Jul 22, 2025Ravie LakshmananNetwork Security / Vulnerability Cisco on Monday updated its advisory of a set of recently disclosed security flaws in Identity Services Engine (ISE) and ISE Passive Identity Connector (ISE-PIC) to acknowledge active exploitation. “In July 2025, the… Read More "Cisco Confirms Active Exploits Targeting ISE Flaws Enabling Unauthenticated Root Access"
Popular configuration packages for integrating Prettier with ESLint, the widely used code formatting tools within JavaScript and TypeScript projects, were hijacked after a maintainer fell victim to a phishing scheme. According to a Socket observation, packages like eslint-config-prettier and eslint-plugin-prettier… Read More "Prettier-ESLint npm packages hijacked in a sophisticated supply chain attack"
Microsoft has confirmed three Chinese-based threat groups have been actively exploiting CVE-2025-53770 and CVE-2025-53771, two critical and high-severity vulnerabilities in internet-facing SharePoint servers. The chained exploitation of these two bugs has been dubbed ‘ToolShell’ by the cybersecurity community. In a… Read More "SharePoint ‘ToolShell’ Vulnerabilities Exploited by Chinese Hackers"
Making the move from managing a security operations center (SOC) to being a chief information security officer (CISO) is a significant career leap. Not only do you need a solid foundation of tech knowledge but also leadership skills and business… Read More "How to Advance from SOC Manager to CISO?"
Evolution from ransomware to pure extortion World Leaks represents a significant shift in the ransomware ecosystem, moving away from file encryption toward pure data extortion. The group is a rebrand of Hunters International, which launched in late 2023 and claimed… Read More "Dell demonstration platform breached by World Leaks extortion group"
The UK government has confirmed it is pressing ahead with a proposed ban on ransomware payments by public sector and critical national infrastructure (CNI) organizations. This follows three-quarters of respondents showing support for the proposals during a public consultation that… Read More "UK Confirms Ransomware Payment Ban for Public Sector and CNI"
Cyberkriminelle nutzen die geräteübergreifende Anmeldeoption von FIDO aus, um eine von ihnen kontrollierte authentifizierte Sitzung zu erstellen. ArtemisDiana – shutterstock.com FIDO-Schlüssel verwenden eine hardwarebasierte Multi-Faktor-Authentifizierung, um Schwachstellen anderer MFA-Methoden zu beheben. Der berüchtigten Krypto-Hackergruppe PoisonSeed ist es jedoch offenbar gelungen,… Read More "PoisonSeed überlistet FIDO-Schlüssel | CSO Online"
Most organizations plan to reallocate security operations center (SOC) roles as a result of broader AI adoption in these teams, according to new research by Abnormal AI. The survey found that 96% of security leaders have no plans to reduce… Read More "AI Adoption is Driving SOC Role Reallocation Without Cutting Headcount"
The recently disclosed critical Microsoft SharePoint vulnerability has been under exploitation as early as July 7, 2025, according to findings from Check Point Research. The cybersecurity company said it observed first exploitation attempts targeting an unnamed major Western government, with… Read More "Hackers Exploit SharePoint Zero-Day Since July 7 to Steal Keys, Maintain Persistent Access"
Beim Klinikbetreiber Ameos sind möglicherweise Patientendaten abgeflossen. khunkornStudio – shutterstock.com Bei dem Cyberangriff auf den Klinikkonzern Ameos sind nach eigenen Angaben möglicherweise auch Patientendaten abgegriffen worden. Es könne nicht ausgeschlossen werden, dass die Daten im Internet zum Nachteil der betroffenen… Read More "Angriff auf Ameos-Kliniken: Möglicherweise Patientendaten betroffen"
