IT Security News Daily Summary 2025-04-10 - IT Security News International (DE, EN)

210 posts were published in the last hour

21:2 : npm Malware Targets Atomic and Exodus Wallets to Hijack Crypto Transfers
20:35 : Sicherheitslücke in Whatsapp: Diese Version solltest du schnell updaten
20:34 : Analysis of Threat Actor Activity
20:34 : How We Knew the Oracle Breach Was Real | Grip Security
20:5 : IT Security News Hourly Summary 2025-04-10 21h : 9 posts
20:4 : Writer unveils ‘AI HQ’ platform, betting on agents to transform enterprise work
20:4 : The best AirTag wallets of 2025: Expert tested and recommended
20:4 : Imperva Customers Are Protected Against CVE-2025-31161 in CrushFTP
19:36 : U.S. CISA adds Linux Kernel flaws to its Known Exploited Vulnerabilities catalog
19:5 : Polestar Benefits From Targetting Disgruntled Tesla Owners – Report
19:5 : Randall Munroe’s XKCD ‘Stargazing 4’
19:4 : Why Some Vendors Upcharge for CRQ Integrations
18:32 : US sensor giant Sensata admits ransomware derailed ops
18:8 : Threat actors thrive in chaos
18:7 : Google Eyes User Browsing Data Search in New Patent Filing
18:7 : US sensor giant Sensata admits ransomware disrupts operations
18:7 : NSA Warns of Fast Flux DNS Evasion Employed by Cybercrime Outfits
18:7 : Chinese Cyber Espionage Suspected in New Ivanti VPN Malware Attack
18:7 : ToddyCat Hackers Exploit ESET Vulnerability to Deploy Stealth Malware TCESB
17:7 : Siemens Solid Edge
17:7 : ABB Arctic Wireless Gateways
17:7 : Rockwell Automation Arena
17:7 : Subnet Solutions PowerSYSTEM Center
17:7 : Siemens Insights Hub Private Cloud
17:5 : IT Security News Hourly Summary 2025-04-10 18h : 27 posts
16:34 : OpenAI Countersues Elon Musk, Citing Interference
16:34 : Shuckworm Group Leverages GammaSteel Malware in Targeted PowerShell Attacks
16:3 : Sensata Technologies hit by a ransomware attack
16:2 : Smokeloader Users Identified and Arrested in Operation Endgame
16:2 : ViperSoftX Malware Spreads Through Cracked Software, Targeting Unsuspecting Users
16:2 : China-based SMS Phishing Triad Pivots to Banks
16:2 : CVE-2024-57727: Path Traversal Vulnerability in SimpleHelp Web Application
15:36 : PC Shipments Grow In Q1 Amid Tariff Worries
15:36 : AI To Drive Data Centre Energy Demand
15:36 : RansomHub RaaS in Disarray After Affiliate Chat Access Suddenly Revoked
15:36 : A Seven‑Year‑Old Cisco Flaw Now Lets Hackers Execute Code Remotely on Network Gear
15:36 : GOFFEE Deploys PowerModul in Coordinated Strikes on Government and Energy Networks
15:36 : Rogue Account‑Creation Flaw Leaves 100 K WordPress Sites Exposed
15:35 : The State of AI Malware and Defenses Against It
15:35 : RSA Conference 2025
15:35 : Congress Takes Another Step Toward Enabling Broad Internet Censorship
15:35 : Europol Targets Customers of Smokeloader Pay-Per-Install Botnet
15:35 : What is DSPM? Understanding Data Security Posture Management
15:35 : Navigating PCI DSS 4.0 Compliance: How Automated Data Discovery Can Help
15:35 : BSidesLV24 – Breaking Ground – Hell-0_World | Making Weather Cry
15:35 : Google Cloud: China Achieves “Cyber Superpower” Status
15:35 : OpenSSL 3.5 Final Release – Live
15:9 : Wordfence Intelligence Weekly WordPress Vulnerability Report (March 31, 2025 to April 6, 2025)
15:9 : Malicious ‘mParivahan’ App Circulates on WhatsApp, Skimming Sensitive Mobile Data
15:9 : 100 Days of YARA: Writing Signatures for .NET Malware
15:9 : Researchers demonstrate the UK’s first long-distance ultra-secure communication over a quantum network
15:9 : Trump Revokes Security Clearance for Ex-CISA Director Chris Krebs
15:9 : Incomplete Patch in NVIDIA Toolkit Leaves CVE-2024-0132 Open to Container Escapes
15:9 : OCC major incident, Oracle confirms hack, Smokeloader servers seized
14:37 : Whatsapp: Warum Meta AI nun sogar die EU-Kommission auf den Plan rufen könnte
14:37 : Mysterium nach Windows-Update: Was macht dieser neue Ordner auf deinem PC?
