RSAC 2025 is one of the premier conferences showcasing advancements in cybersecurity and offering a glimpse into what cybersecurity looks like in 2025. With Artificial Intelligence now ruling the landscape and being a hot and trending topic, it can aid both cybercriminals and defenders. Therefore, it’s essential to understand the use of Artificial Intelligence and … Continued
Where to Start : Registration & Badge Pick-Up Let’s get you in! 📌 Location: Moscone Center, San Francisco Badge pick-up usually happens at Moscone West (you’ll see signs everywhere). 🕗 Timings: Sunday: Early check-in opens (ideal to beat the Monday morning rush). Monday–Thursday: Open from early morning; exact times vary slightly each year-check the app. … Continued
Amid rising tensions between India and Pakistan following the Pahalgam incident, anticipation of retaliatory action between the two nations has grown. But as cybersecurity community often warns—before the missiles fly, the cyberattacks strike. Today, the website of India’s Army Nursing College was hacked by a pro-Pakistan hacker group known as “Team Insane PK.” The cyberattack … Continued
In a new wave of cyberattacks, Russia-linked threat actors are exploiting legitimate Auth 2.0 authentication processes to compromise Microsoft 365 accounts belonging to individuals affiliated with Ukraine and human rights organizations, according to a report by cybersecurity firm Volexity. The adversaries—tracked by Volexity as UTA0352 and UTA0355—have been conducting the operation since early March, shortly … Continued
A newly disclosed high-severity vulnerability in CommVault’s Command Center has caused a stir in the cybersecurity community. The product, often deployed at the core of critical infrastructure, contains serious flaws that could potentially compromise the entire system if exploited. Commvault Vulnerability CVE-2025-34028 The vulnerability, tracked as CVE-2025-34028, affects Commvault Command Center versions 11.38.0 through 11.38.19 … Continued
A newly discovered critical vulnerability in Langflow has been discovered by Zscaler, an open-source platform widely used for visually composing AI agents and workflows. Tracked as CVE-2025-3248, the flaw allows unauthenticated attackers to remotely execute arbitrary code on vulnerable servers, with a severity score of 9.8 on the Common Vulnerability Scoring System (CVSS). Overview of … Continued
Cybersecurity researchers at Trend Micro have uncovered a sophisticated campaign by North Korea-linked threat actor group Void Dokkaebi, which used a fictitious company called BlockNovas to lure job seekers into downloading malware disguised as part of an interview process. This campaign, run across platforms like LinkedIn, Upwork, and Freelancer, has already affected hundreds of applicants … Continued
Zyxel has released critical security updates for its USG FLEX H series firewalls, addressing two vulnerabilities tracked as CVE-2025-1731 and CVE-2025-1732 allow attackers to escalate privileges on affected systems. Vulnerability Details CVE-2025-1732 pertains to improper privilege management within the firmware’s recovery function. This vulnerability could allow a local attacker with administrative access to upload a … Continued
RSAC 2025 is more than just a conference—it’s where the future of cybersecurity is shaped. It’s a global gathering of professionals from across the security spectrum, all converging to tackle the most urgent challenges of our time. From nation-state cyberattacks and insider threats to cutting-edge vulnerability research, this year’s agenda is a gold mine of … Continued
SK Telecom, South Korea’s largest mobile operator, has confirmed a security breach involving customer SIM-related information following a malware infection discovered late on April 19. The attack, which occurred around 11:00 PM local time on Saturday, exploited a period when many organizations typically operate with reduced staffing. SK Telecom servers approximately 34 million subscribers and … Continued
