Critical WordPress Anti-Spam Plugin Flaws Expose 200,000+ Sites to Remote Attacks

Critical WordPress Anti-Spam Plugin Flaws Expose 200,000+ Sites to Remote Attacks

Two critical security flaws impacting the Spam protection, Anti-Spam, and FireWall plugin WordPress could...

November 27th, 2024

Continue Reading

New Qilin ransomware encryptor features stronger encryption, evasion

New Qilin ransomware encryptor features stronger encryption, evasion

A new Rust-based version of the Qilin (Agenda) ransomware strain, dubbed 'Qilin.B,' has been spotted...

October 24th, 2024

Continue Reading

Free Sniper Dz Phishing Tools Fuel 140,000+ Cyber Attacks Targeting User Credentials

Free Sniper Dz Phishing Tools Fuel 140,000+ Cyber Attacks Targeting User Credentials

More than 140,000 phishing websites have been found linked to a phishing-as-a-service (PhaaS) platform...

October 2nd, 2024

Continue Reading

Hackers deploy AI-written malware in targeted attacks

Hackers deploy AI-written malware in targeted attacks

Suspected cases AI-created malware have been spotted in real attacks. Earlier this year, cybersecurity...

September 25th, 2024

Continue Reading

Patch Issued for Critical VMware vCenter Flaw Allowing Remote Code Execution

Patch Issued for Critical VMware vCenter Flaw Allowing Remote Code Execution

The vulnerability, tracked as CVE-2024-38812 (CVSS score: 9.8), has been described as a heap-overflow...

September 18th, 2024

Continue Reading

SonicWall SSLVPN access control flaw is now exploited in attacks

SonicWall SSLVPN access control flaw is now exploited in attacks

CVE-2024-40766 is a critical (CVSS v3 score: 9.3) access control flaw impacting SonicWall Firewall Gen...

September 9th, 2024

Continue Reading

Cisco Fixes Two Critical Flaws in Smart Licensing Utility to Prevent Remote Attacks

Cisco Fixes Two Critical Flaws in Smart Licensing Utility to Prevent Remote Attacks

The flaws, which were discovered during internal security testing, also do not affect Smart Software...

September 5th, 2024

Continue Reading

Malware exploits 5-year-old zero-day to infect end-of-life IP cameras

Malware exploits 5-year-old zero-day to infect end-of-life IP cameras

The flaw, discovered by Akamai's Aline Eliovich, is tracked as CVE-2024-7029 and is a high-severity (CVSS...

August 30th, 2024

Continue Reading

Critical Flaw in WordPress LiteSpeed Cache Plugin Allows Hackers Admin Access

Critical Flaw in WordPress LiteSpeed Cache Plugin Allows Hackers Admin Access

Cybersecurity researchers have disclosed a critical security flaw in the LiteSpeed Cache plugin for...

August 22nd, 2024

Continue Reading

Zero-click Windows TCP/IP RCE impacts all systems with IPv6 enabled, patch now

Zero-click Windows TCP/IP RCE impacts all systems with IPv6 enabled, patch now

Microsoft warned customers this Tuesday to patch a critical TCP/IP remote code execution (RCE) vulnerability...

August 16th, 2024

Continue Reading

FreeBSD Releases Urgent Patch for High-Severity OpenSSH Vulnerability

FreeBSD Releases Urgent Patch for High-Severity OpenSSH Vulnerability

The vulnerability, tracked as CVE-2024-7589, carries a CVSS score of 7.4 out of a maximum of 10.0, indicating...

August 13th, 2024

Continue Reading

Google fixes Android kernel zero-day exploited in targeted attacks

Google fixes Android kernel zero-day exploited in targeted attacks

The zero-day, tracked as CVE-2024-36971, is a use after free (UAF) weakness in the Linux kernel's network...

August 6th, 2024

Continue Reading

WhatsApp for Windows lets Python, PHP scripts execute with no warning

WhatsApp for Windows lets Python, PHP scripts execute with no warning

A security issue in the latest version of WhatsApp for Windows allows sending Python and PHP attachments...

