From the near-demise of MITRE’s CVE program to a report exhibiting that AI outperforms elite purple teamers in spearphishing, April 2025 was one other whirlwind month in cybersecurity
29 Apr 2025
The previous month has seen no scarcity of impactful and disconcerting cybersecurity information, together with an eleventh-hour turnaround that averted the shutdown of MITRE’s CVE program to a report exhibiting that AI outperforms purple staff consultants in spearphishing. On this version of the month-to-month roundup, ESET Chief Safety Evangelist Tony Anscombe appears at:
- how MITRE’s Frequent Vulnerabilities and Exposures (CVE) got here near shutting down as a consequence of an absence of funding – and what questions this challenge raises
- some takeaways from a survey in line with which 30% of charities within the UK reported having skilled a cybersecurity breach or assault within the final 12 months
- AI outperforming elite purple teamers in spearphishing, in line with a report by Hoxhunt
- what Tony’s dialog with a tour information in India revealed about efficient methods of combatting deepfake-fueled extortion
Do not forget to take a look at the March 2025 version of Tony’s month-to-month safety information roundup for extra insights.
