Recent searches
Search options
#infosec
1.1K posts290 participants76 posts today
+ 
= $0 By me @Forbes: Three is the magic Google oh no you can't number. You can use that one for any follow-up release title, @WeAreDeLaSoul. You're welcome.
ForbesGoogle’s New Android Update — 3 Things Your Phone Can No Longer DoThis new Google Android update stops smartphone users from doing three things — here’s what they are and why it matters.
Multiple security vulnerabilities reported in Zoom Workplace applications
Zoom has disclosed multiple security vulnerabilities affecting its Workplace Apps across all major operating systems that could enable attackers to escalate privileges, execute denial-of-service attacks, and remotely execute malicious code on affected systems.
**This is not an urgent advisory, but it's very smart to update your Zoom Apps. Even if the flaws are not immediately exploited, Zoom is used in many scenarios with external persons, links, files. Don't risk it, update the app. It's a fairly trivial process - just Check for Updates and run the installer.**
#cybersecurity #infosec #advisory #vulnerability
https://beyondmachines.net/event_details/multiple-security-vulnerabilities-reported-in-zoom-workplace-applications-e-t-v-u-a/gD2P6Ple2L
New #zeroday s in #ivanti EPMM formerly known as #mobileiron. This company alone makes sure that I won't run out of work any time soon 
At this point I'm starting to wonder whether your org is more secure with or without Ivanti products 
forums.ivanti.comIvanti Community
ASN: AS15897
Location: Istanbul, TR
Added: 2025-05-08T05:16
Possible Phishing 
on: 
hxxps[:]//aloverdao[.]com[.]br/office365/ture_login/Login
Analysis at: https://urldna.io/scan/682454d83b7750000bdbf493
#cybersecurity #phishing #infosec #urldna #scam #infosec
Cyber Automation Engineer, Junior
Booz Allen Hamilton
San Diego, United States
Apply now: https://totalcyber.io/jobs/booz-allen-hamilton/cyber-automation-engineer-junior
Cyber Automation Engineer, Junior at Booz Allen Hamilton | TotalCyber.ioCyber Automation Engineer, Junior at Booz Allen Hamilton | TotalCyber.ioApply now on totalcyber.io/jobs
Possible Phishing
on: hxxps[:]//alpinecoffee[.]com[.]np/kinfljdslds/nridistribution[.]com/office_365_authentication/office[.]php
Analysis at: https://urldna.io/scan/6824563c3b775000104c37fa
#cybersecurity #phishing #infosec #urldna #scam #infosec
Critical authentication bypass vulnerability reported in Ivanti Neurons for ITSM
Ivanti has released security updates addressing a critical authentication bypass vulnerability (CVE-2025-22462) in on-premises Neurons for ITSM solutions. It allows unauthenticated remote attackers to gain administrative access. Patches are available for all affected versions (2023.4, 2024.2, and 2024.3).
**If you're running on-premises Ivanti Neurons for ITSM versions 2023.4, 2024.2, 2024.3 or earlier, prioritize patching it with the May 2025 Security Patch. As a mitigating measures, ensure your IIS website has restricted access to specific IP addresses and domain names, and implement a DMZ configuration if users access the solution from outside your company network.**
#cybersecurity #infosec #advisory #vulnerability
https://beyondmachines.net/event_details/critical-authentication-bypass-vulnerability-reported-in-ivanti-neurons-for-itsm-k-z-w-p-0/gD2P6Ple2L
BeyondMachinesCritical authentication bypass vulnerability reported in Ivanti Neurons for ITSMIvanti has released security updates addressing a critical authentication bypass vulnerability (CVE-2025-22462) in on-premises Neurons for ITSM solutions. It allows unauthenticated remote attackers to gain administrative access. Patches are available for all affected versions (2023.4, 2024.2, and 2024.3).
Application Security Engineer Clearwater Analytics Noida, India
Apply now: https://totalcyber.io/jobs/clearwater-analytics/application-security-engineer-9
Application Security Engineer at Clearwater Analytics | TotalCyber.ioApplication Security Engineer at Clearwater Analytics | TotalCyber.ioApply now on totalcyber.io/jobs
Possible Phishing
on: hxxps[:]//am796[.]github[.]io/netflix-landing-page
Analysis at: https://urldna.io/scan/6824625d3b7750000f091fc6
#cybersecurity #phishing #infosec #urldna #scam #infosec
Possible Phishing
on: hxxp[:]//salmin2001[.]github[.]io/netflix-clone
Analysis at: https://urldna.io/scan/682452793b7750000a87cc66
#cybersecurity #phishing #infosec #urldna #scam #infosec
Replied in thread
@firstdogonthemoon Timely… a colleague discovered to his horror that these AI transcription/notetaking bots are also very efficient at stealing credentials you unwittingly flash up on screen during a streamed demo.
#InfoSec nightmare. Microsoft Recall will only make this worse. I hate IT as a career now.
Ivanti reports actively exploited EPMM flaws, urges immediate patching
Ivanti has issued an urgent security advisory warning that attackers are actively chaining two vulnerabilities (CVE-2025-4427 and CVE-2025-4428) in Endpoint Manager Mobile's on-premises deployments to gain unauthorized access and execute malicious code. Some customers have already been compromised, urgent patching is advised.
**If you are using Ivanti Endpoint Manager Mobile on premises, this is an URGENT advisory. Update your EPMM because it's already actively hacked, using flaws that are not even deemed critical. Just another reminder to always keep up with patches.**
#cybersecurity #infosec #attack #activeattack
https://beyondmachines.net/event_details/ivanti-reports-actively-exploited-epmm-flaws-urges-immediate-patching-4-y-1-3-y/gD2P6Ple2L
Engineer - threat research (MITRE) Trend Micro Taipei City, Taiwan
Apply now: https://totalcyber.io/jobs/trend-micro/engineer-threat-research-mitre-2
Engineer - threat research (MITRE) at Trend Micro | TotalCyber.ioEngineer - threat research (MITRE) at Trend Micro | TotalCyber.ioApply now on totalcyber.io/jobs
Possible Phishing
on: hxxps[:]//alienoffice[.]firebaseapp[.]com
Analysis at: https://urldna.io/scan/682446d33b7750000f783f4b
#cybersecurity #phishing #infosec #urldna #scam #infosec
PyPI package targets Solana developers
A malicious PyPI package named solana-token has been discovered targeting Solana blockchain developers. The package, downloaded over 600 times, attempts to steal source code and developer secrets from infected machines. It uses suspicious behaviors like communicating with IP addresses on non-standard ports and reading from files to exfiltrate data to a remote server. This attack is part of a broader trend of supply chain attacks on cryptocurrency projects, with 23 such campaigns identified in 2024 alone. The package name was previously used for another malicious module, suggesting possible reuse by the same threat actors. Developers are urged to monitor for suspicious activity in open source and third-party software to prevent such supply chain attacks.
Pulse ID: 6823b32f7b5f6ffcac1ab255
Pulse Link: https://otx.alienvault.com/pulse/6823b32f7b5f6ffcac1ab255
Pulse Author: AlienVault
Created: 2025-05-13 21:01:35
Be advised, this data is unverified and should be considered preliminary. Always do further verification.
LevelBlue Open Threat ExchangeLevelBlue - Open Threat ExchangeLearn about the latest cyber threats. Research, collaborate, and share threat intelligence in real time. Protect yourself and the community against today's emerging threats.