IT Security News Daily Summary 2025-01-30

210 posts were published in the last hour

22:20 : Recent Jailbreaks Demonstrate Emerging Threat to DeepSeek
22:20 : VMware plugs steal-my-credentials holes in Cloud Foundation
22:20 : Data resilience and data portability
22:20 : Executive Order to the State Department Sideswipes Freedom Tools, Threatens Censorship Resistance, Privacy, and Anonymity of Millions
21:34 : AngelSense exposed location data and personal information of tracked users
21:34 : The Internet Never Forgets: Fighting the Memory Hole
20:37 : Stundenlange Zwangswerbung: So rächt sich Youtube an Adblocker-Nutzern
20:36 : Justice Department Sues to Block $14 Billion Juniper Buyout by Hewlett Packard Enterprise
20:36 : Hiya AI Phone App Protects Against Deepfakes, Other Scams
20:19 : Zeit für einen neuen Job? 9 Homeoffice-Betrugsmaschen und wie Sie sie erkennen
20:18 : How to Tell If Someone Hacked Your Router: 10 Signs + Tips
20:18 : What is blockchain? Definition, examples and how it works
20:18 : Tria Stealer Trojan Exploits Android Phones To Exfiltrate SMS Messages
20:18 : Phorpiex Botnet Distributes LockBit Ransomware Through Compromised Websites
20:5 : IT Security News Hourly Summary 2025-01-30 21h : 11 posts
19:34 : DeepSeek Locked Down Public Database Access That Exposed Chat History
19:34 : VMware Patches High-Risk Flaws in Oft-Targeted Aria Operations Products
19:16 : Defeating Future Threats Starts Today
19:16 : Fake Apps: What They Are and How to Spot Them
19:16 : Mistral Small 3 brings open-source AI to the masses — smaller, faster and cheaper
19:16 : Brian Greene: Until the end of time | Starmus highlights
19:16 : US Justice Department says cybercrime forum allegedly affected 17 million Americans
19:16 : Top 3 Most Popular Malware TTPs of the Past Year
19:16 : Arcus Media Ransomware Delete Backup, Clear Logs, Disable Remote After Lock The Files
19:16 : Conifers.ai Scores $25M Investment for Agentic AI SOC Technology
19:16 : Randall Munroe’s XKCD ‘Humidifier Review’
18:35 : New Rock Technologies Cloud Connected Devices
18:35 : Trump admin’s purge of US cyber advisory boards was ‘foolish,’ says ex-Navy admiral
18:35 : Cybersecurity GRC (Governance, Risk, Compliance) | Kovrr
18:35 : RAG evaluation series: validating the RAG performance of Amazon Titan vs Cohere using Amazon Bedrock
18:35 : What is data privacy in healthcare? everything you need to know
18:35 : Amazon Redshift enhances security by changing default behavior in 2025
18:14 : Hackers Exploiting DNS Poisoning to Compromise Active Directory Environments
18:14 : 2025-01-23: Fake installer leads to Koi Loader/Koi Stealer
18:14 : 2025-01-28: Malware infection from web inject activity
18:14 : 2025-01-30: XLoader infection
18:14 : Mistral Small 3 brings open source AI to the masses—smaller, faster, and cheaper
18:14 : CybaVerse AI launched to redefine how MSPs deliver security
18:14 : KnowBe4 Urges Organisations to Adopt Secure Password Practices on Change Your Password Day 2025
18:14 : How Spread Betting Platforms Safeguard Traders Against Cyber Risks
18:14 : Taming Shadow AI: Valence Security, Endor Labs Unveil New Protections to Counter Hidden AI Threats
17:37 : PCAPs or It Didn’t Happen: Exposing an Old Netgear Vulnerability Still Active in 2025 [Guest Diary], (Thu, Jan 30th)
17:37 : Doppler Announces Integration with Datadog to Streamline Security and Monitoring
17:37 : Cybercriminals Exploit Public-Facing IIS, Apache, and SQL Servers to Breach Gov & Telecom Systems
17:37 : Hackers Impersonate Top Tax Firm with 40,000 Phishing Messages to Steal Credentials
