IdentityTycoon 2FA phishing kit update timeline reveals new evasion techniquesLaura FrenchMay 13, 2025Browser fingerprinting and additional payload encryption are the most recent methods used.
Network SecurityMicrosoft fixes 75 vulnerabilities, 11 critical, in May Patch TuesdayShaun NicholsMay 13, 2025Patches include five vulnerabilities actively targeted in the wild, as well as two others with public exploit code available.
Governance, Risk and ComplianceTeleMessage Signal app lands on CISA’s exploited vulnerability listSteve ZurierMay 13, 2025CISA responded to concerns that the flaw potentially lets attackers access entire message histories from Signal clones.
AI/MLFake image-to-video AI sites deliver novel ‘Noodlophile’ infostealerLaura FrenchMay 12, 2025The “AI videos” generated from these sites are actually malicious executables that set off the attack chain.
Application securityGoogle settles nearly $1.4B Texas case for collecting personal dataShaun NicholsMay 12, 2025Settlement is the largest individual penalty to date against Google in the state of Texas.
IdentityApril 2025 Ascension Health breach affected 437,329, reports HHSSteve ZurierMay 12, 2025Recent attack points out the need for all organizations to refocus on third-party bugs and identity management.
Threat IntelligenceMalicious .NET files conceal RATs in bitmap imagesLaura FrenchMay 9, 2025A recent malspam campaign revealed a payload nested within two .NET assemblies.
Threat IntelligenceGoogle warns of Russian hackers ColdRiver wielding new malware toolsShaun NicholsMay 9, 2025The ColdRiver group has been spotted using a previously unknown piece of malware designated as “LostKeys.”
Vulnerability ManagementSAP NetWeaver bug exploited since January, allows RCESteve ZurierMay 9, 2025Remote code execution possible of SAP NetWeaver Visual Composer flaw rated 10.0.
Network SecurityAttacks surge against antiquated routers, FBI warnsShaun NicholsMay 8, 2025Increase in attacks using malware known as “TheMoon" seen, says FBI.
The recent ransomware attacks on UK retailers all targeted gaps in identity Rob AinscoughMay 14, 2025