14:37 : Youtube Premium Lite startet in Deutschland: Das erwartet euch beim günstigeren Abo
14:37 : Apps in wenigen Minuten erstellen: Diese Google-Plattform macht es auch ohne Coding-Skills möglich
14:35 : Unraveling the U.S. toll road smishing scams
14:35 : AkiraBot: AI-Powered spam bot evades CAPTCHA to target 80,000+ websites
14:35 : SonicWall Patches Multiple Vulnerabilities in NetExtender VPN Client For Windows
14:35 : Cable – A Post-Exploitation Toolkit For Active Directory Reconnaissance & Exploitation
14:35 : Dell Warns of Critical PowerScale OneFS Vulnerabilities Allows User Account Takeover
14:35 : AkiraBot Spammed 80,000 Websites by Employing CAPTCHA Bypass & Network Evasion Techniques
14:35 : Child predators are lurking on dating apps, warns report
14:35 : Lazarus Gang Targets Job Seekers to Install Malware
14:35 : Dark Web Site DogeQuest Targets Tesla Owners Using Data from ParkMobile Breach
14:34 : Google Cloud: CISOs Demand Simplified Security Tools Amid Growing Tech Complexity
14:5 : Securing a Hyperconnected World: The Case for Check Point’s Hybrid Mesh Security Architecture
14:5 : Trump orders federal investigation into former CISA director Chris Krebs
14:5 : Juniper Networks Patches Dozens of Junos Vulnerabilities
14:5 : CyberArk releases identity security solution for AI agents
14:5 : Malicious npm Package Targets Atomic Wallet, Exodus Users by Swapping Crypto Addresses
14:5 : Over 40% of UK Businesses Faced Cybersecurity Breaches in 2024
14:5 : IT Security News Hourly Summary 2025-04-10 15h : 14 posts
13:37 : Fraunhofer LBF testet KI-Bilderkennung
13:37 : SonicWall Patches Multiple Vulnerabilities in NetExtender Windows Client
13:37 : Dell Alerts Users to Critical PowerScale OneFS Flaws Enabling Account Takeover
13:36 : Ensuring AI Delivers Value to Business by Making Privacy a Priority
13:36 : SpyNote Malware Targets Android Users with Fake Google Play Pages
13:5 : Why security stacks need to think like an attacker, and score every user in real time
13:5 : Researchers Uncovered Hacking Tools and Techniques Discussed on Russian-Speaking Hacking Forums
13:4 : Microsoft 365 Family Subscriptions Users Hit by Licensing Glitch Denies Services
13:4 : CatB Ransomware Leveraging Microsoft Distributed Transaction Coordinator to Execute its Payload
13:4 : TP-Link IoT Smart Hub Vulnerability Exposes Wi-Fi Credentials
13:4 : Your 23andMe genetic data could be bought by China, senator warns
13:4 : Guidepoint Security & Enzoic: Taking on the Password Problem
13:4 : PCI DSS Tokenization vs Encryption: Key Differences to Protect Payment Data
13:4 : Trump orders revocation of security clearances for Chris Krebs, SentinelOne
12:38 : Oracle-Einbruch: Schweigen und Kleingerede
12:38 : Sicherheitsupdates: Mit Drupal erstellte Website sind verwundbar
12:38 : [NEU] [mittel] Jenkins jenkins/ssh-agent / jenkins/ssh-slave: Mehrere Schwachstellen ermöglichen Umgehen von Sicherheitsvorkehrungen
12:37 : Can VPNs Be Tracked by the Police?
