External News – Cyber Club @ UDM

Krebs On Security

DOGE Worker’s Code Supports NLRB Whistleblower
April 23, 2025
A whistleblower at the National Labor Relations Board (NLRB) alleged last week that denizens of Elon Musk's Department of Government Efficiency (DOGE) siphoned gigabytes of […]
Whistleblower: DOGE Siphoned NLRB Case Data
April 22, 2025
A security architect with the National Labor Relations Board (NLRB) alleges that employees from Elon Musk's Department of Government Efficiency (DOGE) transferred gigabytes of sensitive […]
Funding Expires for Key Cyber Vulnerability Database
April 16, 2025
A critical resource that cybersecurity professionals worldwide rely on to identify, mitigate and fix security vulnerabilities in software and hardware is in danger of breaking […]
Trump Revenge Tour Targets Cyber Leaders, Elections
April 15, 2025
President Trump last week revoked security clearances for Chris Krebs, the former director of the Cybersecurity and Infrastructure Security Agency (CISA) who was fired by […]
China-based SMS Phishing Triad Pivots to Banks
April 10, 2025
China-based purveyors of SMS phishing kits are enjoying remarkable success converting phished payment card data into mobile wallets from Apple and Google. Until recently, the […]
Patch Tuesday, April 2025 Edition
April 9, 2025
Microsoft today released updates to plug at least 121 security holes in its Windows operating systems and software, including one vulnerability that is already being […]

Synthetic Sabotage: How AI Tools Are Fueling Tailored Phishing Campaigns at Scale
April 28, 2025
Crafting credible lures at scale required either a team of grifters or a scattergun approach. Today, those constraints have been […]
Verizon's 2025 DBIR: Threats Are Faster, Smarter, and More Personal
April 23, 2025
In its 17th edition, Verizon's 2025 Data Breach Investigations Report (DBIR) continues to deliver one of the most comprehensive analyses […]
CISA Secure by Design Initiative Faces Uncertainty Amid Leadership Exits
April 23, 2025
The United States Cybersecurity and Infrastructure Security Agency (CISA) is confronting a pivotal moment following the recent resignations of two […]
The Distributed Crisis: Rubrik Report on State of Cyber Resilience
April 22, 2025
The state of data security is in flux—and according to Rubrik's recent report, it's not trending in the right direction. […]
Hackers Exploit Zoom's Remote Control Feature in Cryptocurrency Heists
April 22, 2025
A sophisticated cybercrime campaign, dubbed Elusive Comet, has been uncovered, in which North Korean threat actors are exploiting Zoom's remote […]
Translating Deep Cybersecurity Knowledge into Media Opportunities
April 21, 2025
You've built your cybersecurity business on years of solid technical expertise. Your team has a deep understanding of all the […]

SAP NetWeaver Visual Composer Flaw Under Active Exploitation
April 28, 2025
CVE-2025-31324 is a maximum severity bug that attackers exploited weeks before SAP released a patch for it.
AI, Automation, and Dark Web Fuel Evolving Threat Landscape
April 28, 2025
Attackers are leveraging the benefits of new technology and the availability of commodity tools, credentials, and other resources to develop […]
Forget the Stack; Focus on Control
April 28, 2025
Security teams are under more pressure than ever — and cybersecurity debt is adding fuel to the fire. While it […]
DoJ Data Security Program Highlights Data Sharing Challenges
April 28, 2025
The Department of Justice announced compliance rules for the Data Security Program that will require organizations to reexamine how they […]
Mobile Applications: A Cesspool of Security Issues
April 25, 2025
An analysis of more than a half-million mobile apps find encryption problems, privacy issues, and known vulnerabilities in third-party code. […]
How Organizations Can Leverage Cyber Insurance Effectively
April 25, 2025
By focusing on prevention, education, and risk transfer through insurance, organizations — especially SMEs — can protect themselves from the […]