Security Boulevard

Cary, NC, Mar. 24, 2025, CyberNewswire –– INE Security, a global provider of cybersecurity training and certification, today announced its initiative to spotlight the increasing cyber threats targeting healthcare institutions.

In recognition of National Physicians Week 2025, … (more…)

The post News alert: INE Security spotlights healthcare companies facing rising exposure to costly breaches first appeared on The Last Watchdog.

The post News alert: INE Security spotlights healthcare companies facing rising exposure to costly breaches appeared first on Security Boulevard.

Speaker: Bryan Hance

Our sincere appreciation to DEF CON, and the Presenters/Authors for publishing their erudite []DEF CON 32]2 content. Originating from the conference’s events located at the Las Vegas Convention Center; and via the organizations YouTube channel.

The post DEF CON 32 – Recon Village – Bastardo Grande: Hunting the Largest Black Market Bike Fence appeared first on Security Boulevard.

Cary, NC, 24th March 2025, CyberNewsWire

The post Cyber Guardians: INE Security Champions Cybersecurity Training During National Physicians Week 2025 appeared first on Security Boulevard.

A Cato Networks threat researcher with little coding experience was able to convince AI LLMs from DeepSeek, OpenAI, and Microsoft to bypass security guardrails and develop malware that could steal browser passwords from Google Chrome.

The post Cato Uses LLM-Developed Fictional World to Create Jailbreak Technique appeared first on Security Boulevard.

tl;dr: There's no silver bullet for keeping secrets out of logs, but if we put several "lead bullets" in the right places, we have a good chance of success.

The post Keeping Secrets Out of Logs: Strategies That Work appeared first on Security Boulevard.

Too often, we hear engineering teams proudly claim, “We push code commits every day.” It sounds impressive, continuous work, constant output, relentless progress. But here’s...Read More

The post Code Commits Are Not a Measure of Software Success, Customer Delight Is appeared first on ISHIR | Software Development India.

The post Code Commits Are Not a Measure of Software Success, Customer Delight Is appeared first on Security Boulevard.

Today, we're excited to announce that Tonic.ai has raised $35 million in Series B funding led by global venture capital and private equity firm Insight Partners. A milestone that serves as further proof of the value of mimicking production data for development—the value of fake data.

The post We raised a $35M Series B. Here’s what’s next for fake data. appeared first on Security Boulevard.

Global Partner Program empowers partners to deliver top-tier supply chain security solutions to enterprise customers Portland, OR – March 24, 2025 – Eclypsium, a leader in infrastructure supply chain security, is proud to announce that it has been included in the prestigious 2025 CRN® Partner Program Guide. The guide is issued annually by CRN®, a […]

The post Eclypsium Earns Spot on Coveted 2025 CRN Partner Program Guide appeared first on Eclypsium | Supply Chain Security for the Modern Enterprise.

The post Eclypsium Earns Spot on Coveted 2025 CRN Partner Program Guide appeared first on Security Boulevard.

This is a news item roundup of privacy or privacy-related news items for 16 MAR 2025 - 22 MAR 2025. Information and summaries provided here are as-is for warranty purposes.

Note: You may see some traditional "security" content mixed-in here due to the close relationship between online privacy and cybersecurity - many things may overlap; for example, major vulnerabilities in popular software, which may compromise the security of user's devices (and therefore pose a threat to their privacy) and large data breaches where significant personal information is exposed.

Items presented here are typically curated with the end user and small groups (such as families and small/micro businesses) in mind. Due to this focus, items primarily affecting enterprises or large organizations may not be included, even if they are widespread or "popular" stories.

TABLE OF CONTENTS

• Privacy Tip of the Week
• Surveillance Tech in the News
• Privacy Tools and Services
• • Privacy Tools
  • Privacy Services
• Vulnerabilities and Malware
• • Vulnerabilities
  • Malware
• Phishing and Scams
• • Phishing
• Service Providers' Privacy Practices
• Legislation/Regulations/Lawsuits
• • Legislation and Regulation
• Data Breaches and Leaks
• • Data breaches
  • Data leaks

Privacy Tip of the Week

You should at least enable MFA on important/sensitive accounts. While MFA is primarily a security feature, its primary privacy benefit is adding another layer of security to prevent unauthorized access to information contained in particular important or sensitive accounts.

Surveillance Tech in the News

This section covers surveillance technology and methods in the news. Specifically, stories and news items where public and/or private organizations have leveraged their capabilities to encroach on user privacy; for example, data brokers using underhanded means to harvest user location data without user knowledge or public organizations using technology without regard for user privacy.

Android Apps Use Bluetooth and WiFi Scanning to Track Users Without GPS

Cyber Insider

Researchers found that 86% of apps they analyzed collect sensitive data, including location data stemming from scanning Wi-Fi network details, and collecting device identifiers. These apps also frequently use Bluetooth data to gather location information and proximity to nearby devices.

This data collection is primarily facilitated by software development kits, which developers may include in apps to bring features without coding things from the ground up - however, they may even be unaware of the privacy implications for their app users.