12:37 : Study Identifies 20 Most Vulnerable Connected Devices of 2025
12:4 : Oracle-Einbruch: Unternehmen gibt Datenklau zu – und redet ihn weiter klein
12:4 : Bug in Version 135: Microsoft Edge nach Update teilweise unbrauchbar
12:2 : Langflow AI Builder Vulnerability Allows Remote Server Takeover by Attackers
12:2 : Cable: Powerful Post-Exploitation Toolkit for Active Directory Attacks
12:2 : SideCopy APT Hackers Mimic as Government Personnel to Deploy Open-Source XenoRAT Tool
12:2 : HollowQuill Malware Attacking Government Agencies Worldwide Via Weaponized PDF Documents
12:2 : Gamaredon Uses Infected Removable Drives to Breach Western Military Mission in Ukraine
12:2 : The Identities Behind AI Agents: A Deep Dive Into AI & NHI
12:2 : PlayPraetor Reloaded: CTM360 Uncovers a Play Masquerading Party
11:36 : Bug in Version 135: Microsoft Edge nach Update teilweise nicht bedienbar
11:36 : [NEU] [hoch] NATS Server: Schwachstelle ermöglicht Umgehen von Sicherheitsvorkehrungen
11:36 : [NEU] [hoch] Drupal: Mehrere Schwachstellen
11:36 : [NEU] [hoch] Juniper JUNOS: Mehrere Schwachstellen
11:36 : [UPDATE] [mittel] VMware Tanzu Spring Framework: Mehrere Schwachstellen
11:35 : Amazon Delays Project Kuiper Launch Amid Bad Weather
11:35 : TP-Link Smart Hub Flaw Exposes Users’ Wi-Fi Credentials
11:35 : Hackers Claim WooCommerce Breach Exposing 4.4 Million Customer Records
11:35 : Google Launches Sec-Gemini v1: A New AI Powerhouse for Cybersecurity
11:35 : An APT group exploited ESET flaw to execute malware
11:35 : Infosec experts fear China could retaliate against tariffs with a Typhoon attack
11:35 : GitHub Announces General Availability of Security Campaigns
11:6 : Golem Karrierewelt: Heute kostenloses Webinar: Microsoft Copilot Administration
11:5 : Watch out for these traps lurking in search results
11:5 : Russian APT Hackers Using Device Code Phishing Technique to Bypass MFA
11:5 : New Mirai Botnet Exploiting TVT DVRs To Gain Administrative Control
11:5 : Linux Firewall IPFire 2.29 Released With Support for Post-Quantum Cryptography & Core Updates
11:5 : Authorities Seized Smokeloader Malware Operators & Seized Servers
11:5 : Microsoft Identity Web Package Vulnerability Exposes Client Secrets & Certificate Information
11:5 : Nissan Leaf Hacked for Remote Spying, Physical Takeover
11:5 : Europol Arrests Five SmokeLoader Clients Linked by Seized Database Evidence
11:5 : IT Security News Hourly Summary 2025-04-10 12h : 24 posts
10:35 : Apple Airlifts 600 Tons Of iPhones From India, Amid Trump Tariff Chaos
10:35 : Oracle confirms the hack of two obsolete servers hacked. No Oracle Cloud systems or customer data were affected
10:35 : MIWIC25: Lisa Landau, CEO and Co-Founder of ThreatLight
10:35 : Best Automated Patch Management Software in 2025
10:35 : Operations of Sensor Giant Sensata Disrupted by Ransomware Attack
10:35 : FortiSwitch vulnerability may give attackers control over vulnerable devices (CVE-2024-48887)
10:3 : [UPDATE] [hoch] python-cryptography: Schwachstelle ermöglicht Umgehen von Sicherheitsvorkehrungen