July 30th, 2024

Continue Reading

Stargazer Goblin’ Creates 3,000 Fake GitHub Accounts for Malware Spread

Stargazer Goblin’ Creates 3,000 Fake GitHub Accounts for Malware Spread

A threat actor known as Stargazer Goblin has set up a network of inauthentic GitHub accounts to fuel...

July 29th, 2024

Continue Reading

CrowdStrike Explains Friday Incident Crashing Millions of Windows Devices

CrowdStrike Explains Friday Incident Crashing Millions of Windows Devices

Cybersecurity firm CrowdStrike on Wednesday blamed an issue in its validation system for causing millions...

July 24th, 2024

Continue Reading

Faulty CrowdStrike Update Crashes Windows Systems, Impacting Businesses Worldwide

Faulty CrowdStrike Update Crashes Windows Systems, Impacting Businesses Worldwide

Businesses across the world have been hit by widespread disruptions to their Windows workstations stemming...

July 19th, 2024

Continue Reading

SolarWinds Patches 11 Critical Flaws in Access Rights Manager Software

SolarWinds Patches 11 Critical Flaws in Access Rights Manager Software

SolarWinds has addressed a set of critical security flaws impacting its Access Rights Manager (ARM)...

July 19th, 2024

Continue Reading

GitHub Token Leak Exposes Python’s Core Repositories to Potential Attacks

GitHub Token Leak Exposes Python’s Core Repositories to Potential Attacks

JFrog, which found the GitHub Personal Access Token, said the secret was leaked in a public Docker container...

July 16th, 2024

Continue Reading

Palo Alto Networks Patches Critical Flaw in Expedition Migration Tool

Palo Alto Networks Patches Critical Flaw in Expedition Migration Tool

Cataloged as CVE-2024-5910 (CVSS score: 9.3), the vulnerability has been described as a case of missing...

July 12th, 2024

Continue Reading

New OpenSSH Vulnerability Discovered: Potential Remote Code Execution Risk

New OpenSSH Vulnerability Discovered: Potential Remote Code Execution Risk

Select versions of the OpenSSH secure networking suite are susceptible to a new vulnerability that can...

July 10th, 2024

Continue Reading

Hackers Exploiting Jenkins Script Console for Cryptocurrency Mining Attacks

Hackers Exploiting Jenkins Script Console for Cryptocurrency Mining Attacks

Jenkins, a popular continuous integration and continuous delivery (CI/CD) platform, features a Groovy...

July 10th, 2024

Continue Reading

Google Address Critical Flaws in Android

Google Address Critical Flaws in Android

Google, a leading technology giant, has once again demonstrated its commitment to user security by releasing...

July 11th, 2023

Continue Reading

Fortigate still unpatched for RCE Vulnerability

Fortigate still unpatched for RCE Vulnerability

No less than 330,000 FortiGate firewalls are still unpatched and vulnerable to CVE-2023-27997, a critical...

July 5th, 2023

Continue Reading

The Surge of 8Base Ransomware Group

The Surge of 8Base Ransomware Group

Ransomware attacks have become increasingly sophisticated and damaging, causing significant financial...

June 29th, 2023

Continue Reading

Microsoft Release Optional Fix for Vulnerability

Microsoft Release Optional Fix for Vulnerability

In a recent update, Microsoft has released an optional fix to address a kernel information disclosure...

June 15th, 2023

Continue Reading

Apple Fixes Bug Allowing Bypass of SIP Root Restrictions

Apple Fixes Bug Allowing Bypass of SIP Root Restrictions

In recent findings, researchers from Microsoft have identified a critical vulnerability, labeled CVE-2023-32369...

June 1st, 2023

Continue Reading

Google launches bug bounty program

Google launches bug bounty program

Google has recently unveiled the Mobile Vulnerability Rewards Program (Mobile VRP), a new bug bounty...

