Operation ForumTroll: APT attack with Google Chrome zero-day exploit chain https://securelist.com/operation-forumtroll/115989/ #cybersecurity #infosec
Recent searches
Search options
Administered by:
#infosec
402 posts213 participants0 posts today
Replied to Matthias Schulze
if they have a patch already it's not an 0day 
Google fixes Chrome zero-day exploited in espionage campaign https://www.bleepingcomputer.com/news/security/google-fixes-chrome-zero-day-exploited-in-espionage-campaign/ #cybersecurity #infosec
If you would like to do some good today while doomscrolling your multiple timelines.
New month, new goal to help a Domestic Violence family with safe housing and new devices. We're already 5% funded already!
Support here: https://ko-fi.com/lockdownyourlife
Ko-fiSupport Lock Down Your Life on Ko-fi! ❤️. ko-fi.com/lockdownyourlifeSupport Lock Down Your Life On Ko-fi. Ko-fi lets you support the people and causes you love with small donations
Critical security vulnerability in Verizon Call Filter App for iOS
#cybersecurity #infosec #advisory #vulnerability
https://beyondmachines.net/event_details/critical-security-vulnerability-in-verizon-call-filter-app-for-ios-e-w-8-7-f/gD2P6Ple2L
BeyondMachinesCritical security vulnerability in Verizon Call Filter App for iOSA security vulnerability in Verizon's Call Filter app for iOS allowed unauthorized access to any customer's call logs by exploiting inadequate validation in the /clr/callLogRetrieval endpoint, where attackers could simply modify the X-Ceq-MDN request header to retrieve call history for any Verizon number, posing serious privacy risks especially for high-risk individuals like journalists and domestic abuse survivors.
Critical Pre-Authentication SQL Injection vulnerability reported in Halo ITSM
#cybersecurity #infosec #advisory #vulnerability
https://beyondmachines.net/event_details/critical-pre-authentication-sql-injection-vulnerability-reported-in-halo-itsm-s-r-h-p-7/gD2P6Ple2L
BeyondMachinesCritical Pre-Authentication SQL Injection vulnerability reported in Halo ITSMSearchlight Cyber discovered a critical pre-authentication SQL injection vulnerability (CVE-2024-0402, CVSS 9.9) in Halo ITSM software that allows unauthenticated attackers to execute arbitrary SQL queries against the database, potentially exposing sensitive data and enabling complete system compromise through the PostLogMeIn function that fails to properly sanitize user input.
This makes for good education for clients!
QR codes sent in attachments are the new favorite for phishers https://www.malwarebytes.com/blog/news/2025/04/qr-codes-sent-in-attachments-are-the-new-favorite-for-phishers
Malwarebytes · QR codes sent in attachments are the new favorite for phishersPhishers are putting QR codes as images in attachments because it helps them bypass email filters.
A federal Judge Denise Cote in NY rejected the #Trump admin’s effort to dismiss lawsuit alleging #DOGE directed a massive breach of #OPM data affecting millions of people.
#law #InfoSec #NationalSecurity
https://storage.courtlistener.com/recap/gov.uscourts.nysd.636793/gov.uscourts.nysd.636793.72.0.pdf
"Gay Daddy" dating App leaks data of 50,000 User profiles and private messages
#cybersecurity #infosec #incident #databreach
https://beyondmachines.net/event_details/gay-daddy-dating-app-leaks-data-of-50000-user-profiles-and-private-messages-d-i-1-6-9/gD2P6Ple2L
BeyondMachines"Gay Daddy" dating App leaks data of 50,000 User profiles and private messagesThe "Gay Daddy: 40+ Date & Chat" dating app experienced a severe security breach exposing sensitive personal data of approximately 50,000 users, including names, HIV status, location data, private messages, and explicit photos, after Cybernews researchers discovered the app's Firebase database was completely unprotected with authentication credentials hardcoded in the app's public code.
From yesterday.
ZDNET: Clicked on a phishing link? Take these 7 steps ASAP to protect yourself https://www.zdnet.com/article/clicked-on-a-phishing-link-take-these-7-steps-asap-to-protect-yourself/ @ZDNet @edbott #cybersecurity #infosec #phishing
ZDNET · Clicked on a phishing link? Take these 7 steps ASAP to protect yourself
Oracle privately confirms Cloud breach to customers https://www.bleepingcomputer.com/news/security/oracle-privately-confirms-cloud-breach-to-customers/
Picus: MITRE ATT&CK T1562.010 Impair Defenses: Downgrade Attack https://www.picussecurity.com/resource/blog/t1562-010-downgrade-attack #cybersecurity #Infosec
www.picussecurity.comMITRE ATT&CK T1562.010 Impair Defenses: Downgrade AttackThis blog explains the T1562.010 Downgrade Attack technique in the MITRE ATT&CK framework in detail.
