BleepingComputer.com

"Getting exposure management right:  Insights from 500 CISOs."

Views expressed in this cybersecurity, cyber crime update are those of the reporters and correspondents.  Accessed on 30 May 2025, 1454 UTC.

Content and Source:  "BleepingComputer.com."

Site URL-- https://www.bleepingcomputer.com/

Please check URL or scroll down to read your selections.  Thanks for joining us today.

Russ Roberts (https://www.hawaiicybersecurityjournal.net).

Latest Articles

• 
   
  Security

  Getting Exposure Management Right: Insights from 500 CISOs

  Pentesting isn't just about finding flaws — it's about knowing which ones matter. Pentera's 2025 State of Pentesting report uncovers which assets attackers target most, where security teams are making progress, and which exposures still fly under the radar. Focus on reducing breach impact, not just breach count.

  • Pentera
   
  • May 30, 2025
   
  • 10:00 AM
   
  •  0
• 
   
  Deals

  Lifetime access to Babbel language courses available via StackSocial

  If you want to take a practical approach to learning a second, third, or fourth language, then try Babbel. Their lifetime subscription normally $599, but now it's only $139.99.

  • BleepingComputer Deals
   
  • May 30, 2025
   
  • 07:10 AM
   
  •  0
• 
   

  New Webinar: Defend Against Scattered Spider's Latest TTPs for 2025 

  Learn about Scattered Spider's latest identity attack techniques and how they continue to evolve in 2025.

  Register for the webinar to learn about their latest TTPs and how to defend your organization.

  • Push Security Sponsorship
• 
   
  Software, Technology

  Mozilla releases Firefox 139.0.1 update to fix artifacts on Nvidia GPUs

  Mozilla has rolled out an emergency Firefox 139.0.1 update after the Tuesday release caused graphical artifacts on PCs with NVIDIA GPUs.

  • Mayank Parmar
   
  • May 29, 2025
   
  • 07:58 PM
   
  •  0
• 
   
  Security, Microsoft

  Microsoft Authenticator now warns to export passwords before July cutoff

  The Microsoft Authenticator app is now issuing notifications warning that the password autofill feature is being deprecated in July, suggesting users move to Microsoft Edge instead.

  • Lawrence Abrams
   
  • May 29, 2025
   
  • 07:49 PM
   
  •  2
• 
   
  Security

  ConnectWise breached in cyberattack linked to nation-state hackers

  IT management software firm ConnectWise says a suspected state-sponsored cyberattack breached its environment and impacted a limited number of ScreenConnect customers.

  • Lawrence Abrams
   
  • May 29, 2025
   
  • 03:12 PM
   
  •  0
• 
   
  Deals

  Play and work with this $80 refurbished Lenovo Chromebook deal

  Get this refurbished Lenovo 2018 11.6″ Touchscreen Chromebook with 4GB RAM and 32GB of storage while it's on sale for just $79.99 with free shipping.

  • BleepingComputer Deals
   
  • May 29, 2025
   
  • 02:11 PM
   
  •  0
• 
   
  Security, Google

  Threat actors abuse Google Apps Script in evasive phishing attacks

  Threat actors are abusing the trusted Google platform 'Google Apps Script' to host phishing pages, making them appear legitimate and eliminating the risk of them getting flagged by security tools.

  • Bill Toulas
   
  • May 29, 2025
   
  • 12:25 PM
   
  •  0
• 
   
  Security

  Apple Safari exposes users to fullscreen browser-in-the-middle attacks

  A weakness in Apple's Safari web browser allows threat actors to leverage the fullscreen browser-in-the-middle (BitM) technique to steal account credentials from unsuspecting users.

  • Bill Toulas
   
  • May 29, 2025
   
  • 12:06 PM
   
  •  1
• 
   
  Security

  US sanctions firm linked to cyber scams behind $200 million in losses

  The U.S. Treasury Department has sanctioned Funnull Technology, a Philippines-based company that supports hundreds of thousands of malicious websites behind cyber scams linked to over $200 million in losses for Americans.