17:37 : Arcus Media Ransomware Strikes: Files Locked, Backups Erased, and Remote Access Disabled
17:37 : 500 Million Proton VPN & Pass Users at Risk Due to Memory Protection Vulnerability
17:37 : Infrastructure Laundering: Blending in with the Cloud
17:37 : DORA Compliance for MSPs – How to Help Your Clients
17:37 : Backline Emerges From Stealth With $9M in Funding for Vulnerability Remediation Platform
17:37 : Google Blocked 2.36 Million Policy-Violating Apps
17:11 : Apple Safari: Mehrere Schwachstellen
17:10 : Apple macOS, iPadOS und iOS: : Mehrere Schwachstellen
17:10 : D-LINK DSL-3788 Router: Schwachstelle ermöglicht Codeausführung
17:10 : Microsoft Enhances Windows 11 Security with Admin Protection to Prevent Crowdstrike-Like Incident
17:10 : Cerebras becomes the world’s fastest host for DeepSeek R1, outpacing Nvidia GPUs by 57x
17:10 : New Android Malware Exploiting Wedding Invitations to Steal Victims WhatsApp Messages
17:10 : Cyber Insights 2025: Cyberinsurance – The Debate Continues
17:10 : Three Ways To Prevent Insider Threat Driven Data Leaks
17:10 : Cybercrime forums Cracked and Nulled seized, operators arrested
17:9 : Google: Over 57 Nation-State Threat Groups Using AI for Cyber Operations
17:5 : IT Security News Hourly Summary 2025-01-30 18h : 15 posts
16:37 : Seraphic Attracts $29M Investment to Chase Enterprise Browser Business
16:37 : DataDome Expands GraphQL Protection Across 7 Integrations
16:36 : Doppler announces integration with Datadog to streamline security and monitoring
16:36 : Attackers Increase Use of HTTP Clients for Account Takeovers
16:36 : How to deploy an Amazon OpenSearch cluster to ingest logs from Amazon Security Lake
16:21 : Wordfence Intelligence Weekly WordPress Vulnerability Report (January 20, 2025 to January 26, 2025)
16:21 : Ransomware news trending on Google
16:21 : Microsoft advertisers phished via malicious Google ads
16:21 : Microsoft’s latest optional patch is a bug-fix bonanza for Windows 11 24H2
16:21 : International police coalition takes down two prolific cybercrime and hacking forums
16:21 : Operation Talent: An international law enforcement operation seized Cracked, Nulled and other cybercrime websites
16:21 : TeamViewer fixed a vulnerability in Windows client and host applications
16:21 : Canon Printer Vulnerabilities Let Attackers Execute Arbitrary Code Remotely
16:21 : Windows 11 Start Menu Now Let Users Access Their Android & iPhones
16:21 : UnitedHealth Confirms Change Healthcare Cyberattack Impacted 190 Million People
15:34 : North Korean Hackers Suspected in $70M Phemex Crypto Exchange Exploit
15:34 : Hackers Use IT Support Disguise to Infiltrate Systems
15:34 : SimpleHelp RMM vulnerabilities may have been exploited to breach healthcare orgs
15:19 : Warten auf Patch: Das Admin-Interface Voyager für Laravel-Apps ist verwundbar
15:19 : Nulled und Cracked: Europol zerschlägt zwei große Cybercrime-Foren
15:18 : Riffusion’s free AI music platform could be the Spotify of the future
15:18 : Hackers Exploit Public-facing Vulnerable IIS, Apache, SQL Servers to Attack Gov & Telcom Networks
15:18 : How vCISOs Can Enhance an Organization’s Cybersecurity Posture with Cyber Insurance
14:40 : Über Google Sheets: So macht Gemini jetzt aus deinen Tabellen Grafiken
14:40 : Cybersecurity: Wie Tabletop-Übungen dein Team auf den Ernstfall vorbereiten
14:40 : Du kannst per Windows 11 bald auf dein iPhone zugreifen
14:39 : Europol legt zwei Cybercrime-Foren mit 10 Millionen Nutzern still
14:39 : Secrets Management With Datadog Secret Backend Utility
14:39 : What is a password?