Judge stops Musk's team from 'unbridled access' to Social Security private data

Reuters

As DOGE continues to push for more access to various systems containing sensitive information of Americans' a judge orders the Social Security Administration to stop sharing data with "DOGE affiliates". Allegedly (and in line with prior reporting), DOGE accessed sensitive SSA data without proper vetting -- similar to when they gained access to US Treasury payment data, which also contains sensitive information of millions of Americans.

Researchers name several countries as potential Paragon spyware customers

TechCrunch

The Citizen Lab, a group of academics and security researchers, recently published a report indicating the governments of Australia, Canada, Cyprus, Denmark, Israel, and Singapore are "likely" customers of Israeli spyware maker Paragon Solutions.

Privacy Tools and Services

Primarily covers tools and services with a focus on maintaining/improving/respecting user privacy. Generally includes recommended services/tools found on avoidthehack, but also may feature upcoming/other privacy services not necessarily recommended or promoted by avoidthehack.com

Privacy Tools

Bitwarden enables biometric unlock on Linux

Bitwarden

Installing Bitwarden through Snapcraft on Linux can use biometrics to unlock the desktop application.

Privacy Services

Cape opens $99/month beta of its privacy-first mobile plan, inks Proton deal, raises $30M

TechCrunch

I usually don't include beta software on in this series (or really on avoidthehack) or early-stage startups because things in those early-stages go through such turbulence... but given the Salt Typhoon breach and the apparent lackluster security practices and culture at just about every American telecommunications company, this was too interesting to ignore.

Cape is a mobile carrier startup claiming to provide a more secure and private service alternative to traditional telecommunications services. They also have appeared to partner with Proton...

Vulnerabilities and Malware

Primarily includes severe and exploited vulnerabilities in devices or software used by end users (ex: a major router firmware flaw). Malware campaigns covered generally target/affect the end user.

This section will not contain every vulnerability/CVE or malware campaign reported, but will focus on those with the largest potential impact on a wide range of end users.

Vulnerabilities

Apple’s Passwords app was vulnerable to phishing attacks for nearly three months after launch

9to5Mac

Mysk security researchers first discovered this vulnerability after noticing the Passwords app had connected to 130 different domains over regular (unencrypted) HTTP. Specifically, it was fetching account icons and defaulted to opening password reset pages over HTTP.

This vulnerability was patched by Apple in December 2024, but they only disclosed it recently.

Cybercriminals Exploit CheckPoint Antivirus Driver in Malicious Campaign

Infosecurity Magazine

Threat actors are leveraging a "bring your own vulnerable driver" (BYOVD) attack to bypass Windows security measures. Once bypassed, threat actors had high-level access and could view information such as user passwords and other stored credentials.

Microsoft isn't fixing 8-year-old shortcut exploit abused for spying

The Register

Nation-state backed threat actors (which includes North Korea, Iran, Russia, and China) have been abusing Windows shortcut files LNK for many years. These threat actors go to lengths to bury the actual commands used in malicious .LNK files which download malware onto the machine.

According to Microsoft, despite this observed trend, it doesn't intend to release a security fix -- but could do so in the future.

Malware

AMOS and Lumma stealers actively spread to Reddit users

MalwareBytes

Reddit posts (directly on reddit.com) by threat actors on subreddits frequented by cryptocurrency traders link to information stealing malware.

New Arcane infostealer infects YouTube, Discord users via game cheats

Bleeping Computer

A campaign spreading information stealer Arcane primarily uses video game cheats as a lure; specifically, the campaign uses YouTube videos promoting game cheats and cracks to trick users into downloading a password-protected archive containing a malware loader script. Once executed, the script fetches the information stealing malware.

The Kaspersky researchers noted the this "Arcane" information stealer has no known links or overlapping code with Arcane Stealer V. Additionally, Arcane steals a wide range of user data, including VPN account credentials, gaming client information, messaging apps, and information stored in various web browsers.

300 Malicious ‘Vapor’ Apps Hosted on Google Play Had 60 Million Downloads

SecurityWeek

Vapor campaign included over 180 malicious apps on Google Play posing as utility, health and fitness, and lifestyle apps designed to deploy "endless, intrusive full-screen interstitial video ads." Apps in the Vapor campaign bypassed the recent protections introduced in the latest...

The post Privacy Roundup: Week 12 of Year 2025 appeared first on Security Boulevard.

Guidance to help organizations reduce their attack surface, implement a stronger defense-in-depth security model, as well as more quickly detect and contain an intrusion by this ever-prevalent threat.  

The post Prevent, Detect, Contain: A Guide Against Black Basta Affiliates’ Attacks  appeared first on Security Boulevard.

What is the Cyber Resilience Act? The Cyber Resilience Act is a comprehensive regulatory framework introduced by the EU to enhance cybersecurity resilience. Its primary focus is on minimizing vulnerabilities in digital products and ensuring robust cybersecurity measures are implemented throughout their lifecycle. The act applies to both manufacturers and suppliers of software and hardware […]

The post EU Cyber Resilience Act: What You Need to Know appeared first on Centraleyes.