May 24th, 2023

Continue Reading

‘Security Incident’ in Twitter Circle

‘Security Incident’ in Twitter Circle

Twitter introduce Twitter Circle in August 2022. This allows users to send tweets to a selected set of...

May 9th, 2023

Continue Reading

ChatGPT is Back in Italy after ban

ChatGPT is Back in Italy after ban

Following the company's compliance with regulatory requirements, OpenAI announced that access to its...

May 2nd, 2023

Continue Reading

VMware patches critical product vulnerabilities

VMware patches critical product vulnerabilities

In order to address significant security flaws in the VMware Aria Operations for Logs (previously vRealize...

April 25th, 2023

Continue Reading

Emergency Update from Google Chrome

Emergency Update from Google Chrome

You must immediately check your browser after Google issued an urgent Chrome warning! Every Chrome user...

April 18th, 2023

Continue Reading

Apple updates fix security vulnerabilities

Apple updates fix security vulnerabilities

A significant iOS security update from Apple has been released to address two zero-day flaws that are...

April 11th, 2023

Continue Reading

3CX desktop app faces supply chain attack

3CX desktop app faces supply chain attack

According to experts from various cybersecurity firms, a threat actor is currently actively using a compromised...

April 4th, 2023

Continue Reading

Twitter takes down leaked source code

Twitter takes down leaked source code

Apparently, the source code for Twitter was posted online. According to the lawsuit, the business took...

March 28th, 2023

Continue Reading

Ferrari Reveals Cyber Incident

Ferrari Reveals Cyber Incident

Following a ransom demand received after attackers obtained access to certain of the company's IT systems,...

March 21st, 2023

Continue Reading

POC released for critical Microsoft Word bug

POC released for critical Microsoft Word bug

Security researcher Joshua Drake has found an exploit in Microsoft Word and published a proof-of-concept...

March 14th, 2023

Continue Reading

Chinese hackers adopt a new customized backdoor

Chinese hackers adopt a new customized backdoor

As part of an ongoing social engineering campaign that started in January 2023, the China-aligned Mustang...

March 7th, 2023

Continue Reading

Fortinet fixes vulnerabilities in FortiNAC and FortiWeb

Fortinet fixes vulnerabilities in FortiNAC and FortiWeb

FortiNAC and FortiWeb products were affected by two severe issues, which led Footinet to post 40 security...

February 28th, 2023

Continue Reading

GoDaddy Discloses Multi-Year Security Breach

GoDaddy Discloses Multi-Year Security Breach

GoDaddy has discovered a significant, multi-year security flaw that gave hackers access to the company's...

February 20th, 2023

Continue Reading

Apple releases fix WebKit zero-day vulnerability

Apple releases fix WebKit zero-day vulnerability

Apple on 13th February 2023, released a fix for zero-day vulnerability in iPads, Macs and iPhones. The...

February 14th, 2023

Continue Reading

Broken Authentication vulnerability in Jira Service Management

Broken Authentication vulnerability in Jira Service Management

Jira Service Management Server and Data Center had serious security flaws that have been fixed by Atlassian....

February 7th, 2023

Continue Reading

Microsoft advises administrators to patch Exchange servers

Microsoft advises administrators to patch Exchange servers

Microsoft advises users to maintain their Exchange servers' security updates as well as take precautions...

January 31st, 2023

Continue Reading

GoTo Suffers a Data Breach

GoTo Suffers a Data Breach

Owner of LastPass, GoTo confirms that backups belonging to customers were stolen by hackers. The organization,...

January 26th, 2023

Continue Reading

Thousands of Norton LifeLock customer accounts breached

Thousands of Norton LifeLock customer accounts breached

Thousands NortonLifeLock customer accounts have been compromised. The parent firm of Norton LifeLock,...

January 19th, 2023

Continue Reading

Toyota reports a data breach

Toyota reports a data breach

A widespread cyberattack on Toyota has revealed several customers' private information. Toyota confirmed...

January 10th, 2023

Continue Reading

Twitter database leaks with 235 Million records

Twitter database leaks with 235 Million records

On a well-known hacker site, a data dump containing the email addresses of 235 million Twitter users...

