer-school-2025/ #Cybercrime #SummerSchool #CyberSecurity #Glasgow

New ransom group blog post!

Group name: rhysida
Post title: Coop UQAM
Info: https://cti.fyi/groups/rhysida.html

Ars Technica: Google: Governments are using zero-day hacks more than ever. “Last year was big for zero-day exploits, security threats that appear in the wild before vendors have a chance to develop patches. Through its sprawling network of services and research initiatives, Google is the first to spot many of these threats. In a new report from the Google Threat Intelligence Group (GTIG), the […]

https://rbfirehose.com/2025/04/30/google-governments-are-using-zero-day-hacks-more-than-ever-ars-technica/

Le Patch di Microsoft presto Senza Riavvio Ma a Pagamento. La sicurezza si paga 1,50$ a core

Link all'articolo : https://www.redhotcyber.com/post/le-patch-di-microsoft-presto-senza-riavvio-ma-a-pagamento-la-sicurezza-si-paga-150-a-core/

How do botnets quietly stage malware before an attack — and how can we catch them?

We’re excited to welcome Murtuza Ali to #Honeynet2025 in Prague to present Bot-any of Stagers — exploring RCE botnets, reactive telescopes, and new disruption methods.

June 2–4, 2025
https://prague2025.honeynet.org

Windows remote execution multitool

https://github.com/FalconOpsLLC/goexec

Neue Analyse zeigt: Mehrheit der Zero-Day-Angriffe stammt von staatlich gesteuerten Tätern. China und Nordkorea besonders aktiv. #Cybersecurity #ZeroDay https://winfuture.de/news,150637.html?utm_source=Mastodon&utm_medium=ManualStatus&utm_campaign=SocialMedia

Broadcom Brocade Fabric SAN vulnerability actively exploited

CISA has warned that a critical vulnerability in Broadcom's Brocade Fabric OS (CVE-2025-1976, CVSS 8.6) is being actively exploited, allowing authenticated administrators to execute arbitrary code with root privileges by exploiting improper input validation in IP address handling. Affected organizations are urged to upgrade to version 9.1.1d7 or later immediately.

**If you are running Broadcom Brocade Fabric OS systems, start a quick patch cycle. Isolation won't work here because the exploit relies on trusted users because it does require access with admin privileges. Yet it's already exploited, so attackers have found a way to the admin user. Your only bet is to patch your Broadcom systems.**
#cybersecurity #infosec #attack #activeexploit
https://beyondmachines.net/event_details/broadcom-brocade-fabric-san-vulnerability-actively-exploited-4-q-p-1-z/gD2P6Ple2L

Many are the tricksters preying upon the innocent and the naive. May Set feast upon their souls, may Khepri roll them into little balls and push them into the river! #cybersecurity https://cromwell-intl.com/cybersecurity/scams-spam-phishing.html?s=mc

A nice post that provides an overview about kerberos relaying

https://decoder.cloud/2025/04/24/from-ntlm-relay-to-kerberos-relay-everything-you-need-to-know

You can now share your thoughts on vulnerability CVE-2025-22884 in Vulnerability-Lookup:
https://vulnerability.circl.lu/vuln/CVE-2025-22884

Delta Electronics - ISPSoft

You can now share your thoughts on vulnerability CVE-2025-22883 in Vulnerability-Lookup:
https://vulnerability.circl.lu/vuln/CVE-2025-22883

Delta Electronics - ISPSoft

20,5 Millionen DDoS-Angriffe – allein im ersten Quartal 2025! Deutschland ist erstmals das weltweit am häufigsten angegriffene Land. Die meisten Angriffe dauern weniger als 10 Minuten, reichen aber aus, um ganze Systeme lahmzulegen. Mehr auf www.ddosreport.com

WhatsApp Introduces AI Tools With Promise of Full Message Secrecy https://cybersecuritynews.com/whatsapp-introduces-ai-tools/ #cybersecuritynews #CyberSecurity #cybersecurity #WhatsApp #AI

CISA Warns SAP 0-day Vulnerability Exploited in the Wild https://cybersecuritynews.com/cisa-adds-sap-0-day-flaw/ #CyberSecurityNews #cybersecuritynews #CyberSecurity #Vulnerability #cybersecurity #vulnerability #ZeroDay

Avast Antivirus Vulnerability Let Attackers Escalate Privileges https://cybersecuritynews.com/avast-antivirus-vulnerability/ #CyberSecurityNews #VulnerabilityNews #cybersecuritynews #Vulnerability #cybersecurity #vulnerability

In offerta oggi a 4,99 € l’eBook di @KevinMitnick, il leggendario hacker (RIP).

“L’arte dell’invisibilità” insegna come proteggere la propria privacy nell’era dei big data.

https://www.amazon.it/gp/product/B0C9D4XQ6S?tag=ndr0e-21

Last Call to Register!

Don’t miss your chance to be part of OWASP Global AppSec EU 2025 in beautiful Barcelona!

Join security leaders, developers, and researchers from around the world for cutting-edge sessions, hands-on trainings, and unbeatable networking opportunities.

May 27–31, 2025
Barcelona, Spain

https://owasp.glueup.com/event/123983/register/

Secure your spot and be part of the future of application security!

Alarmierende Sicherheitslücken durch KI-generierte Software: Analyse von 576.000 Code-Snippets offenbart massive Probleme bei der Paket-Referenzierung. #CyberSecurity https://winfuture.de/news,150635.html?utm_source=Mastodon&utm_medium=ManualStatus&utm_campaign=SocialMedia