14:39 : Backline automatically remediates security vulnerabilities
14:39 : World Economic Forum AI and Cyber Initiative Publishes Guidance on Mitigating AI Risks
14:38 : Coyote Banking Trojan: A Stealthy Attack via LNK Files
14:19 : Nachruf: Comelit-Gründer verstorben
14:19 : [NEU] [mittel] FreeBSD Project FreeBSD OS: Mehrere Schwachstellen
14:19 : [UPDATE] [mittel] Oracle MySQL: Mehrere Schwachstellen
14:19 : [UPDATE] [hoch] Oracle MySQL: Mehrere Schwachstellen
14:19 : [UPDATE] [hoch] bzip2: Schwachstelle ermöglicht Ausführen von beliebigem Programmcode mit den Rechten des Dienstes
14:19 : SquareX Discloses “Browser Syncjacking” , a New Attack Technique that Provides Full Browser and Device Control, Putting Millions at Risk
14:18 : CISA Releases Seven ICS Advisories to Strengthen Cybersecurity Posture
14:18 : The DeepSeek controversy: Authorities ask where does the data come from and how safe is it?
14:18 : These Yale and Berkeley dropouts just raised $2 million to build an AI assistant that could rival OpenAI
14:18 : Ransomware attack at New York blood services provider – donors turned away during shortage crisis
14:18 : US Cyber Agency’s Future Role in Elections Remains Murky Under the Trump Administration
14:18 : Legit Security unveils root cause remediation capabilities to reduce AppSec risk
14:18 : Syncjacking Attack Enables Full Browser and Device Takeover
14:18 : Tenable acquires Vulcan Cyber, Chinese and Iranian hackers are using U.S. AI, US Navy bans use of DeepSeek
14:5 : IT Security News Hourly Summary 2025-01-30 15h : 17 posts
13:37 : The DeepSeek controversy: Authorities ask where the data comes from and where it goes
13:37 : Lightning AI Studio Vulnerability Allowed RCE via Hidden URL Parameter
13:37 : Authorities Seize Domains of Popular Hacking Forums in Major Cybercrime Crackdown
13:37 : DeepSeek exposed internal database containing chat histories and sensitive data
13:37 : North Korean APT Lazarus Compromises Developers via Malicious NPM Packages
13:37 : Hackers Use 10,000 WordPress Sites To Deliver Malware To macOS and Microsoft Systems
13:37 : TeamViewer Patches High-Severity Vulnerability in Windows Applications
13:30 : Datenleck in Reha-Kliniken: Hunderttausende Patienten betroffen
13:29 : PCAPs or It Didn?t Happen: Exposing an Old Netgear Vulnerability Still Active in 2025 [Guest Diary], (Thu, Jan 30th)
13:29 : Bridging The Manufacturing Security “Air Gap”
13:29 : Lazarus Group Drop Malicious NPM Packages in Developers Systems Remotely
13:29 : How to Use Keeper Password Manager: A Comprehensive Guide
13:29 : US blood donation giant warns of disruption after ransomware attack
13:29 : PHP package Voyager flaws expose to one-click RCE exploits
13:29 : Fake Reddit and WeTransfer Sites are Pushing Malware
13:29 : Cortex Is the First SOC Platform to Achieve FedRAMP High Authorization
13:29 : DeepSeek Exposed Database Leaks Sensitive Data
12:35 : Datenleck in Reha-Kliniken: Hunderttausende Patienten potenziell betroffen
12:35 : [UPDATE] [hoch] Google Chrome/ Microsoft Edge: Schwachstelle ermöglicht Codeausführung
