AFP Under Cyberattack: News Delivery Disrupted, Investigation Underway
The French news agency AFP (Agence France-Presse) was hit by a cyberattack on Friday, September 27th, causing disruptions to some of its news delivery systems. Technical experts from AFP, in... The...
View ArticleXWorm Unveils Stealthier Techniques in Latest Malware Evolution
In a recent report from Netskope Threat Labs, the ever-evolving malware XWorm has demonstrated new, stealthy techniques designed to elude detection and compromise systems more effectively. First...
View ArticleCVE-2024-47070: Critical Flaw in authentik Identity Provider Allows...
A critical security vulnerability (CVE-2024-47070) has been discovered in the popular Identity Provider (IdP) and Single Sign-On (SSO) solution, authentik. Rated with a high CVSS score of 9.1, this...
View ArticleRoblox Cheaters Targeted: Skuld Stealer and Blank Grabber Malware Lurks in...
In a recent report by Imperva Threat Research, malicious actors have been found exploiting the Python Package Index (PyPI) to target players of the popular online game Roblox, specifically those... The...
View ArticleCVE-2024-9194: SQLi Flaw Discovered in Octopus Server, Urgent Patch Recommended
Octopus Deploy, a leading continuous delivery platform used by thousands of software teams worldwide, has released a critical security update to address a severe vulnerability (CVE-2024-9194) in its...
View ArticleStealthy Cyberattack Turns Visual Studio Code into a Remote Access Tool
Cyble Research and Intelligence Labs (CRIL) has uncovered a new and highly sophisticated cyberattack that leverages Visual Studio Code (VSCode) to establish unauthorized remote access to victim...
View ArticleCVE-2024-8940 (CVSS 10): Critical Flaw in Scriptcase Low-Code Platform Leaves...
Developers using the popular low-code platform Scriptcase are urged to update their software immediately after discovering three critical vulnerabilities that could expose their applications to serious...
View ArticleMicroarchitectural Control-flow Integrity (μCFI): Thwarting Timing &...
In a study, researchers from COMSEC, the computer security group at ETH Zurich’s Department of Information Technology and Electrical Engineering (D-ITET), have developed and formally verified...
View ArticlePoC Exploit Releases for Zimbra RCE Flaw CVE-2024-45519: Mass Exploitation...
Zimbra, one of the most widely used email and collaboration platforms globally, has recently been identified as vulnerable to a critical security flaw that could allow attackers to take full... The...
View ArticleMicrosoft Defender Introduces VPN to Secure Public Wi-Fi Connections
In an age where connectivity is paramount, public Wi-Fi networks have become indispensable for staying connected on the go. However, these networks often lack robust security measures, making them...
View ArticleCybersecurity Threats Skyrocket in Hong Kong: Fraud, Phishing, and Malware...
In a recent revelation, the number of cyber threats in Hong Kong has surged dramatically, with fraud, phishing, and malware attacks becoming increasingly prevalent. A recent study by antivirus...
View ArticleEvil Corp Cybercriminals Exposed: UK Sanctions 16 Individuals Linked to...
In a significant move to combat global cybercrime, the United Kingdom has sanctioned 16 individuals associated with Evil Corp, once considered the world’s most notorious cybercrime group. The National...
View ArticleMicrosoft Introduces New Publish API to Enhance Security of Edge Extensions
In a significant stride toward bolstering cybersecurity, Microsoft has unveiled a new Publish API for Microsoft Edge extensions. Part of the Microsoft Secure Future Initiative, this update is designed...
View ArticleVulnerability in Vesta Control Panel Exposes Admin Accounts
A recent analysis by Adrian Tiron, a Cloud Application Security Consultant at Fortbridge, has uncovered a critical vulnerability in the Vesta Control Panel—a popular web-based interface for managing...
View ArticleCVE-2024-29824: Critical Vulnerability in Ivanti Endpoint Manager Actively...
The Cybersecurity and Infrastructure Security Agency (CISA) has issued an urgent alert regarding the active exploitation of a critical vulnerability in Ivanti Endpoint Manager (EPM), a widely used...
View ArticleEuropol Leads Global Crackdown on LockBit Ransomware Syndicate
In a landmark operation against cybercrime, Europol, in collaboration with law enforcement agencies from 12 countries and Eurojust, has executed a series of coordinated actions targeting the infamous...
View ArticleDrayTek Patched Multi Flaws in Routers, Including CVE-2024-41592 (CVSS 10.0)
Experts from Forescout have uncovered 14 vulnerabilities in DrayTek routers, potentially allowing malicious actors to gain full access to these devices and use them as entry points into the networks......
View Article21-Year-Old Hacker Pleads Guilty in $37 Million Cryptocurrency Theft
A 21-year-old Indiana man, Evan Frederick Light, has pleaded guilty to orchestrating a sophisticated cyber intrusion that resulted in the theft of over $37 million in cryptocurrency from nearly 600......
View ArticleZimbra Email Servers Under Attack: CISA Flags CVE-2024-45519 as Actively...
The U.S. Cybersecurity and Infrastructure Security Agency (CISA) has added a critical vulnerability in Zimbra email servers, CVE-2024-45519, to its Known Exploited Vulnerabilities (KEV) catalog. This...
View ArticleCISA Warns of Critical Flaws in TEM Opera Plus FM Transmitter Products Used...
The U.S. Cybersecurity and Infrastructure Security Agency (CISA) has issued an advisory regarding two critical vulnerabilities in the TEM Opera Plus FM Family Transmitter products, widely used in...
View Article