ThreatsHub Cybersecurity News

April 16, 2025 TH Author

Signalgate chats vanish from CIA chief phone

Extraordinary rendition of data, or just dropped it out of a helicopter? CIA Director John Ratcliffe’s smartphone has almost no trace left of the infamous Signalgate chat – the one in which he and other top US national security officials discussed a secret upcoming military operation in a group Signal conversation a journalist was inadvertently added to.… READ MORE HERE…

ZDNet | Security

April 16, 2025 TH Author

Why the CVE database for tracking security flaws nearly went dark – and what happens next

Expired US government funding nearly disrupted this global security system. How can we prevent this from happening again in 11 months?READ MORE HERE…

The Register

April 16, 2025 TH Author

CVE program gets last-minute funding from CISA – and maybe a new home

Uncertainty is the new certainty In an 11th-hour reprieve, the US government last night agreed to continue funding the globally used Common Vulnerabilities and Exposures (CVE) program.… READ MORE HERE…

ZDNet | Security

April 16, 2025 TH Author

How Apple plans to train its AI on your data without sacrificing your privacy

Apple’s solution is called ‘differential privacy’ – and it’s already been using it for Genmojis.READ MORE HERE…

ZDNet | Security

April 16, 2025 TH Author

Spotify goes down: What we know, plus our favorite alternatives to try

The company is investigating.READ MORE HERE…

Microsoft Secure

April 16, 2025 TH Author

Cyber Signals Issue 9 | AI-powered deception: Emerging fraud threats and countermeasures

Microsoft maintains a continuous effort to protect its platforms and customers from fraud and abuse. This edition of Cyber Signals takes you inside the work underway and important milestones achieved that protect customers.
The post Cyber Signals Issue 9 | AI-powered deception: Emerging fraud threats and countermeasures appeared first on Microsoft Security Blog. READ MORE HERE…

The Register

April 16, 2025 TH Author

Uncle Sam abruptly turns off funding for CVE program. Yes, that CVE program

Because vulnerability management has nothing to do with national security, right? US government funding for the world’s CVE program – the centralized Common Vulnerabilities and Exposures database of product security flaws – ends Wednesday.… READ MORE HERE…

TrendMicro

April 16, 2025 TH Author

CrazyHunter Campaign Targets Taiwanese Critical Sectors

This blog entry details research on emerging ransomware group CrazyHunter, which has launched a sophisticated campaign aimed at Taiwan’s essential services. Read More HERE…

The Register

April 15, 2025 TH Author

China names alleged US snoops over Asian Winter Games attacks

Beijing claims NSA went for gold in offensive cyber, got caught in the act China’s state-run press has taken its turn in trying to highlight alleged foreign cyber offensives, accusing the US National Security Agency of targeting the 2025 Asian Winter Games.… READ MORE HERE…

Microsoft Secure

April 15, 2025 TH Author

Threat actors misuse Node.js to deliver malware and other malicious payloads

Since October 2024, Microsoft Defender Experts has observed and helped multiple customers address campaigns leveraging Node.js to deliver malware and other payloads that ultimately lead to information theft and data exfiltration.
The post Threat actors misuse Node.js to deliver malware and other malicious payloads appeared first on Microsoft Security Blog. READ MORE HERE…

Cyber Security Trending News

Bug hunter tricked SSL.com into issuing cert for Alibaba Cloud domain in 5 steps

Signalgate chats vanish from CIA chief phone

Why the CVE database for tracking security flaws nearly went dark – and what happens next

CVE program gets last-minute funding from CISA – and maybe a new home

How Apple plans to train its AI on your data without sacrificing your privacy

Spotify goes down: What we know, plus our favorite alternatives to try

Cyber Signals Issue 9 | AI-powered deception: Emerging fraud threats and countermeasures

Uncle Sam abruptly turns off funding for CVE program. Yes, that CVE program

CrazyHunter Campaign Targets Taiwanese Critical Sectors

China names alleged US snoops over Asian Winter Games attacks

Threat actors misuse Node.js to deliver malware and other malicious payloads