10:2 : GOFFEE continues to attack organizations in Russia
9:40 : Juniper schließt Sicherheitslücken in Junos OS und mehr
9:40 : Rechenschaftspflicht: Umgang mit sicherheitsrelevanten Daten wird geprüft
9:39 : Großteil im Klartext: Passwörter deutscher Politiker im Darknet entdeckt
9:39 : [NEU] [mittel] GitLab: Mehrere Schwachstellen
9:39 : [NEU] [mittel] PaloAlto Networks GlobalProtect: Schwachstelle ermöglicht Privilegieneskalation
9:38 : Incomplete NVIDIA Patch to CVE-2024-0132 Exposes AI Infrastructure and Data to Critical Risks
9:38 : North Korean Hackers Employs Social Engineering Tactics & Python Script to Execute Hidden Commands
9:38 : Scattered Spider Employs Sophisticated Attacks to Steal Login Credentials & MFA Tokens
9:38 : CISA Warns of Linux USB-Audio Driver Out-of-Bounds Vulnerability Exploited in the Wild
9:38 : New Double-Edged Email Attack Stealing Office365 Credentials and Deliver Malware
9:38 : Hackers Allegedly Claiming WooCommerce Breach, 4.4 Million Customer Details Stolen
9:38 : Embracing the Future: Mastering Your Cybersecurity Strategy With an Identity Driven Security Approach
9:38 : AI-Powered AkiraBot Evades CAPTCHA to Spam 80,000 Websites
9:9 : Partnerangebot: Deutor Cyber Security Solutions GmbH – „6. Deutor Cyber Security Best Practice Conference 2025“
9:9 : Dell PowerScale OneFS: Standard-Passwort ermöglicht Account-Übernahme
9:8 : Rechenschaftspflicht: Umgang mit sensiblen Daten wird geprüft
9:8 : CatB Ransomware Abuses Microsoft Distributed Transaction Coordinator for Stealthy Payload Execution
9:7 : AkiraBot Floods 80,000 Sites After Outsmarting CAPTCHAs and Slipping Past Network Defenses
9:7 : APT32 Turns GitHub into a Weapon Against Security Teams and Enterprise Networks
9:7 : Europol: Five pay-per-infect suspects cuffed, some spill secrets to cops
9:7 : ‘AkiraBot’ Spammed 80,000 Websites With AI-Generated Messages
9:7 : AI is Reshaping Cyber Threats: Here’s What CISOs Must Do Now
8:37 : Dell BIOS: Schwachstelle ermöglicht die Umgehung von Sicherheitsmaßnahmen
8:37 : Habt ihr sie schon entdeckt? Diese Whatsapp-Neuerungen stehen ab sofort bereit
8:37 : Wie stehen deutsche KI-Startups zum AI Act? Wir haben nachgefragt
8:37 : Nach Patchday: Mysteriöser Ordner erscheint unerwartet unter Windows
8:36 : CISA Alerts on Actively Exploited Linux Kernel Out-of-Bounds & Read Flaw
8:36 : Smokeloader Malware Operators Busted, Servers Seized by Authorities
8:36 : ToddyCat Hackers Exploit ESET Flaw to Launch Stealthy TCESB Attack
8:36 : The API Security Challenge in AI: Preventing Resource Exhaustion and Unauthorized Access
8:36 : Operation Endgame Continues with Smokeloader Customer Arrests
8:7 : HPE Aruba: Sicherheitspatches für Access Points und weitere Hardware
8:7 : Digitale Kritis im Kriegsfall: “Momentan sind wir schlecht vorbereitet”
8:6 : The Cybersecurity Risk No One Talks About: Poor File Management
8:5 : IT Security News Hourly Summary 2025-04-10 09h : 11 posts
7:37 : Verbrechensabwehr mit KI
7:37 : 3D LiDAR für präzise Bedrohungserkennung
7:35 : So your friend has been hacked: Could you be next?