12:34 : TeamViewer Clients Vulnerability Leads to Privilege Escalation
12:34 : Lazarus Hackers Tamper with Software Packages to Gain Backdoor Access to the Victims Device
12:34 : Protect Your Privacy on Bumble
12:34 : Canvassing apps used by UK political parties riddled with privacy, security issues
12:34 : Network Security Market to Hit $38 Billion by 2029: Cloud, AI Drive Growth
12:12 : [NEU] [hoch] Microsoft GitHub Enterprise: Schwachstelle ermöglicht Offenlegung von Informationen
12:12 : [NEU] [mittel] IBM WebSphere Application Server Liberty: Schwachstelle ermöglicht Denial of Service
12:11 : A Tumultuous Week for Federal Cybersecurity Efforts
12:11 : Hackers Poisoning DNS Responses to Exploit Vulnerabilities in Active Directory Environments
12:11 : Lazarus Hackers Altering Legitimate Software Packages To Launch Large-Scale Cyber Attack
12:11 : Frederick Health Hit by Ransomware Attack
12:11 : TikTok’s Project Clover Evolves With PETs, Data Access Controls
12:11 : Ransomware Attack Disrupts Blood Donation Services in US
11:35 : Tria Stealer Malware Exploits Android Devices to Harvest SMS Data
11:35 : How Lack of Cybersecurity Training Makes Small Businesses Easy Targets
11:35 : New SystemBC RAT Attack Linux Systems to Hack Corporate Infrastructure
11:35 : DeepSeek AI is Now Powering With Huawei Ascend 910C Chip
11:35 : Critical RCE Vulnerability Found In AI Development Platform Lets Attackers Gain Root Access
11:34 : 152,000 Impacted by Data Breach at Berman & Rabin
11:34 : DeepSeek AI Database Exposed: Over 1 Million Log Lines, Secret Keys Leaked
11:34 : SOC Analysts – Reimagining Their Role Using AI
11:34 : UK Organizations Boosting Cybersecurity Budgets
11:24 : Mirai-Botnetz: Angreifer attackieren Zyxel-Router und Mitel-SIP-Phones
11:24 : Datenerfassung: Deepseek unter deutscher Datenschutz-Beobachtung
11:24 : Operation Talent: Polizei nimmt mehrere Cybercrime-Portale vom Netz
11:24 : [NEU] [mittel] Red Hat OpenShift Container Platform: Schwachstelle ermöglicht Umgehung von Sicherheitsvorkehrungen
11:24 : [NEU] [mittel] Internet Systems Consortium BIND: Mehrere Schwachstellen ermöglichen Denial of Service
11:24 : [NEU] [UNGEPATCHT] [mittel] MIT Kerberos: Schwachstelle ermöglicht Denial of Service
11:23 : [NEU] [mittel] Drupal: Mehrere Schwachstellen
11:23 : Talos IR trends Q4 2024: Web shell usage and exploitation of public-facing applications spike
11:23 : Microsoft Shares Sink After Cloud Unit Misses Projections
11:22 : Meta Shares Rise On Strong Revenues, Profits
11:22 : Vodafone Makes Satellite Video Call From Welsh Mountain
11:22 : Sensitive DeepSeek Data Exposed Online
11:22 : Hackers Sell Compromised Emails and Google Ads Accounts on Dark Web
11:22 : Unprotected DeepSeek Database Exposed Chats, Other Sensitive Information
11:5 : IT Security News Hourly Summary 2025-01-30 12h : 10 posts
10:35 : [UPDATE] [mittel] OpenSSL: Schwachstelle ermöglicht Codeausführung
10:35 : [UPDATE] [hoch] OpenSSL: Mehrere Schwachstellen
10:35 : [UPDATE] [hoch] Apache HTTP Server: Mehrere Schwachstellen
10:35 : [UPDATE] [mittel] Red Hat Enterprise Linux (cloud-init): Schwachstelle ermöglicht Offenlegung von Informationen
