IT Security Weekend Catch Up – March 29, 2025

Comments
close searching

29.03.2025 | 21:13

IT Security Weekend Catch Up – March 29, 2025
avatar

badcyber

comments

IT Security Weekend Catch Up – March 29, 2025

Afraid of missing important security news during the week? We're here to help! Every week we put together a curated list of all important security news in one place, for your reading pleasure. Enjoy!

For the less technical

  1. What is FIMI? And how EU fights disinformation?
  2. Leaked data exposes a Chinese AI censorship machine
  3. Anthropic can now track the bizarre inner workings of a large language model
  4. Serbia: BIRN journalists targeted with Pegasus spyware
  5. SignalGate isn’t about Signal
  6. Oracle customers confirm data stolen in alleged cloud breach is valid
  7. 23andMe files for bankruptcy, putting customers’ genetic data at risk
  8. OpenAI now pays researchers $100,000 for critical vulnerabilities
  9. Troy Hunt: A sneaky phish just grabbed my Mailchimp mailing list
  10. When getting phished puts you in mortal danger
  11. Russia arrests three for allegedly creating Mamont malware, tied to over 300 cybercrimes
  12. How threat actors get their names

For the more technical

  1. Paged Out! #6 is out!
  2. Security assessment of SAP GUI controls using Windows API in Python
  3. Invoker – automating pentesting tools in Burp Suite (example with dosfiner)
  4. HTTPS-only for Cloudflare APIs: shutting the door on cleartext traffic
  5. New Windows zero-day leaks NTLM hashes, gets unofficial patch
  6. Doing the due diligence: Analyzing the Next.js middleware bypass (CVE-2025-29927)
  7. Next.js and the corrupt middleware: the authorizing artifact
  8. Malware found on npm infecting local package with reverse shell
  9. Operation ForumTroll: APT attack with Google Chrome zero-day exploit chain
  10. Firefox fixes flaw similar to Chrome zero-day used against Russian organizations
  11. GitHub Actions supply chain attack: A targeted attack on Coinbase expanded to the widespread tj-actions/changed-files incident
  12. Blast radius of the tj-actions/changed-files supply chain attack
  13. Blacklock ransomware: A late Holiday gift with intrusion into the threat actor's infrastructure
  14. RedCurl's ransomware debut: A technical deep dive
  15. VanHelsing ransomware - analysis I, analysis II
  16. Dragon RaaS: Pro-Russian hacktivist group aims to build on “The Five Families” cybercrime reputation
  17. Unboxing Anubis: Exploring the stealthy tactics of FIN7's latest backdoor
  18. Weaver Ant, the web shell whisperer: Tracking a live China-nexus operation
  19. You will always remember this as the day you finally caught FamousSparrow
  20. CVE-2025-26633: How Water Gamayun weaponizes MUIPath using MSC EvilTwin
  21. A deep dive into Water Gamayun’s arsenal and infrastructure

Did you enjoy this list? You can subscribe to one of our feeds on Twitter, Facebook or RSS.


Afraid of missing important security news during the week? We’re here to help! Every week we put together a curated list of all important security news in one place, for your reading pleasure. Enjoy! For the less technical What is FIMI? And how EU fights disinformation? Leaked data exposes a Chinese AI censorship machi 2025-03-29T21:13:45+01:00

Comments