LockBit ransomware gang hacked, victim negotiations exposed
https://www.bleepingcomputer.com/news/security/lockbit-ransomware-gang-hacked-victim-negotiations-exposed/
VC giant Insight Partners confirms investor data stolen in breach
https://www.bleepingcomputer.com/news/security/vc-giant-insight-partners-confirms-investor-data-stolen-in-breach/
MobaXterm free Xserver and tabbed SSH client for Windows
https://mobaxterm.mobatek.net/
SonicWall urges admins to patch VPN flaw exploited in attacks
https://www.bleepingcomputer.com/news/security/sonicwall-urges-admins-to-patch-vpn-flaw-exploited-in-attacks/
Blog Bypass AMSI in 2025 - r-tec Cyber Security
https://www.r-tec.net/r-tec-blog-bypass-amsi-in-2025.html
GitHub - antiwar3/py: 飘云ark(pyark)
https://github.com/antiwar3/py
VMware perpetual license holders receive cease-and-desist letters from Broadcom - Ars Technica
https://arstechnica.com/gadgets/2025/05/broadcom-sends-cease-and-desist-letters-to-subscription-less-vmware-users/
GitHub - anmolksachan/wayBackLister: A New Approach to Directory Bruteforce with WaybackLister v1.0
https://github.com/anmolksachan/wayBackLister
Kickidler employee monitoring software abused in ransomware attacks
https://www.bleepingcomputer.com/news/security/kickidler-employee-monitoring-software-abused-in-ransomware-attacks/
Agenda Ransomware Group Adds SmokeLoader and NETXLOADER to Their Arsenal | Trend Micro (US)
https://www.trendmicro.com/en_us/research/25/e/agenda-ransomware-group-adds-smokeloader-and-netxloader-to-their.html
Malicious PyPi package hides RAT malware, targets Discord devs since 2022
https://www.bleepingcomputer.com/news/security/malicious-pypi-package-hides-rat-malware-targets-discord-devs-since-2022/
SonicWall Patches 3 Flaws in SMA 100 Devices Allowing Attackers to Run Code as Root
https://thehackernews.com/2025/05/sonicwall-patches-3-flaws-in-sma-100.html
Cisco Patches CVE-2025-20188 (10.0 CVSS) in IOS XE That Enables Root Exploits via JWT
https://thehackernews.com/2025/05/cisco-patches-cve-2025-20188-100-cvss.html
Ransomware Attackers Leveraged Privilege Escalation Zero-day | Symantec Enterprise Blogs
https://www.security.com/threat-intelligence/play-ransomware-zero-day
Qilin Ransomware Ranked Highest in April 2025 with Over 45 Data Leak Disclosures
https://thehackernews.com/2025/05/qilin-leads-april-2025-ransomware-spike.html
How I ruined my vacation by reverse engineering WSC - es3n1n's Blog
https://blog.es3n1n.eu/posts/how-i-ruined-my-vacation/
Supply chain attack hits npm package with 45,000 weekly downloads
https://www.bleepingcomputer.com/news/security/supply-chain-attack-hits-npm-package-with-45-000-weekly-downloads/
GitHub - es3n1n/defendnot: An even funnier way to disable windows defender. (through WSC api)
https://github.com/es3n1n/defendnot
Russian Hackers Using ClickFix Fake CAPTCHA to Deploy New LOSTKEYS Malware
https://thehackernews.com/2025/05/russian-hackers-using-clickfix-fake.html
38,000+ FreeDrain Subdomains Found Exploiting SEO to Steal Crypto Wallet Seed Phrases
https://thehackernews.com/2025/05/38000-freedrain-subdomains-found.html
Education giant Pearson hit by cyberattack exposing customer data
https://www.bleepingcomputer.com/news/security/education-giant-pearson-hit-by-cyberattack-exposing-customer-data/