CISA Warns of Active Exploits Targeting Trimble Cityworks Vulnerability (Fri, 07 Feb 2025)
The U.S. Cybersecurity and Infrastructure Security Agency (CISA) has warned that a security flaw impacting Trimble Cityworks GIS-centric asset management software has come under active exploitation
in the wild. The vulnerability in question is CVE-2025-0994 (CVSS v4 score: 8.6), a deserialization of untrusted data bug that could permit an attacker to conduct remote code execution. "This could
>> Read more
AI-Powered Social Engineering: Reinvented Threats (Fri, 07 Feb 2025)
The foundations for social engineering attacks – manipulating humans – might not have changed much over the years. It’s the vectors – how these techniques are deployed – that are evolving. And like
most industries these days, AI is accelerating its evolution. This article explores how these changes are impacting business, and how cybersecurity leaders can respond. Impersonation attacks:
>> Read more
Microsoft Identifies 3,000 Leaked ASP.NET Keys Enabling Code Injection Attacks (Fri, 07 Feb 2025)
Microsoft is warning of an insecure practice wherein software developers are incorporating publicly disclosed ASP.NET machine keys from publicly accessible resources, thereby putting their
applications in attackers' pathway. The tech giant's threat intelligence team said it observed limited activity in December 2024 that involved an unknown threat actor using a publicly available,
static ASP.NET
>> Read more
India’s RBI Introduces Exclusive "bank.in" Domain to Combat Digital Banking Fraud (Fri, 07 Feb 2025)
India's central bank, the Reserve Bank of India (RBI), said it's introducing an exclusive "bank.in" internet domain for banks in the country to combat digital financial fraud. "This initiative aims
to reduce cyber security threats and malicious activities like phishing; and, streamline secure financial services, thereby enhancing trust in digital banking and payment services," the RBI said in a
>> Read more
Hackers Exploiting SimpleHelp RMM Flaws for Persistent Access and Ransomware (Fri, 07 Feb 2025)
Threat actors have been observed exploiting recently disclosed security flaws in SimpleHelp's Remote Monitoring and Management (RMM) software as a precursor for what appears to be a ransomware
attack. The intrusion leveraged the now-patched vulnerabilities to gain initial access and maintain persistent remote access to an unspecified target network, cybersecurity company Field Effect said
in a
>> Read more