Security News

Cloudflare mitigates record number of DDoS attacks in 2025
2025-04-28 14:04

Internet services giant Cloudflare says it mitigated a record number of DDoS attacks in 2024, recording a massive 358% year-over-year jump and a 198% quarter-over-quarter increase. [...]

From 112K to 4M folks' data – HR biz attack goes from bad to mega bad
2025-04-28 13:40

It took a 1 year+ probe, plenty of client calls for VeriSource to understand just how much of a yikes it has on its hands Houston-based VeriSource Services' long-running probe into a February 2024...

Back online after 'catastrophic' attack, 4chan says it's too broke for good IT
2025-04-28 12:27

Image board hints that rumors of a poorly maintained back end may be true Clearweb cesspit 4chan is back up and running, but says the damage caused by a cyberattack earlier this month was "catastrophic."…

Wallarm Agentic AI Protection blocks attacks against AI agents
2025-04-28 10:45

Wallarm unveiled Agentic AI Protection, a capability designed to secure AI agents from emerging attack vectors, such as prompt injection, jailbreaks, system prompt retrieval, and agent logic...

Ransomware attacks are getting smarter, harder to stop
2025-04-28 04:30

Ransomware attacks are becoming more refined and pervasive, posing significant challenges to organizations globally. A Veeam report reveals that while the percentage of companies impacted by...

Craft CMS RCE exploit chain used in zero-day attacks to steal data
2025-04-25 19:44

Two vulnerabilities impacting Craft CMS were chained together in zero-day attacks to breach servers and steal data, with exploitation ongoing, according to CERT Orange Cyberdefense. [...]

More Ivanti attacks may be on horizon, say experts who are seeing 9x surge in endpoint scans
2025-04-25 19:00

GreyNoise says it is the kind of activity that typically precedes new vulnerability disclosures Ivanti VPN users should stay alert as IP scanning for the vendor's Connect Secure and Pulse Secure...

SAP fixes suspected Netweaver zero-day exploited in attacks
2025-04-25 13:01

SAP has released out-of-band emergency NetWeaver updates to fix a suspected remote code execution (RCE) zero-day flaw actively exploited to hijack servers. [...]

SAP fixes critical Netweaver flaw exploited in attacks
2025-04-25 13:01

SAP has released out-of-band emergency updates for NetWeaver to fix an actively exploited remote code execution (RCE) vulnerability used to hijack servers. [...]

DslogdRAT Malware Deployed via Ivanti ICS Zero-Day CVE-2025-0282 in Japan Attacks
2025-04-25 08:43

Cybersecurity researchers are warning about a new malware called DslogdRAT that's installed following the exploitation of a now-patched security flaw in Ivanti Connect Secure (ICS). The malware,...