Security News > 2025

Blind Eagle Hacks Colombian Institutions Using NTLM Flaw, RATs and GitHub-Based Attacks
2025-03-11 14:35

The threat actor known as Blind Eagle has been linked to a series of ongoing campaigns targeting Colombian institutions and government entities since November 2024. "The monitored campaigns...

Critical PHP RCE vulnerability mass exploited in new attacks
2025-03-11 14:26

Threat intelligence company GreyNoise warns that a critical PHP remote code execution vulnerability that impacts Windows systems is now under mass exploitation. [...]

The AI race: Dark AI is in the lead, but good AI is catching up
2025-03-11 14:05

Cybercriminals are using AI for help in planning and conducting cyberattacks—but cybersecurity vendors are fighting back. Learn from Acronis Threat Research Unit about how AI-powered security...

#AI
PowerSchool previously hacked in August, months before data breach
2025-03-11 13:42

PowerSchool has published a long-awaited CrowdStrike investigation into its massive December 2024 data breach, which determined that the company was previously hacked over 4 months earlier, in...

CISA tags critical Ivanti EPM flaws as actively exploited in attacks
2025-03-11 13:01

CISA warned U.S. federal agencies to secure their networks against attacks exploiting three critical vulnerabilities affecting Ivanti Endpoint Manager (EPM) appliances. [...]

Ballista Botnet Exploits Unpatched TP-Link Vulnerability, Targets Over 6,000 Devices
2025-03-11 12:30

Unpatched TP-Link Archer routers have become the target of a new botnet campaign dubbed Ballista, according to new findings from the Cato CTRL team. "The botnet exploits a remote code execution...

How to Use NordPass: A Step-by-Step Guide
2025-03-11 12:00

Learn how to set up and use NordPass to store and manage your passwords with this step-by-step guide.

Your Risk Scores Are Lying: Adversarial Exposure Validation Exposes Real Threats
2025-03-11 11:25

In cybersecurity, confidence is a double-edged sword. Organizations often operate under a false sense of security, believing that patched vulnerabilities, up-to-date tools, polished dashboards,...

Steganography Explained: How XWorm Hides Inside Images
2025-03-11 10:30

Inside the most innocent-looking image, a breathtaking landscape, or a funny meme, something dangerous could be hiding, waiting for its moment to strike. No strange file names. No antivirus...

MINJA sneak attack poisons AI models for other chatbot users
2025-03-11 08:37

Nothing like an OpenAI-powered agent leaking data or getting confused over what someone else whispered to it AI models with memory aim to enhance user interactions by recalling past engagements....