Gamma AI Platform Abused in Phishing Chain to Spoof Microsoft SharePoint Logins

April 16, 2025

Threat actors are leveraging an artificial intelligence (AI) powered presentation platform named Gamma in phishing attacks to direct unsuspecting users to spoofed Microsoft login pages.
“Attackers weaponize Gamma, a relatively new AI-based presentation tool, to deliver a link to a fraudulent Microsoft SharePoint login portal,” Abnormal Security researchers Hinman Baron and Piotr Wojtyla said in

Source: Read More

Previous ArticleGoogle Blocked 5.1B Harmful Ads and Suspended 39.2M Advertiser Accounts in 2024

Next Article From Third-Party Vendors to U.S. Tariffs: The New Cyber Risks Facing Supply Chains

Highlights

CVE-2024-6914 – WSO2 SOAP Unauthorized Account Takeover Vulnerability

May 22, 2025

CVE ID : CVE-2024-6914

Published : May 22, 2025, 7:15 p.m. | 14 minutes ago

Description : An incorrect authorization vulnerability exists in multiple WSO2 products due to a business logic flaw in the account recovery-related SOAP admin service. A malicious actor can exploit this vulnerability to reset the password of any user account, leading to a complete account takeover, including accounts with elevated privileges.

This vulnerability is exploitable only through the account recovery SOAP admin services exposed via the “/services” context path in affected products. The impact may be reduced if access to these endpoints has been restricted based on the “Security Guidelines for Production Deployment” by disabling exposure to untrusted networks.

Severity: 9.8 | CRITICAL

Visit the link for more details, such as CVSS details, affected products, timeline, and more…

How To Prevent WordPress SQL Injection Attacks

Java never goes out of style: Celebrating 30 years of the language

OpenAI o3-pro available in the API, BrowserStack adds Playwright support for real iOS devices, and more – Daily News Digest

Creating The “Moving Highlight” Navigation Bar With JavaScript And CSS

Surface Pro 11 with Snapdragon X Elite drops to lowest price ever

With WH40K Boltgun and Dungeons of Hinterberg, this month’s Humble Choice lineup is stacked for less than $12

I’ve been loving the upgrade to my favorite mobile controller, and there’s even a version for large tablets

Copilot Vision just launched — and Microsoft already added new features

Master Data Management: The Key to Improved Analytics Reporting

Master Data Management: The Key to Improved Analytics Reporting

Salesforce Lead-to-Revenue Management

React Native 0.80 – React 19.1, JS API Changes, Freezing Legacy Arch and much more

Surface Pro 11 with Snapdragon X Elite drops to lowest price ever

Surface Pro 11 with Snapdragon X Elite drops to lowest price ever

With WH40K Boltgun and Dungeons of Hinterberg, this month’s Humble Choice lineup is stacked for less than $12

I’ve been loving the upgrade to my favorite mobile controller, and there’s even a version for large tablets

Gamma AI Platform Abused in Phishing Chain to Spoof Microsoft SharePoint Logins

Apache Tomcat Under Attack: Massive Brute-Force Campaign Targets Manager Interfaces

Warning: Discontinued Amazon Cloud Cam Has Vulnerability (CVE-2025-6031), Exposing Your Network

The Elder Scrolls 4: Oblivion Remastered PC system requirements and specs — Can your computer run this refined RPG classic?

Cisco Warns of High-Severity SSH Security Flaws in UCS IMC and NDFC Systems

CVE-2025-36525 – BIG-IP APM PingAccess Profile Request Termination Vulnerability

Flux Kontext

CVE-2024-6914 – WSO2 SOAP Unauthorized Account Takeover Vulnerability

CVE-2025-48949 – Navidrome SQL Injection Vulnerability

CVE-2023-49904 – Apache HTTP Server Remote Code Execution

CVE-2025-46345 – Auth0 Account Link Extension JWT Signature Verification Bypass

Gamma AI Platform Abused in Phishing Chain to Spoof Microsoft SharePoint Logins

Related Posts