CISA Statement on CVE Program
The CVE Program is invaluable to the cyber community and a priority of CISA. On April 15th, CISA executed the option period on the contract to ensure there will be no lapse in critical CVE…
April 2025
April 2025
Gamma AI Platform Abused in Phishing Chain to Spoof Microsoft SharePoint Logins
Threat actors are leveraging an artificial intelligence (AI) powered presentation platform named Gamma in phishing attacks to direct unsuspecting users to spoofed Microsoft login pages. “Attackers weaponize Gamma, a relatively new AI-based presentation tool, to…
The New Cyber Risks Facing Supply Chains
Introduction Cyber threats targeting supply chains have become a growing concern for businesses across industries. As companies continue to expand their reliance on third-party vendors, cloud-based services, and global logistics networks, cybercriminals are exploiting vulnerabilities…
Researchers claim breakthrough in fight against AI’s frustrating security hole
Here’s how it works. First, the system splits responsibilities between two language models: A “privileged LLM” (P-LLM) generates code that defines the steps to take—like calling a function to get the last email or sending…
Apple Intelligence 2.0: 10 ways Apple can get its AI back on the right track
When Apple Intelligence launched last year, Apple promised us that its AI system would revolutionize how we use our devices. Unfortunately, this past year has been much more middling than miraculous for Apple’s AI, with…
Easy Ways to Record Your Screen and Audio on Mac
“Hoping someone has a solid recommendation on a plug-in or some way to do this correctly, without installing a bunch of questionable plug-ins on my Macbook. I want to record a Facetime video call, but…
CalDigit Thunderbolt 5 docking station release date
CalDigit has produced some of the best docks in Macworld’s list of the best Thunderbolt docking stations for Mac since the iconic TS3 Thunderbolt 3 dock, followed by the award-winning TS4 Dock when Apple started…
New BPFDoor Controller Enables Stealthy Lateral Movement in Linux Server Attacks
Apr 16, 2025Ravie LakshmananCyber Espionage / Network Security Cybersecurity researchers have unearthed a new controller component associated with a known backdoor called BPFDoor as part of cyber attacks targeting telecommunications, finance, and retail sectors in…
Tariff are an opportunity for Apple to reset its priorities
Tariffs! Are they off? Are they on? Are they halved, doubled, super-tricksy inside-outified? Nobody really knows. While my colleague Jason Snell already gave some concrete ideas for how Apple can deal with the wild world…
A Look Inside Wing Security’s Layered SaaS Identity Defense
Intro: Why hack in when you can log in? SaaS applications are the backbone of modern organizations, powering productivity and operational efficiency. But every new app introduces critical security risks through app integrations and multiple…