IT Security Weekend Catch Up – March 9, 2025

Comments
close searching

09.03.2025 | 22:36

IT Security Weekend Catch Up – March 9, 2025
avatar

badcyber

comments

IT Security Weekend Catch Up – March 9, 2025

Afraid of missing important security news during the week? We're here to help! Every week we put together a curated list of all important security news in one place, for your reading pleasure. Enjoy!

For the less technical

  1. Trump Administration's Cyber Command and CISA and Russian Operations
  2. NoviSpy: Cheap Pegasus spyware for everyone
  3. You knew it was coming: Google begins testing AI-only search results
  4. Research finds 12,000 ‘live’ API keys and passwords in DeepSeek's training data
  5. Vulnerability Reward Program: 2024 in review
  6. Doors Wide Open: hundreds of thousands of employees exposed; thousands of organisations physically vulnerable
  7. Spyzie stalkerware is spying on thousands of Android and iPhone users
  8. Garantex cryptocurrency exchange disrupted in international operation
  9. Fake BianLian ransom notes mailed to US CEOs in postal mail scam
  10. Cybercrime 'crew' stole $635,000 in Taylor Swift concert tickets
  11. Massive botnet that appeared overnight is delivering record-size DDoSes
  12. US charges Chinese nationals in cyberattacks on Treasury, dissidents and more
  13. Feds link $150m cyberheist to 2022 LastPass hacks
  14. Data breach at Japanese telecom giant NTT hits 18,000 companies
  15. Two decades of visitor data at the Toronto Zoo stolen in cyberattack

For the more technical

  1. Understanding and mitigating TOCTOU vulnerabilities in C# applications
  2. Bypassing spam filtering mechanism in Outlook
  3. JTAG & Flipper Zero: To repair the Proxmark3
  4. A hidden feature in the mass-market ESP32 chip that could infect millions of IoT devices
  5. Paragon Partition Manager contains five memory vulnerabilities within its BioNTdrv.sys driver
  6. Over 37,000 VMware ESXi servers vulnerable to ongoing attacks
  7. The tools that real hackers use
  8. Cellebrite zero-day exploit used to target phone of Serbian student activist
  9. Meet Rayhunter: A new open source tool from EFF to detect cellular spying
  10. New PyPI malware ‘set-utils’ exfiltrates Ethereum private keys through blockchain transactions
  11. Camera off: Akira deploys ransomware via webcam
  12. Havoc: SharePoint with Microsoft Graph API turns into FUD C2
  13. BadBox 2.0 targets consumer devices with multiple fraud schemes
  14. Malvertising campaign leads to info stealers hosted on GitHub
  15. Silk Typhoon targeting IT supply chain
  16. Call it what you want: Threat actor delivers highly targeted multistage polyglot malware
  17. Unmasking the new persistent attacks on Japan

Did you enjoy this list? You can subscribe to one of our feeds on Twitter, Facebook or RSS.


Afraid of missing important security news during the week? We’re here to help! Every week we put together a curated list of all important security news in one place, for your reading pleasure. Enjoy! For the less technical Trump Administration’s Cyber Command and CISA and Russian Operations NoviSpy: Cheap Pegasus spywa 2025-03-09T22:36:49+01:00

Comments