Blog – Page 872 – Cyber Mike

Hackers Exploit AWS Misconfigurations to Launch Phishing Attacks via SES and WorkMail

Threat actors are targeting Amazon Web Services (AWS) environments to push out phishing campaigns to unsuspecting targets, according to findings from Palo Alto Networks Unit 42.
The cybersecurity company is tracking the activity cluster under the name TGR-UNK-0011 (short for a threat group with unknown motivation), which it said overlaps with a group known as JavaGhost. TGR-UNK-0011 is known to

UK watchdog probes TikTok and Reddit over child privacy concerns

On Monday, the United Kingdom’s privacy watchdog announced that it is investigating TikTok, Reddit, and Imgur because of privacy concerns about how they are processing children’s data. […]

Microsoft links recent Microsoft 365 outage to buggy update

Microsoft says a coding issue is behind a now-resolved Microsoft 365 outage over the weekend that affected Outlook and Exchange Online authentication. […]

Hackers Use ClickFix Trick to Deploy PowerShell-Based Havoc C2 via SharePoint Sites

Cybersecurity researchers are calling attention to a new phishing campaign that employs the ClickFix technique to deliver an open-source command-and-control (C2) framework called Havoc.
“The threat actor hides each malware stage behind a SharePoint site and uses a modified version of Havoc Demon in conjunction with the Microsoft Graph API to obscure C2 communications within trusted, well-known

Hackers Exploit Paragon Partition Manager Driver Vulnerability in Ransomware Attacks

Threat actors have been exploiting a security vulnerability in Paragon Partition Manager’s BioNTdrv.sys driver in ransomware attacks to escalate privileges and execute arbitrary code.
The zero-day flaw (CVE-2025-0289) is part of a set of five vulnerabilities that was discovered by Microsoft, according to the CERT Coordination Center (CERT/CC).
“These include arbitrary kernel memory mapping and

U.K. ICO Investigates TikTok, Reddit, and Imgur Over Children’s Data Protection Practices

The U.K.’s Information Commissioner’s Office (ICO) has opened an investigation into online platforms TikTok, Reddit, and Imgur to assess the steps they are taking to protect children between the ages of 13 and 17 in the country.
To that end, the watchdog said it’s probing how the ByteDance-owned video-sharing service uses the personal data of children in the age range to surface recommendations

Quantum Wars: Google, Microsoft, and Amazon’s Competing Paths to Fault-Tolerant Qubits

Amazon claims its researchers have combined cat qubit technology and additional quantum error correction components onto a microchip that can be manufactured in a scalable fashion.

The post Quantum Wars: Google, Microsoft, and Amazon’s Competing Paths to Fault-Tolerant Qubits appeared first on SecurityWeek.

Mimic Raises $50 Million to Stop Ransomware Attacks

Ransomware defense startup Mimic has raised $50 million in a Series A funding round led by Google Ventures and Menlo Ventures.

The post Mimic Raises $50 Million to Stop Ransomware Attacks appeared first on SecurityWeek.

US Seizes $31 Million Worth of Crypto Stolen in Uranium Finance Hack

The US government has seized roughly $31 million in cryptocurrency stolen in 2021 from Uranium Finance.

The post US Seizes $31 Million Worth of Crypto Stolen in Uranium Finance Hack appeared first on SecurityWeek.

Cybersecurity M&A Roundup: 28 Deals Announced in February 2025

Cybersecurity-related merger and acquisition (M&A) deals announced in February 2025.

The post Cybersecurity M&A Roundup: 28 Deals Announced in February 2025 appeared first on SecurityWeek.

Cyber News