Phishing platform Rockstar 2FA trips, and “FlowerStorm” picks up the pieces
A sudden disruption of a major phishing-as-a-service provider leads to the rise of another…that looks very familiar
Similar Posts
Russian Hackers Exploit CVE-2025-26633 via MSC EvilTwin to Deploy SilentPrism and DarkWisp
Bys sThe threat actors behind the zero-day exploitation of a recently-patched security vulnerability in Microsoft Windows have been found to deliver two new backdoors called SilentPrism and DarkWisp. The activity has been attributed to a suspected Russian hacking group called Water Gamayun, which is also known as EncryptHub and LARVA-208. “The threat actor deploys payloads primarily…
Critical Apache Roller Vulnerability (CVSS 10.0) Enables Unauthorized Session Persistence
Bys sA critical security vulnerability has been disclosed in the Apache Roller open-source, Java-based blogging server software that could allow malicious actors to retain unauthorized access even after a password change. The flaw, assigned the CVE identifier CVE-2025-24859, carries a CVSS score of 10.0, indicating maximum severity. It affects all versions of Roller up to and…
PCI DSS 4.0 Mandates DMARC By 31st March 2025
Bys sThe payment card industry has set a critical deadline for businesses handling cardholder data or processing payments- by March 31, 2025, DMARC implementation will be mandatory! This requirement highlights the importance of preventative measures against email fraud, domain spoofing, and phishing in the financial space. This is not an optional requirement as non-compliance may result…
Turkish Group Hacks Zero-Day Flaw to Spy on Kurdish Forces
Bys sChris Riotta reports: Turkish-linked cyber spies used a zero-day exploit housed in a popular chat software to target Kurdish military operations in Iraq, Microsoft Threat Intelligence reported Monday. Microsoft’s cybersecurity research arm said the threat actor tracked as “Marbled Dust” exploited unpatched user accounts in the Output Messenger Server Manager application, allowing the group to collect user…
Introducing Sophos Intelix for Microsoft Security Copilot
Bys sElevating threat intelligence for all Security Copilot users.
EuroFins cancer screening hack far bigger than thought, agency says
Bys sDutchNews.nl reports: The scale of a data theft from a Dutch national screening programme laboratory is far greater than initially reported, research agency Bevolkingsonderzoek Nederland said on Friday. Hackers may have accessed the personal and medical details of all 941,000 women who have taken part in the cervical cancer screening programme since 2017, the agency said in……