IT Security Weekend Catch Up – May 24, 2025

Comments
close searching

24.05.2025 | 12:42

IT Security Weekend Catch Up – May 24, 2025
avatar

badcyber

comments

IT Security Weekend Catch Up – May 24, 2025

Afraid of missing important security news during the week? We're here to help! Every week we put together a curated list of all important security news in one place, for your reading pleasure. Enjoy!

For the less technical

  1. UAE recruiting US personnel displaced by DOGE to work on AI for its military
  2. Russian hybrid threats: EU lists further 21 individuals and 6 entities and introduces sectoral measures in response to destabilising activities against the EU, its member states and international partners
  3. 270 arrested in global dark web crackdown targeting online drug and criminal network
  4. Leader of Qakbot malware conspiracy indicted for involvement in global ransomware scheme
  5. Oops: DanaBot malware devs infected teir own PCs
  6. VanHelsing ransomware builder leaked on hacking forum
  7. KrebsOnSecurity hit with near-record 6.3 Tbps DDoS
  8. Nearly 70,000 impacted by Coinbase breach involving $20 million ransom demand

For the more technical

  1. Anonymization in Discord unveiled
  2. Hackers earn $1,078,750 for 28 zero-days at Pwn2Own Berlin
  3. Passkeys for normal people
  4. Hidden threats of dual-function malware found in Chrome extensions
  5. How I ruined my vacation by reverse engineering WSC
  6. O2 VoLTE: locating any customer with a phone call
  7. 60 malicious npm packages leak network and host data in active malware campaign
  8. Caught in the CAPTCHA: How ClickFix is weaponizing verification fatigue to deliver RATs & infostealers
  9. Copyright phishing lures leading to Rhadamanthys stealer now targeting Europe
  10. ViciousTrap – infiltrate, control, lure: turning edge devices into honeypots en masse
  11. An exploration of techniques used by the obfuscator ALCATRAZ
  12. Danabot: Analyzing a fallen empire
  13. TikTok videos promise pirated Apps, deliver Vidar and StealC infostealers instead
  14. ESET takes part in global operation to disrupt Lumma Stealer
  15. From banks to battalions: SideWinder’s attacks on South Asia’s public sector
  16. The sting of fake Kling: Facebook malvertising lures victims to fake AI generation website
  17. How adversary Telegram bots help to reveal threats: Case study
  18. DBatLoader (ModiLoader) being distributed to Turkish users
  19. BlackBasta and Cactus use Skitnet for targeted ransomware operations
  20. Another Confluence bites the dust: Falling to ELPACO-team ransomware
  21. A familiar playbook with a twist: 3AM ransomware actors dropped virtual machine with vishing and Quick Assist
  22. UAT-6382 exploits Cityworks zero-day vulnerability to deliver malware
  23. China-nexus threat actor actively exploiting Ivanti Endpoint Manager Mobile (CVE-2025-4428) vulnerability
  24. High risk warning for Windows ecosystem: New botnet family HTTPBot is expanding
  25. Cloudy with a chance of hijacking forgotten DNS records enable scam actor

Did you enjoy this list? You can subscribe to one of our feeds on Twitter, Facebook or RSS.


Afraid of missing important security news during the week? We’re here to help! Every week we put together a curated list of all important security news in one place, for your reading pleasure. Enjoy! For the less technical UAE recruiting US personnel displaced by DOGE to work on AI for its military Russian hybrid threa 2025-05-24T12:42:42+02:00

Comments