AWS Addresses Security Flaws in WorkSpaces, AppStream 2.0, and DCV
AWS has issued a critical security advisory for vulnerabilities in certain versions of its clients for Amazon WorkSpaces, AppStream 2.0, and NICE DCV, identified as CVE-2025-0500 and CVE-2025-0501. These vulnerabilities [...]
New Tool Launched to Detect Hacking Content on Telegram
A Russian developer, supported by the National Technology Initiative, has launched the Apparatus Sapiens AI module to scan Telegram chats and groups, detecting malicious content swiftly to bolster RuNet security [...]
‘Sneaky 2FA’ Phishing Kit Bypasses Microsoft 365 Authentication
Researchers have discovered "Sneaky 2FA," a phishing kit targeting Microsoft 365 accounts to steal credentials and bypass 2FA codes since October 2024. 'Sneaky 2FA' Phishing Kit The "Sneaky 2FA" phishing [...]
Exploit Enables NTLMv1 Despite Active Directory Limits
Researchers discovered a misconfiguration in on-premise applications that bypasses Active Directory Group Policy meant to disable NTLMv1, effectively rendering it ineffective, according to Silverfort's Dor Segal. NTLM, still widely used [...]
Hackers Exploit YouTube Links and Microsoft 365 Themes to Steal Logins
Cybercriminals are running advanced phishing attacks on Microsoft 365 users using fake URLs that closely resemble real O365 domains, tricking victims into trusting them. All about the attack The attackers [...]
FHN 
