Many Mobile Apps Fail Basic Security—Posing Serious Risks to Enterprises

/in

Top-ranked mobile apps found using hardcoded keys and exposed cloud buckets.

The post Many Mobile Apps Fail Basic Security—Posing Serious Risks to Enterprises appeared first on SecurityWeek.

SecurityWeek – ​Read More

Ransomware Group Claims Hacking of Oregon Regulator After Data Breach Denial

/in

The Rhysida ransomware gang claims to have stolen 2.5 Tb of files from the Oregon Department of Environmental Quality.

The post Ransomware Group Claims Hacking of Oregon Regulator After Data Breach Denial appeared first on SecurityWeek.

SecurityWeek – ​Read More

SquareX to Uncover Data Splicing Attacks at BSides San Francisco, A Major DLP Flaw that Compromises Data Security of Millions

/in

Palo Alto, California, 16th April 2025, CyberNewsWire

Hackread – Latest Cybersecurity, Hacking News, Tech, AI & Crypto – ​Read More

British law firm fined after ransomware group publishes confidential client data

/in

A U.K. law firm specializing in crime, family fraud, sexual offenses and other sensitive matters has been fined after a hack that led to a data leak on the dark web — something the company only learned about after authorities contacted it.

The Record from Recorded Future News – ​Read More

LastPass Review: Is it Still Safe and Reliable in 2025?

/in

LastPass’ recent data breaches make it hard to recommend as a viable password manager in 2025. Learn more in our full review below.

Security | TechRepublic – ​Read More

LastPass Review: Is it Still Safe and Reliable in 2025?

/in

LastPass’ recent data breaches make it hard to recommend as a viable password manager in 2025. Learn more in our full review below.

Security | TechRepublic – ​Read More

Enhanced Version of ‘BPFDoor’ Linux Backdoor Seen in the Wild

/in

In recent attacks, the state-sponsored backdoor BPFDoor is using a controller to open a reverse shell and move laterally.

The post Enhanced Version of ‘BPFDoor’ Linux Backdoor Seen in the Wild appeared first on SecurityWeek.

SecurityWeek – ​Read More

New BPFDoor Controller Enables Stealthy Lateral Movement in Linux Server Attacks

/in

Cybersecurity researchers have unearthed a new controller component associated with a known backdoor called BPFDoor as part of cyber attacks targeting telecommunications, finance, and retail sectors in South Korea, Hong Kong, Myanmar, Malaysia, and Egypt in 2024.
“The controller could open a reverse shell,” Trend Micro researcher Fernando Mercês said in a technical report published earlier in

The Hacker News – ​Read More

Chrome 135, Firefox 137 Updates Patch Severe Vulnerabilities

/in

Chrome 135 and Firefox 137 updates have been rolled out with patches for critical- and high-severity vulnerabilities.

The post Chrome 135, Firefox 137 Updates Patch Severe Vulnerabilities appeared first on SecurityWeek.

SecurityWeek – ​Read More

Microsoft Warns of Node.js Abuse for Malware Delivery

/in

In the past months Microsoft has seen multiple campaigns involving Node.js to deliver malware and other malicious payloads.

The post Microsoft Warns of Node.js Abuse for Malware Delivery appeared first on SecurityWeek.

SecurityWeek – ​Read More