NEW BETA RELEASES
iOS 18.5 beta 3 (22F5053j) iPadOS 18.5 beta 3 (22F5053j)
macOS 15.5 beta 3 (24F5053j)
tvOS 18.5 beta 3 (22L5559d)
visionOS 2.5 beta 3 (22O5459c)
watchOS 11.5 beta 3 (22T5559d)
Recent searches
Search options
Administered by:
#cybersecurity
2.1K posts563 participants177 posts today
https://www.europesays.com/2014952/ How DOGE is using AI in government #article #ArtificialIntelligence #Business&Workforce #CenterForTechnologyInnovation #commentary #corporations #Cybersecurity #DepartmentOfGovernmentEfficiency #doge #ElonMusk #GovernanceStudies #GovernmentReform #Musk #NorthAmerica #podcast #privacy #RegulatoryPolicy #Technology&Information #TechnologyPolicy&Regulation #TechTank #TheTechTankPodcast #U.S.Democracy #U.S.Economy #U.S.Government&Politics #U.S.StatesAndTerritories
Microsoft Entra Lockouts: A Cautionary Tale of Token Management
In a recent incident, Microsoft Entra's account lockouts highlighted the critical importance of secure token management. A logging error that exposed user refresh tokens led to widespread disruptions,...
https://news.lavx.hu/article/microsoft-entra-lockouts-a-cautionary-tale-of-token-management
Bleeping Computer: Microsoft Entra account lockouts caused by user token logging mishap https://www.bleepingcomputer.com/news/microsoft/microsoft-entra-account-lockouts-caused-by-user-token-logging-mishap/ @BleepingComputer @lawrenceabrams #cybersecurity #Infosec #Microsoft
Wan Hai Lines shipping company hit by cyberattack, website offline
Taiwan's 11th largest container shipping company, Wan Hai Lines, experienced a cyberattack on April 19, 2025 that temporarily took down their website. They claim no internal systems were breached and operations remained unaffected while they worked with external cybersecurity experts on incident response.
****
#cybersecurity #infosec #incident #ransomware
https://beyondmachines.net/event_details/wan-hai-lines-shipping-company-hut-by-cyberattack-website-offline-n-o-1-r-l/gD2P6Ple2L
BeyondMachinesWan Hai Lines shipping company hut by cyberattack, website offlineTaiwan's 11th largest container shipping company, Wan Hai Lines, experienced a cyberattack on April 19, 2025 that temporarily took down their website. They claim no internal systems were breached and operations remained unaffected while they worked with external cybersecurity experts on incident response.
Bad bots are taking over the web. Banks are their top target
About 40% of bot attacks on APIs in 2024 were directed at the financial sector, according to the 2025 Bad Bot Report from Imperva
https://www.americanbanker.com/news/bad-bots-are-taking-over-the-web-banks-are-their-top-target
American Banker · Bad bots are taking over the web. Banks are their top target
Possible Phishing 
on: 
hxxps[:]//kucoinlluogin[.]webflow[.]io
Analysis at: https://urldna.io/scan/680531d23b7750000b085a3c
#cybersecurity #phishing #infosec #urldna #scam #infosec
Associate, Financial Crimes Controls Governance & Assessments
Coinbase
Multiple remote locations
Apply now: https://totalcyber.io/jobs/coinbase/associate-financial-crimes-controls-governance-assessments
Associate, Financial Crimes Controls Governance & Assessments at Coinbase | TotalCyber.ioAssociate, Financial Crimes Controls Governance & Assessments at Coinbase | TotalCyber.ioApply now on totalcyber.io/jobs
CVE-2025-29660 - Yi IOT XY-3820 Remote Code Execution Vulnerability April 21, 2025 at 03:16PM https://ift.tt/EMebXvV #CVE #IOC #CTI #ThreatIntelligence #ThreatIntel #Cybersecurity #Recon
cvefeed.io · CVE-2025-29660 - Yi IOT XY-3820 Remote Code Execution VulnerabilityA vulnerability exists in the daemon process of the Yi IOT XY-3820 v6.0.24.10, which exposes a TCP service on port 6789. This service lacks proper input validation, allowing attackers to execute arbitrary scripts present on the device by sending specially crafted TCP requests using directory traversal techniques.
CVE-2025-29659 - Yi IOT XY-3820 Remote Command Execution Vulnerability April 21, 2025 at 03:16PM https://ift.tt/8sMNqv6 #CVE #IOC #CTI #ThreatIntelligence #ThreatIntel #Cybersecurity #Recon
cvefeed.io · CVE-2025-29659 - Yi IOT XY-3820 Remote Command Execution VulnerabilityYi IOT XY-3820 6.0.24.10 is vulnerable to Remote Command Execution via the "cmd_listen" function located in the "cmd" binary.
