IT Security Weekend Catch Up – May 3, 2025

Comments
close searching

03.05.2025 | 14:46

IT Security Weekend Catch Up – May 3, 2025
avatar

badcyber

comments

IT Security Weekend Catch Up – May 3, 2025

Afraid of missing important security news during the week? We're here to help! Every week we put together a curated list of all important security news in one place, for your reading pleasure. Enjoy!

For the less technical

  1. Phatic function in practice: How ChatGPT's conversation maintenance generates millions in losses
  2. Google is going to let kids use its Gemini AI
  3. Wikipedia says it will use AI, but not to replace human volunteers
  4. Perplexity wants to know more about you than Google
  5. Those who can’t do: Russia’s RT launches ‘journalism courses’ on ‘how to detect fakes’
  6. The problem with browser bookmark security
  7. Hitachi Vantara takes servers offline after Akira ransomware attack
  8. FBI's 2024 Internet Crime Complaint Center Report
  9. Alleged ‘Scattered Spider’ member extradited to U.S.
  10. FBI offers $10 million for information about Salt Typhoon members

For the more technical

  1. Hello 0-days, my old friend: A 2024 zero-day exploitation analysis
  2. Wormable zero-click remote code execution (RCE) in AirPlay protocol puts Apple & IoT devices at risk
  3. Critical SAP NetWeaver vulnerability fixed: actively exploited in the wild
  4. Microsoft’s patch for CVE-2025–21204 symlink vulnerability introduces another symlink vulnerability
  5. CVE-2025-24054, NTLM exploit in the wild
  6. Investigating an in-the-wild campaign using RCE in CraftCMS
  7. Fake security vulnerability phishing campaign targets WooCommerce users
  8. Scallywag extensions monetize piracy
  9. Cookie-Bite: How your digital crumbs let threat actors bypass MFA and maintain access to cloud environments
  10. The rapid rise of bots and the unseen risk for business
  11. Yet another NodeJS backdoor (YaNB): A modern challenge
  12. Navigating through the Fog
  13. DragonForce and Anubis introduced innovative approaches to expand their operations
  14. Gremlin stealer: New stealer on sale in underground forum
  15. Pentagon Stealer: Go and Python malware targeting crypto
  16. Threat actors are rargeting US tax-session with new tactics of Stealerium-infostealer
  17. I StealC you: Tracking the rapid changes to StealC
  18. TerraStealerV2 and TerraLogger: Golden Chickens' new malware families discovered
  19. Uncovering MintsLoader, a malicious loader deployed through multiple infection vectors
  20. Weaponized words. Uyghur language software hijacked to deliver malware
  21. Billbug: Intrusion campaign against Southeast Asia continues
  22. TheWizards APT group uses SLAAC spoofing to perform adversary-in-the-middle attacks
  23. Russian cyber operations. Analysis for the second half of 2024 from CERT-UA
  24. Earth Kasha updates TTPs in latest campaign targeting Taiwan and Japan

Did you enjoy this list? You can subscribe to one of our feeds on Twitter, Facebook or RSS.


Afraid of missing important security news during the week? We’re here to help! Every week we put together a curated list of all important security news in one place, for your reading pleasure. Enjoy! For the less technical Phatic function in practice: How ChatGPT’s conversation maintenance generates millions in losses 2025-05-03T14:46:10+02:00

Comments