Cisco, Hitachi, Microsoft, and Progress Flaws Actively Exploited—CISA Sounds Alarm

/in

The U.S. Cybersecurity and Infrastructure Security Agency (CISA) on Monday added five security flaws impacting software from Cisco, Hitachi Vantara, Microsoft Windows, and Progress WhatsUp Gold to its Known Exploited Vulnerabilities (KEV) catalog, based on evidence of active exploitation.
The list of vulnerabilities is as follows –

CVE-2023-20118 (CVSS score: 6.5) – A command injection

The Hacker News – ​Read More

Google’s March 2025 Android Security Update Fixes Two Actively Exploited Vulnerabilities

/in

Google has released its monthly Android Security Bulletin for March 2025 to address a total of 44 vulnerabilities, including two that it said have come under active exploitation in the wild.
The two high-severity vulnerabilities are listed below –

CVE-2024-43093 – A privilege escalation flaw in the Framework component that could result in unauthorized access to “Android/data,” “Android/obb,”

The Hacker News – ​Read More

Mozilla Revises Firefox Terms of Use After Inflaming Users Over Data Usage

/in

In response to users’ feedback about the Firefox Terms of Use, Mozilla updated some of the language about data usage. Mozilla also updated its Privacy FAQ.

Security | TechRepublic – ​Read More

Palau health ministry on the mend after Qilin ransomware attack

/in

A U.S. Cyber Command “defend forward” team is now on-site conducting forensics collection and analysis, according to Palau officials.

The Record from Recorded Future News – ​Read More

AI-powered SEO services: revolutionizing digital marketing

/in

Artificial Intelligence is a tool that is currently changing how businesses approach digital marketing and SEO. Explore how your business can transform with AI-powered SEO services here.

Hackread – Latest Cybersecurity, Tech, AI, Crypto & Hacking News – ​Read More

Name That Edge Toon: On the Precipice

/in

Feeling creative? Submit your caption and our panel of experts will reward the winner with a $25 gift card.

darkreading – ​Read More

Qilin Cybercrime Ring Claims Credit for Lee Newspaper Breach

/in

The ransomware-as-a-service (RaaS) cybercrime group intends to leak the stolen information in just two days, it claims; but oddly, it doesn’t seek a ransom payment from its victim.

darkreading – ​Read More

Less is more: How ‘Chain of Draft’ could cut AI costs by 90% while improving performance

/in

Credit: VentureBeat made with Midjourney

Zoom researchers unveil “Chain of Draft” method that cuts AI token usage by 92% while improving reasoning accuracy, transforming the economics of language model deployment.Read More

Security News | VentureBeat – ​Read More

TikTok’s Teen Data Use Probed by UK Regulators

/in

Investigators at the ICO are looking into how (or if) TikTok, as well as Reddit and Imgur, are enforcing UK privacy protections for 13- to 17-year-old users.

darkreading – ​Read More

Fake IT Support Calls Trick Microsoft Teams Users into Installing Ransomware

/in

Cybercriminals pose as IT support, using fake calls and Microsoft Teams messages to trick users into installing ransomware through email floods and remote access.

Hackread – Latest Cybersecurity, Tech, AI, Crypto & Hacking News – ​Read More