CVE-2025-29287 - MCMS Ueditor Unrestricted File Upload Vulnerability April 21, 2025 at 03:15PM https://ift.tt/teKyNm4 #CVE #IOC #CTI #ThreatIntelligence #ThreatIntel #Cybersecurity #Recon
cvefeed.io · CVE-2025-29287 - MCMS Ueditor Unrestricted File Upload VulnerabilityAn arbitrary file upload vulnerability in the ueditor component of MCMS v5.4.3 allows attackers to execute arbitrary code via uploading a crafted file.
68% of business leaders say cybersecurity risks are increasing—but many aren't prepared.
At Annexus Technologies, we deliver advanced threat detection, rapid response & secure encryption to keep you protected.
Native Language Phishing Spreads ResolverRAT to Healthcare – Source:hackread.com https://ciso2ciso.com/native-language-phishing-spreads-resolverrat-to-healthcare-sourcehackread-com/ #1CyberSecurityNewsPost #CyberSecurityNews #cybersecurity #CyberAttacks #PhishingScam #CyberAttack #ResolverRAT #healthcare #Hackread #Phishing #malware #Fraud #Scam
CISO2CISO.COM & CYBER SECURITY GROUP · Native Language Phishing Spreads ResolverRAT to Healthcare – Source:hackread.comSource: hackread.com - Author: Deeba Ahmed. Morphisec discovers a new malware threat ResolverRAT, that combines advanced methods for running code direc
North Korea, Iran, Russia-Backed Hackers Deploy ClickFix in New Attacks – Source:hackread.com https://ciso2ciso.com/north-korea-iran-russia-backed-hackers-deploy-clickfix-in-new-attacks-sourcehackread-com/ #1CyberSecurityNewsPost #CyberSecurityNews #cybersecurity #Vulnerability #CyberAttacks #CyberAttack #NorthKorea #ClickFix #Hackread #security #malware #Russia #Iran
CISO2CISO.COM & CYBER SECURITY GROUP · North Korea, Iran, Russia-Backed Hackers Deploy ClickFix in New Attacks – Source:hackread.comSource: hackread.com - Author: Deeba Ahmed. Government-backed hacking groups from North Korea (TA427), Iran (TA450), and Russia (UNK_RemoteRogue, TA422
Cloud Security Challenges Every CISO Must Address in Hybrid Environments https://gbhackers.com/cloud-security-challenges/ #CyberSecurityNews #CloudSecurity #cybersecurity #CISOAdvisory #cisoadvisory #CISO
The Record: Japan warns of hundreds of millions of dollars in unauthorized trades from hacked brokerage accounts https://therecord.media/japan-warns-of-unauthorized-trades-hacked-accounts @therecord_media @jgreig #cybersecurity #infosec
therecord.mediaJapan warns of hundreds of millions of dollars in unauthorized trades from hacked accountsJapanese regulators published an urgent warning about hundreds of millions of dollars worth of unauthorized trades being conducted on hacked brokerage accounts in the country.
Possible Phishing
on: hxxps[:]//kucoinsigjlogin[.]webflow[.]io
Analysis at: https://urldna.io/scan/680531db3b7750000adb7c1f
#cybersecurity #phishing #infosec #urldna #scam #infosec
A new Android malware campaign is using NFC relay attacks to clone credit cards — and it’s nearly invisible to antivirus tools.
Security researchers have discovered 'SuperCard X', a malware-as-a-service (MaaS) platform that allows cybercriminals to steal card data and make contactless payments using compromised Android devices.
Key highlights from the report:
- Distributed via social engineering scams through fake SMS or WhatsApp messages
- Victims are tricked into installing a malicious app disguised as a bank “verification” tool
- Once installed, it uses NFC to read card chip data and sends it to a second attacker device
- Attackers use a companion app to emulate the victim’s card and make payments or ATM withdrawals
What makes it dangerous:
- SuperCard X requests minimal permissions, making it hard to detect
- It uses ATR-based card emulation and mutual TLS (mTLS) for secure communication
- Malware is not flagged by any antivirus engines on VirusTotal
- Transactions are small, instant, and look legitimate to banks — making them harder to detect or reverse
Google responded saying Play Protect is active and currently no such apps are listed on Google Play. But since these apps spread outside the store, Android users remain at risk — especially if they sideload apps or fall for impersonation scams.
This is a textbook example of how mobile payment infrastructure is being exploited — and why NFC security deserves more attention in mobile-first threat models.
At @Efani we’re committed to helping protect high-risk users from silent, evasive mobile threats just like this.
Manchmal sieht man einfache Dings sofort, manchmal nicht. Dann helfen Schlafen, Frischluft und Bewegung. Und dann ein Neustart zum Erfolg.
Bob Lord, a senior technical advisor, and Lauren Zabierek, a CISA senior advisor.
The Record: Two top cyber officials resign from CISA https://therecord.media/two-top-cyber-officials-resign-from-cisa @therecord_media #cybersecurity #infosec #CISA
therecord.mediaTwo top cyber officials resign from CISABob Lord and Lauren Zabierek both posted on LinkedIn Monday morning that they were resigning from the Cybersecurity and Infrastructure Security Agency.