Latest Intelligence
Company and Personal Data Compromised in Recent Insight Partners Hack
Insight Partners has reported a cyberattack that compromised the personal and company data of its partners and employees. This incident highlights ongoing vulnerabilities within organizations and the need for robust cybersecurity measures.
Beyond Vulnerability Management – Can You CVE What I CVE?
The article discusses the challenges of vulnerability management, highlighting the overwhelming number of unique security issues that strain security teams. With over 1.3 million findings identified, the reactive approach to managing vulnerabilities is proving inadequate, emphasizing the need for more proactive strategies.
Catching a phish with many faces
The article discusses the rise of shape-shifting phishing attacks that utilize specialized kits to create customized login pages in real-time. This poses a significant threat as attackers can easily adapt their tactics to deceive victims and bypass security measures.
Valuable Information Leaked in LockBit Ransomware Hack
A LockBit admin panel was hacked, resulting in the leak of private messages, Bitcoin addresses, victim data, and details about the attackers. This incident highlights the ongoing risks associated with ransomware groups and the potential exposure of sensitive information.
Google Rolls Out On-Device AI Protections to Detect Scams in Chrome and Android
Google is implementing AI-driven measures to enhance security against scams in its Chrome browser and Android devices. By utilizing its on-device large language model, Gemini Nano, the company aims to provide immediate insights into potentially dangerous websites, thereby improving user safety.
Chinese Hackers Exploit SAP RCE Flaw CVE-2025-31324, Deploy Golang-Based SuperShell
A China-linked threat actor named Chaya_004 has been exploiting a critical security flaw in SAP NetWeaver, identified as CVE-2025-31324, which has a CVSS score of 10.0. This vulnerability has been weaponized since April 29, 2025, highlighting significant security risks for affected systems.
SonicWall Issues Patch for Exploit Chain in SMA Devices
SonicWall has issued a patch addressing three vulnerabilities in SMA 100 gateways that could allow for root remote code execution (RCE) attacks. One of these vulnerabilities has already been exploited in the wild, highlighting the urgency for users to apply the patch to secure their systems.
Email-Based Attacks Top Cyber-Insurance Claims
In 2024, Coalition reported that business email compromise and funds transfer fraud constituted 60% of cyber-insurance claims, highlighting the significant threat posed by email-based attacks. This trend underscores the need for businesses to enhance their cybersecurity measures to mitigate such risks.
Operation PowerOFF Takes Down 9 DDoS-for-Hire Domains
Operation PowerOFF successfully dismantled nine DDoS-for-hire domains in a coordinated effort involving multiple countries, including the United States and Germany, with support from Europol. This operation highlights the ongoing international efforts to combat cybercrime and the growing concern over DDoS attacks that can disrupt online services.
38,000+ FreeDrain Subdomains Found Exploiting SEO to Steal Crypto Wallet Seed Phrases
Cybersecurity researchers have uncovered a large-scale phishing operation, dubbed FreeDrain, that exploits SEO tactics to steal cryptocurrency wallet seed phrases. This operation has been ongoing for several years and utilizes free web services to facilitate its schemes.
Valarian Bags $20M Seed Capital for ‘Isolation-First’ Infrastructure Tech
British startup Valarian has emerged from stealth mode with the announcement of securing $20 million in seed funding to develop its 'isolation-first' infrastructure technology. The funding, led by US investors Scout Ventures and Artis Ventures, signifies a significant investment in innovative cybersecurity solutions.
Life Without CVEs? It's Time to Act
The article emphasizes the urgency of addressing the future of the CVE database, highlighting that waiting 11 months for discussions is too long given its critical role in cybersecurity. It calls for immediate action to ensure the CVE system remains effective and relevant.
SonicWall Patches 3 Flaws in SMA 100 Devices Allowing Attackers to Run Code as Root
SonicWall has addressed three critical security vulnerabilities in its SMA 100 Secure Mobile Access appliances that could allow remote code execution by authenticated attackers. These flaws underscore the importance of timely patching to mitigate potential threats to network security.
Europol Announces More DDoS Service Takedowns, Arrests
Europol has announced the arrest of four individuals in Poland and the shutdown of several websites linked to DDoS-for-hire services. This action highlights ongoing efforts to combat cybercrime and disrupt illegal online activities.
Qilin Leads April 2025 Ransomware Spike with 45 Breaches Using NETXLOADER Malware
The Qilin ransomware group has initiated a significant increase in ransomware incidents in April 2025, utilizing the NETXLOADER malware alongside SmokeLoader. This development highlights the evolving tactics of cybercriminals and the critical role of new malware in cyber attacks.