Trend Micro confirms active exploitation of 2 critical vulnerabilities in Apex One Management Console.
Posted inCybersecurity News

Trend Micro confirms active exploitation of 2 critical vulnerabilities in Apex One Management Console.

Trend Micro has recently confirmed the discovery and active exploitation of two critical vulnerabilities in the on-premise editions of its Apex One Management Console. These vulnerabilities, catalogued as CVE-2025-54948 and CVE-2025-54987, each carry a severity score of 9.4 out of 10 on the CVSS scale, indicating a significant risk to affected organizations.
DaVita Notifies Over One Million Patients of Major Data Breach Following Ransomware Attack.
Posted inCybersecurity News

DaVita Notifies Over One Million Patients of Major Data Breach Following Ransomware Attack.

In one of the largest healthcare data breaches of 2025, DaVita—the major U.S. kidney dialysis provider—has notified more than one million individuals that their personal and health information was stolen in a sophisticated ransomware attack. The incident, which unfolded between March 24 and April 12, 2025, has raised serious concerns about cybersecurity in the healthcare sector.
MIND unveils an autonomous Data Loss Prevention (DLP) platform engineered to protect Generative AI (GenAI).
Posted inCybersecurity News

MIND unveils an autonomous Data Loss Prevention (DLP) platform engineered to protect Generative AI (GenAI).

In a significant stride toward modernizing cybersecurity defenses, MIND has announced the launch of its autonomous Data Loss Prevention (DLP) platform, specifically engineered to automate and elevate data protection for organizations navigating the complexities of Generative AI (GenAI) and distributed IT environments. Touted as the first of its kind, this AI-native platform seeks to transcend the limitations of conventional, compliance-centric DLP solutions, offering a new paradigm of proactive, intelligent data safeguarding.
Microsoft introduces Project Ire: AI prototype for analysis and classification of malware.
Posted inCybersecurity News

Microsoft introduces Project Ire: AI prototype for analysis and classification of malware.

Microsoft has introduced Project Ire, a cutting-edge AI prototype designed to revolutionize the analysis and classification of software, particularly malware, without human intervention. This ambitious initiative harnesses the power of large language models (LLMs), decompilers, and specialized analysis tools, automating the gold standard of malware classification—comprehensive reverse engineering of unknown software files.
Global Infostealer Campaign Hits 4,000 Victims in 62 Countries, Fuels Cybercrime Economy.
Posted inCybersecurity News

Global Infostealer Campaign Hits 4,000 Victims in 62 Countries, Fuels Cybercrime Economy.

A sophisticated cybercrime operation has compromised more than 4,000 victims across 62 countries, exploiting stealthy infostealer malware to harvest sensitive personal information. The attack highlights the growing threat posed by credential-stealing software and the increasing role of encrypted messaging platforms in facilitating the trade of stolen data.
FraudOnTok SparkKitty malware campaign targets TikTok shop owners and their cryptocurrency wallets.
Posted inCybersecurity News

FraudOnTok SparkKitty malware campaign targets TikTok shop owners and their cryptocurrency wallets.

CTM360 says they have exposed a major global cybercrime operation, dubbed “ClickTok,” that is aggressively targeting users of TikTok Shop and similar e-commerce platforms. This sophisticated campaign employs a newly identified spyware variant called SparkKitty to steal cryptocurrency wallet credentials and drain victims’ digital funds.
Adobe issues emergency patches after public release of proof-of-concept code.
Posted inCybersecurity News

Adobe issues emergency patches after public release of proof-of-concept code.

In response to the public release of proof-of-concept (PoC) exploit code, Adobe has released emergency security patches addressing two critical zero-day vulnerabilities affecting Adobe Experience Manager (AEM) Forms on Java Enterprise Edition (JEE). These vulnerabilities could allow unauthenticated attackers to remotely execute code or access sensitive files on unpatched systems, representing a severe threat to organizations using affected versions.