  • Sergiu Gatlan
   
  • May 29, 2025
   
  • 11:42 AM
   
  •  0
• 
   
  Security

  Cybercriminals exploit AI hype to spread ransomware, malware

  Threat actors linked to lesser-known ransomware and malware projects now use AI tools as lures to infect unsuspecting victims with malicious payloads.

  • Bill Toulas
   
  • May 29, 2025
   
  • 10:25 AM
   
  •  0
• 
   
  Security

  Attackers are mapping your attack surface—are you?

  Attackers are mapping your infrastructure before you even realize what's exposed. Sprocket ASM flips the script — giving you the same recon capabilities they use, plus change detection and actionable insights to close gaps fast. See your attack surface the way hackers do and beat them to it.

  • Sprocket Security
   
  • May 29, 2025
   
  • 10:02 AM
   
  •  0
• 
   
  Security

  Victoria’s Secret takes down website after security incident

  Victoria's Secret, the fashion giant, has taken down its website and some store services because of an ongoing security incident

  • Sergiu Gatlan
   
  • May 29, 2025
   
  • 07:30 AM
   
  •  1
• 
   
  Deals

  Save 64% on a QuickBooks lifetime subscription in this deal

  QuickBooks normally charges you recurring fees to use their online suite, but you can get a lifetime download with a one-time payment for a limited time. Intuit QuickBooks Desktop Pro Plus 2024 for Windows is now $249.99 while supplies last (reg. $699).

  • BleepingComputer Deals
   
  • May 29, 2025
   
  • 07:17 AM
   
  •  0
• 
   
  Microsoft

  Microsoft: Windows 11 might fail to start after installing KB5058405

  Microsoft has confirmed that some Windows 11 systems might fail to start after installing the KB5058405 security update released during this month's Patch Tuesday.

  • Sergiu Gatlan
   
  • May 29, 2025
   
  • 05:59 AM
   
  •  0
• 
   
  Security

  Data broker LexisNexis discloses data breach affecting 364,000 people

  Data broker giant LexisNexis Risk Solutions has revealed that unknown attackers stole the personal information of over 364,000 individuals in a December breach.

  • Sergiu Gatlan
   
  • May 29, 2025
   
  • 04:28 AM
   
  •  0
• 
   
  Microsoft

  Windows 10 KB5058481 update brings seconds back to calendar flyout

  Microsoft has released the optional KB5058481 preview cumulative update for Windows 10 22H2 with seven changes, including restoring seconds to the time display in the calendar flyout for those who previously lost it.

  • Lawrence Abrams
   
  • May 28, 2025
   
  • 06:57 PM
   
  •  0
• 
   
  Microsoft

  Windows 11 KB5058499 update rolls out new Share and Click to Do features

  ​​Microsoft has released the KB5058499 preview cumulative update for Windows 11 24H2 with forty-eight new features or changes, with many gradually rolling out, such as the new Windows Share feature and tje Click to Do Preview.

  • Lawrence Abrams
   
  • May 28, 2025
   
  • 06:19 PM
   
  •  0
• 
   
  Security

  APT41 malware abuses Google Calendar for stealthy C2 communication

  The Chinese APT41 hacking group uses a new malware named 'ToughProgress' that abuses Google Calendar for command-and-control (C2) operations, hiding malicious activity behind a trusted cloud service.

  • Bill Toulas
   
  • May 28, 2025
   
  • 06:04 PM
   
  •  0
• 
   
  Security

  New PumaBot botnet brute forces SSH credentials to breach devices

  A newly discovered Go-based Linux botnet malware named PumaBot is brute-forcing SSH credentials on embedded IoT devices to deploy malicious payloads.

  • Bill Toulas
   
  • May 28, 2025
   
  • 03:59 PM
   
  •  0
• 
   
  Security

  Interlock ransomware gang deploys new NodeSnake RAT on universities

  The Interlock ransomware gang is deploying a previously undocumented remote access trojan (RAT) named NodeSnake against educational institutes for persistent access to corporate networks.

  • Bill Toulas
   
  • May 28, 2025
   
  • 02:14 PM
   
  •  0

• 1
 
• 2
 
• 3
 
• 4
 
• 5