Ionut Arghire

SAP released 20 security notes on April 2025 patch day, including three addressing critical code injection and authentication bypass flaws.

A sophisticated APT tracked as ToddyCat has exploited an ESET DLL search order hijacking vulnerability for malware delivery.

More than 5,000 Ivanti Connect Secure appliances are vulnerable to attacks exploiting CVE-2025-22457, which has been used by Chinese hackers.

Android’s latest security update resolves two exploited Kernel vulnerabilities, as well as critical-severity bugs.

‘PoisonSeed’ phishing campaign targets CRM and bulk email providers to distribute “crypto seed phrase” messages.

NIST has marked pre-2018 CVEs in NVD as ‘Deferred’ and will no longer spend resources on enriching them.

The Port of Seattle says the personal information of 90,000 individuals was stolen in an August 2024 ransomware attack.

The State Bar of Texas is notifying thousands of individuals that their personal information was stolen in a February ransomware attack.

US and allied countries warn of threat actors using the “fast flux” technique to change DNS records and hide malicious servers’ locations.

A critical vulnerability in Apache Parquet can be exploited to execute arbitrary code remotely, leading to complete system compromise.

Evidence shows a SpotBugs token compromised in December 2024 was used in the March 2025 GitHub Actions supply chain attack.

The notorious cybercrime group Hunters International is dropping ransomware to focus on data theft and extortion.

GitHub has announced new capabilities to help organizations and developers keep secrets in their code protected.

Cisco fixes two high-severity denial-of-service vulnerabilities in Meraki devices and Enterprise Chat and Email.

Google’s patches for Quick Share for Windows vulnerabilities leading to remote code execution were incomplete and could be easily bypassed.

Vulnerabilities in open source ChatGPT alternative Jan AI expose systems to remote, unauthenticated manipulation.

North Korea’s Lazarus hackers are using the ClickFix technique for malware deployment in fresh attacks targeting the cryptocurrency ecosystem.

Gmail now allows enterprise users to send end-to-end encrypted emails to colleagues, and will soon allow sending to any inbox.

Chrome 135 and Firefox 137 were released on Tuesday with fixes for several high-severity memory safety vulnerabilities.

GreyNoise warns of a coordinated effort probing the internet for potentially vulnerable Palo Alto Networks GlobalProtect instances.