7:35 : 1 billion reasons to protect your identity online
7:35 : Repair the bridge before it cracks: Understanding vulnerabilities and weaknesses in modern IT
7:35 : Seal Base Images mitigates container vulnerabilities
7:35 : AkiraBot Targets 420,000 Sites with OpenAI-Generated Spam, Bypassing CAPTCHA Protections
7:35 : April 10, 2025
7:6 : Per Pin oder Gesicht: April-Update macht Log-in mit Windows Hello kaputt
7:5 : PAN-OS DoS Vulnerability Allows Attackers to Force Repeated Firewall Reboots
7:5 : How Banking Trojan Grandoreiro is Evolving Tactics To Attack Victims in LATAM
7:4 : PAN-OS Firewall DoS Vulnerability Let Attacker Reboot Firewall Repeatedly
7:4 : Ransomware Groups Attacking Organizations to Exfiltrate Data & Blackmail via Leak Site Posts
6:33 : WordPress: 100.000 Instanzen durch Lücke in SureTriggers-Plug-in gefährdet
6:32 : ‘RemoteMonologue’ New Red Team Technique Exploits DCOM To Steal NTLM Credentials Remotely
6:32 : Linux Firewall IPFire 2.29 Launches with Post-Quantum Encryption and System Enhancements
6:32 : The Reg translates the letter in which Oracle kinda-sorta tells customers it was pwned
6:32 : Keysight simplifies security testing for modern chips and embedded devices
6:7 : PAN-OS Command Injection Flaw Lets Hackers Execute Arbitrary Code Remotely
6:7 : OpenSSH 10.0 Released: New Protocol Changes and Key Security Improvements
6:7 : How to find out if your AI vendor is a security risk
5:35 : Linux-Kernel: Angreifer attackieren ältere Sicherheitslecks
5:35 : Anzeige: BCM-Strategien und IT-Notfallmanagement implementieren
5:34 : Cyber Threat to submarine cables in China Sea
5:34 : OpenSSH 10.0 Released With Protocol Changes & Security Upgrades
5:34 : From likes to leaks: How social media presence impacts corporate security
5:5 : IT Security News Hourly Summary 2025-04-10 06h : 1 posts
5:4 : Proactive Secrets Rotation to Avoid Data Breaches
5:4 : Innovations in Managing Cloud Machine Identities
4:36 : Review: The Ultimate Kali Linux Book, Third Edition
3:34 : Qmulos Launches Q-Behavior Analytics and Audit (Q-BA2)
2:34 : Google Released AI-powered Firebase Studio to Accelerate Build, Test, & Deployment
2:34 : Hackers Intercepted 100+ Bank Regulators’ Emails for More Than a Year
2:5 : IT Security News Hourly Summary 2025-04-10 03h : 1 posts
2:4 : ISC Stormcast For Thursday, April 10th, 2025 https://isc.sans.edu/podcastdetail/9402, (Thu, Apr 10th)
2:4 : Trump kills clearances for infosec’s SentinelOne, ex-CISA boss Chris Krebs
1:4 : Network Infraxploit [Guest Diary], (Wed, Apr 9th)
0:4 : Trump Signs Memorandum Revoking Security Clearance of Former CISA Director Chris Krebs
23:6 : Linux USB Audio Driver Vulnerability Let Attackers Execute Arbitrary Code Via Malicious USB Device
23:5 : IT Security News Hourly Summary 2025-04-10 00h : 9 posts
22:55 : IT Security News Daily Summary 2025-04-09
22:4 : April’s Patch Tuesday leaves unlucky Windows Hello users unable to login


10.4K	8K	100+	500+

Related

Post navigation