The post EU Cyber Resilience Act: What You Need to Know appeared first on Security Boulevard.

SOCs without AI aren't just behind the curve — they're fundamentally outmatched in the asymmetric battle against sophisticated threat actors.

The post Evaluating AI for Security Operations appeared first on Security Boulevard.

Paris, France, 24th March 2025, CyberNewsWire

The post Arsen Introduces AI-Powered Phishing Tests to Improve Social Engineering Resilience appeared first on Security Boulevard.

Deception is a core component of many cyberattacks, including phishing, scams, social engineering and disinformation campaigns.

The post Intro to Deceptionology: Why Falling for Scams is Human Nature appeared first on Security Boulevard.

Quantum computing’s ability to break today’s encryption may still be years away—but security leaders can’t afford to wait. Forrester’s The Future of Quantum Security makes it clear: the transition to quantum-safe cryptography must start now.

Related: Quantum standards come of … (more…)

The post SHARED INTEL Q&A: Forrester highlights why companies need to strive for ‘cryptoagility’– today first appeared on The Last Watchdog.

The post SHARED INTEL Q&A: Forrester highlights why companies need to strive for ‘cryptoagility’– today appeared first on Security Boulevard.

When security vulnerabilities appear in popular frameworks, they can affect thousands of websites overnight. That’s exactly what’s happening with a newly discovered vulnerability in Next.js – one of the most...

The post CVE-2025-29927 – Understanding the Next.js Middleware Vulnerability appeared first on Strobes Security.

The post CVE-2025-29927 – Understanding the Next.js Middleware Vulnerability appeared first on Security Boulevard.

Decoding Fake US ESTA Emails: Scam or Real Deal?

The post Decoding Fake US ESTA Emails: Scam or Real Deal? appeared first on Security Boulevard.

In this special episode of the Shared Security Podcast, join Tom Eston and Dan DeCloss, CTO and founder of PlexTrac, as they discuss the challenges of data overload in vulnerability remediation. Discover how PlexTrac addresses these issues by integrating various data sources, providing customized risk scoring, and enhancing remediation workflows. The episode offers an insightful […]

The post From Spreadsheets to Solutions: How PlexTrac Enhances Security Workflows appeared first on Shared Security Podcast.

The post From Spreadsheets to Solutions: How PlexTrac Enhances Security Workflows appeared first on Security Boulevard.

Welcome to this week's edition of our cybersecurity news roundup, bringing you the latest developments and insights from the UK and beyond.

NHS Scotland Confirms Cyberattack Disruption

On 20 March 2025, NHS Scotland reported a major cyber incident that caused network outages across multiple health boards. The cyberattack disrupted clinical systems and led to delayed patient care, with staff reverting to paper-based processes. The incident has been linked to a suspected ransomware group, although official attribution is still pending. Investigations are ongoing with support from the National Cyber Security Centre (NCSC).

Further coverage from The Register confirmed that some systems were taken offline to prevent further spread, while emergency care remained operational. The affected regions included NHS Dumfries and Galloway, which issued a statement urging patients to only attend if absolutely necessary. (Read more on The Register)

NCSC Weekly Threat Report – 22 March 2025

The NCSC's latest threat report highlights ongoing exploitation of known vulnerabilities in Progress Telerik UI by state-aligned threat actors. The report urges UK organisations to patch vulnerable systems immediately, as attackers continue to target unpatched web servers.

Additionally, the NCSC notes an increase in malicious QR code campaigns—so-called "quishing"—where attackers embed phishing URLs into QR codes used in emails, posters, or even receipts. Organisations are advised to educate staff and implement QR code scanning policies.

Cyber Threats on the Rise as UK Eyes General Election

As the UK gears up for a general election later this year, the NCSC has raised concerns over potential interference campaigns and disinformation efforts by hostile states. Security services are reportedly on high alert, coordinating with political parties to bolster cyber resilience. While no major incidents have been reported yet, the threat landscape is being closely monitored.

Quick Bytes

• New phishing campaign mimics HMRC emails demanding urgent tax repayment. Be vigilant and double-check all official correspondence.
• UK universities warned of increased targeting by espionage-motivated groups, particularly in the fields of AI and quantum computing.
• ICO fines a London-based telemarketing firm £130,000 for unlawful data use and non-compliance with GDPR.

That’s all for this week! Stay tuned for more updates, and follow best practices to keep your systems secure.

➡️ Previous Post: UK Cybersecurity Weekly News Roundup - 17 March 2025

The post UK Cybersecurity Weekly News Roundup – 23 March 2025 appeared first on Security Boulevard.

Speaker: Lenin Alevski

Our sincere appreciation to DEF CON, and the Presenters/Authors for publishing their erudite []DEF CON 32]2 content. Originating from the conference’s events located at the Las Vegas Convention Center; and via the organizations YouTube channel.

Permalink

The post DEF CON 32 – Recon Village – Recon MindMap: Organize, Visualize & Prioritize Recon Data appeared first on Security Boulevard.