10:35 : [UPDATE] [mittel] Apache Tomcat: Mehrere Schwachstellen
10:34 : WFH with privacy? 85% of Brit bosses snoop on staff
10:12 : Angreifer können Dell Enterprise Sonic Distribution kompromittieren
10:11 : Italy’s Data Protection Authority Garante requested information from Deepseek
10:11 : Transforming Healthcare Security: Why Zero-Trust is Essential
10:11 : NCSC Calls on Vendors to Eradicate “Unforgivable” Vulnerabilities
9:35 : Datenleck bei KI-Startup: Chatverläufe von Deepseek frei zugänglich im Netz
9:34 : Microsoft Probes Whether DeepSeek Stole Data From OpenAI
9:34 : Meta Agrees To $25m Trump Settlement
9:34 : Speedio (unverified) – 27,501,041 breached accounts
9:8 : heise-Angebot: iX-Workshop: IT-Sicherheit jenseits der Bits – Physische Schutzstrategien
9:8 : [UPDATE] [mittel] Mitel SIP-Telefon: Mehrere Schwachstellen ermöglichen Codeausführung
9:7 : Hackers Can Exploit AI Platform to Achieve Root Access via RCE Vulnerability
9:7 : Cybercriminals Hijack Government Sites to Lauch Phishing Attacks
9:7 : TeamViewer Windows App Let Attackers Escalate Privileges to System User
9:7 : OPNsense 25.1 Released With Improved Security Zones & FreeBSD 14.2 Plus
9:7 : DeepSeek is Now Available With Microsoft Azure AI Foundry & GitHub
9:7 : AI – Top-of-Mind in 2025
9:7 : Top 6 DMARC Solutions for MSPs in 2025
8:34 : 10,000 WordPress Websites Hacked to Distributing MacOS and Microsoft Malware
8:34 : 7 Ransomware Predictions for 2025: From AI Threats to New Strategies
8:34 : One Explanation for DeepSeek’s Dramatic Savings: IP Theft
8:34 : Cybersecurity News: Tenable acquires Vulcan Cyber, Chinese and Iranian hackers are using U.S. AI, US Navy bans use of DeepSeek
8:21 : IT-Unternehmen trifft auf digitale Zutrittslösung
8:21 : DeepSeek: Malware und Betrüger nutzen den Hype, Datenbank offen im Netz
8:21 : Lumma Stealer’s GitHub-Based Delivery Explored via Managed Detection and Response
8:20 : Garmin Smartwatch Users Report ‘Blue Triangle’ Crash
8:20 : DeepSeek Database Exposure: A Critical Security Breach Including 1 Million Log Enteries
8:20 : No need to RSVP: a closer look at the Tria stealer campaign
8:20 : Hackers Exploit RDP Protocol To Gain Windows Access To Control Browser Remotely
8:20 : Google’s Subdomain ‘g.co’ Hacked – A Tricky Phone Call Lets Hackers Access Your Google Account Remotely
8:20 : New Aquabot Botnet Exploits CVE-2024-41710 in Mitel Phones for DDoS Attacks
8:20 : Unpatched PHP Voyager Flaws Leave Servers Open to One-Click RCE Exploits
8:5 : IT Security News Hourly Summary 2025-01-30 09h : 2 posts
7:34 : Oasis Scout empowers security teams to identify attacks on NHIs
7:11 : New RDP Exploit Allows Attackers to Take Over Windows and Browser Sessions
6:19 : Anzeige: Gezielt auf Cybervorfälle reagieren und Schäden begrenzen
6:18 : DeepSeek Database Publicly Exposed Sensitive Information, Secret Keys & Logs
6:18 : New SMS-Based Phishing Tool ‘DevilTraff’ Enables Mass Cyber Attacks
6:18 : Threat Actors Exploit Government Website Vulnerabilities For Phishing Attacks
6:18 : Staying Ahead with Enhanced IAM Protocols

Post navigation