Sweden scrambles after ransomware attack puts sensitive worker data at risk

August 30, 2025

Municipal government organisations across Sweden have found themselves impacted after a ransomware attack at a third-party software service supplier.

Read more in my article on the Hot for Security blog.

Source: Read More

Previous ArticleResearchers Warn of Sitecore Exploit Chain Linking Cache Poisoning and Remote Code Execution

Next Article Not Larger Telecommunications, But Smaller Dutch ISPs Also Targeted in Broader Salt Typhoon Campaign

Highlights

CVE-2025-34090 – “Google Chrome AppBound Cookie Encryption Bypass”

July 2, 2025

CVE ID : CVE-2025-34090

Published : July 2, 2025, 8:15 p.m. | 1 hour, 45 minutes ago

Description : A security bypass vulnerability exists in Google Chrome AppBound cookie encryption mechanism due to insufficient validation of COM server paths during inter-process communication. A local low-privileged attacker can hijack the COM class identifier (CLSID) registration used by Chrome’s elevation service and point it to a non-existent or malicious binary. When this hijack occurs, Chrome silently falls back to the legacy cookie encryption mechanism (protected only by user-DPAPI), thereby enabling cookie decryption by any user-context malware without SYSTEM-level access. This flaw bypasses the protections intended by the AppBound encryption design and allows cookie theft from Chromium-based browsers.

Confirmed in Google Chrome with AppBound Encryption enabled. Other Chromium-based browsers may be affected if they implement similar COM-based encryption mechanisms.

Severity: 0.0 | NA

Visit the link for more details, such as CVSS details, affected products, timeline, and more…

The state of DevOps and AI: Not just hype

A Breeze Of Inspiration In September (2025 Wallpapers Edition)

10 Top Generative AI Development Companies for Enterprise Node.js Projects

Prompting Is A Design Act: How To Brief, Guide And Iterate With AI

Look out, Meta Ray-Bans! These AI glasses just raised over $1M in pre-orders in 3 days

Samsung ‘Galaxy Glasses’ powered by Android XR are reportedly on track to be unveiled this month

The M4 iPad Pro is discounted $100 as a last-minute Labor Day deal

Distribution Release: Linux From Scratch 12.4

Enhanced Queue Job Control with Laravel’s ThrottlesExceptions failWhen() Method

Enhanced Queue Job Control with Laravel’s ThrottlesExceptions failWhen() Method

August report 2025

Fake News Detection using Python Machine Learning (ML)

Installing Proxmox on a Raspberry Pi to run Virtual Machines on it

Installing Proxmox on a Raspberry Pi to run Virtual Machines on it

Download Transcribe! for Windows

Microsoft Fixes CertificateServicesClient (CertEnroll) Error in Windows 11

Sweden scrambles after ransomware attack puts sensitive worker data at risk

Enhanced Queue Job Control with Laravel’s ThrottlesExceptions failWhen() Method

Scaling Up Reinforcement Learning for Traffic Smoothing: A 100-AV Highway Deployment

ChatGPT May Be Using Google Search Now, Here’s What That Means for Your Website

Star Wars Battlefront 2 player counts are blowing up Steam charts again — It’s thanks to a deal so good it must be from a galaxy far, far away

AIOps in Action: Creating Proactive, Self-Healing IT Environments🛠️

Apple Zero-Click Flaw in Messages Exploited to Spy on Journalists Using Paragon Spyware

CVE-2025-34090 – “Google Chrome AppBound Cookie Encryption Bypass”

CyberArk and HashiCorp Flaws Enable Remote Vault Takeover Without Credentials

10 Reasons to Choose Full-Stack Techies for Your Next React.js Development Project

Want to protect your phone’s battery? Stop doing this one simple thing

Sweden scrambles after ransomware attack puts sensitive worker data at risk

Related Posts