Microsoft: Threat actors leverage tax season to deploy tax-themed phishing campaigns https://www.microsoft.com/en-us/security/blog/2025/04/03/threat-actors-leverage-tax-season-to-deploy-tax-themed-phishing-campaigns/ @microsoftsec #cybersecurity #infosec
Microsoft Security Blog · Threat actors leverage tax season to deploy tax-themed phishing campaigns | Microsoft Security BlogAs Tax Day approaches in the United States on April 15, Microsoft has detected several tax-themed phishing campaigns employing various tactics. These campaigns use malicious hyperlinks and attachments to deliver credential phishing and malware including RaccoonO365, AHKBot, Latrodectus, BruteRatel C4 (BRc4), and Remcos.
Malwarebytes: QR codes sent in attachments are the new favorite for phishers https://www.malwarebytes.com/blog/news/2025/04/qr-codes-sent-in-attachments-are-the-new-favorite-for-phishers
T-Mobile sells this screwy GPS tracker, called SyncUP.
Location, name, and photos of random kids shown to parents in child tracker mix up https://www.malwarebytes.com/blog/news/2025/04/location-name-and-photos-of-random-kids-shown-to-parents-in-child-tracker-mix-up @mbthreatintel #cybersecurity #infosec #phishing
Malwarebytes · QR codes sent in attachments are the new favorite for phishersPhishers are putting QR codes as images in attachments because it helps them bypass email filters.
Tracked as CVE-2025-22457.
Ivanti Security Update: Pulse Connect Secure, Ivanti Connect Secure, Policy Secure and Neurons for ZTA Gateways https://www.ivanti.com/blog/security-update-pulse-connect-secure-ivanti-connect-secure-policy-secure-and-neurons-for-zta-gateways #cybersecurity #infosec #Ivanti
www.ivanti.comApril Security Update | IvantiWe are issuing an important security update to disclose a security vulnerability in Pulse Connect Secure, Ivanti Connect Secure, Policy Secure and Neurons for ZTA gateways.
Halcyon: Hunters International Moving to Straight Data Extortion Attacks https://www.halcyon.ai/blog/hunters-international-moving-to-straight-data-extortion-attacks
Halcyon Threat Insights 015: April 2025 Ransomware Report https://www.halcyon.ai/blog/halcyon-threat-insights-015-april-2025-ransomware-report #cybersecurity #infosec #ransomware
www.halcyon.aiHunters International Moving to Straight Data Extortion AttacksWhile it’s tempting to think ransomware gangs could ditch encryption for straight data exfiltration extortion, that’s not where the majority of the ecosystem is headed
Group-IB: Fraud Underbelly: Australia’s Digital Boom—A Fraudster’s Goldmine? https://www.group-ib.com/blog/fraud-underbelly-australia/ @groupib #cybersecurity #Infosec
ESET: The good, the bad and the unknown of AI: A Q&A with Mária Bieliková https://www.welivesecurity.com/en/we-live-science/good-bad-unknown-ai-qa-maria-bielikova/ @ESETresearch #cybersecurity #infosec #AI
www.welivesecurity.comThe good, the bad and the unknown of AI: Q&A with Mária BielikováThe computer scientist and AI researcher Mária Bieliková shares her thoughts on the technologys potential and pitfalls – and what may lie ahead for us.
UK warns of emerging threat from ‘sadistic’ online ‘Com networks’ of teenage boys https://therecord.media/uk-threat-com-sadistic-teenager #cybersecurity #infosec
Again? Are they competing with Oracle?
Bitdefender: Royal Mail Investigating Alleged Security Breach Following Third-Party Cyberattack https://www.bitdefender.com/en-us/blog/hotforsecurity/royal-mail-investigating-alleged-security-breach-following-third-party-cyber-attack @bitdefender #cybersecurity #infosec #databreach
Hot for SecurityRoyal Mail Investigating Alleged Security Breach Following Third-Party Cyber AttackThe Royal Mail is investigating a potential security breach after a threat actor allegedly leaked over 144 GB of data, reportedly stolen from the British postal service’s systems.