Espresso

Sign in Subscribe

Cybersecurity

Lazarus Group Steals $1.4B from Bybit in 2025’s Largest Crypto Heist, Sparking Global Ripple Effects

Lazarus Group Steals $1.4B from Bybit in 2025’s Largest Crypto Heist, Sparking Global Ripple Effects

TL;DR * PS5 BootROM Keys Leaked, Enabling Piracy and Emulation Across All Console Models * Lazarus Group Stole $1.5B from Bybit in February 2025, Marking Largest Crypto Heist of the Year * Condé Nast Data Breach Exposes 2.3M User Records via Social Engineering Attack Vector * HDF5 Library Vulnerability (CVE-2025-2915) Enables

Former Cybersecurity Pros Plead Guilty to $1.2M Ransomware Attack; Cl0p Breach Hits Korean Air, GnuPG Patch Fixes Critical Flaw

Former Cybersecurity Pros Plead Guilty to $1.2M Ransomware Attack; Cl0p Breach Hits Korean Air, GnuPG Patch Fixes Critical Flaw

TL;DR * CVE-2025-43529 and CVE-2025-14174 exploited in iOS WebKit attacks; Apple issues emergency patch for Safari, prompting Google Threat Analysis Group collaboration * ALPHV/BlackCat ransomware group extorts $1.2M in Bitcoin from U.S. medical device firms; two former cybersecurity professionals plead guilty, sentencing set for March 12, 2026 * Cl0p

MongoBleed Exploit Hits 100K MongoDB Instances; Rainbow Six Siege Breach Costs $13.3M as OpenAI Creates Senior Preparedness Role

MongoBleed Exploit Hits 100K MongoDB Instances; Rainbow Six Siege Breach Costs $13.3M as OpenAI Creates Senior Preparedness Role

TL;DR * MongoBleed (CVE-2025-14847) exploit actively targets 87,000+ exposed MongoDB instances, enabling unauthenticated remote extraction of sensitive credentials and heap memory fragments via zlib compression flaw * Ubisoft Rainbow Six Siege servers compromised in coordinated attack, resulting in $13.3M in-game credit theft, mass account bans, and suspected source code

Microsoft Patches BPF Race Flaw in WSL2 and Azure Linux, Deploys CSAF/VEX Attestations to Advance Kernel Security

Microsoft Patches BPF Race Flaw in WSL2 and Azure Linux, Deploys CSAF/VEX Attestations to Advance Kernel Security

TL;DR * CVE-2025-39863 use-after-free in Broadcom Wi-Fi driver (brcmfmac) exploited via timer-race, affects Azure Linux and AKS nodes; patch deployed upstream * Microsoft patches CVE-2025-39886 BPF allocation flaw in WSL2 and CBL-Mariner kernels, publishes CSAF/VEX attestations for Azure Linux * F2FS remount flaw (CVE-2023-53447) causes kernel crashes during concurrent file operations;

React RCE CVE-2025-55182 Exploited by Botnets, BlackForce MFA Kit Emerges, Azure Linux Patched, AI Pen-Tester Artemis Rises

React RCE CVE-2025-55182 Exploited by Botnets, BlackForce MFA Kit Emerges, Azure Linux Patched, AI Pen-Tester Artemis Rises

TL;DR * CVE-2025-55182 Patched in React Server Components After 137,200 IPs Exposed to RCE via Flight Protocol * BlackForce Phishing Kit Sold on Telegram for €200–300 Uses Legitimate React Code to Bypass MFA Detection * Microsoft Azure Linux Affected by CVE-2025-49177 XFixes Extension Vulnerability Enabling Remote Code Execution * AI Agent

Apache, urllib3, Chrome Patch Critical Vulnerabilities: What You Need to Know

Apache, urllib3, Chrome Patch Critical Vulnerabilities: What You Need to Know

TL;DR * Apache HTTP Server patches critical CVE-2025-55753 integer overflow in mod_md, preventing resource exhaustion and ACME renewal denial-of-service * CVE-2025-66471 in urllib3 allows denial-of-service via compressed response bombs; fix released in v2.6.0 for Python web frameworks and cloud agents * Critical RCE vulnerability CVE-2025-58098 in Apache HTTP Server&