January 5th, 2023

Continue Reading

Facebook will pay $725 million to resolve the Cambridge Analytica data leak lawsuit

Facebook will pay $725 million to resolve the Cambridge Analytica data leak lawsuit

Facebook's parent company, Meta, has agreed to pay £600 million to resolve a lawsuit involving a data...

December 29th, 2022

Continue Reading

Microsoft fixes 2 zero-days on December 2022 Patch Tuesday

Microsoft fixes 2 zero-days on December 2022 Patch Tuesday

On 13th December 2022 was the December Patch Tuesday, and 2 zero-day vulnerabilities and 49 flaws were...

December 14th, 2022

Continue Reading

Flaws in Cisco Secure Email Gateway

Flaws in Cisco Secure Email Gateway

Cisco Systems Inc. has  issued a bug report on alerting the public about a flaw in the Sophos and McAfee...

December 6th, 2022

Continue Reading

Google releases an urgent Chrome upgrade

Google releases an urgent Chrome upgrade

In order to patch the eight zero-day vulnerabilities in its Chrome web browser, Google released software...

November 29th, 2022

Continue Reading

Active Exploitations in Cisco AnyConnect VPN Vulnerabilities

Active Exploitations in Cisco AnyConnect VPN Vulnerabilities

Threat actors are reportedly using the Cisco AnyConnect Secure Mobility Client for Windows' vulnerabilities,...

November 24th, 2022

Continue Reading

Multiple vulnerabilities in Fortinet products

Multiple vulnerabilities in Fortinet products

Security researchers at Horizon3 reported on 13th October 2022, that the critical vulnerability, designated...

November 15th, 2022

Continue Reading

Vulnerabilities in Abode Systems home security kit

Vulnerabilities in Abode Systems home security kit

The iota All-In-One Security Kit from Abode Systems Inc. was found to have numerous vulnerabilities....

November 3rd, 2022

Continue Reading

vm2 Sandbox Vulnerability allows RCE

vm2 Sandbox Vulnerability allows RCE

Recently, it was discovered that VM2, a widely used JavaScript sandbox library, contained the "Sandbreak"...

October 18th, 2022

Continue Reading

Zero-Day RCE Vulnerability in Sophos Firewall

Zero-Day RCE Vulnerability in Sophos Firewall

Sophos Group plc the British based security software and hardware company released a security advisory...

October 4th, 2022

Continue Reading

Apple Vulnerabilities added to CISA Catalog

Apple Vulnerabilities added to CISA Catalog

US Cybersecurity and Infrastructure Security Agency (CISA) released an advisory a security update of...

September 27th, 2022

Continue Reading

VMware Patches Privilege Escalation affecting VMware Tools

VMware Patches Privilege Escalation affecting VMware Tools

VMware published a security advisory addressing an important-severity vulnerability on August 23, 2022....

September 13th, 2022

Continue Reading

Google Patch Sixth Zero-day  

Google Patch Sixth Zero-day  

Google issued a critical security update for Google Chrome version 105.0.5195.102 for Windows, Mac, and...

September 8th, 2022

Continue Reading

Multiple Vulnerabilities in GitLab CE and EE are Fixed by GitLab

Multiple Vulnerabilities in GitLab CE and EE are Fixed by GitLab

GitLab published a security advisory on August 30, 2022, to remedy a critical security flaw that has...

September 6th, 2022

Continue Reading

Critical Vulnerability in Realtek Devices Affects Millions of Devices

Critical Vulnerability in Realtek Devices Affects Millions of Devices

A critical vulnerability tracked as CVE-2022-27255 was reported to be affecting the network devices of...

August 29th, 2022

Continue Reading

Apple releases fix zero-day vulnerabilities used in attacks

Apple releases fix zero-day vulnerabilities used in attacks

On 18th August 2022 Apple Inc. released a security update for a zero-day vulnerability exploited in Safari...

August 26th, 2022

Continue Reading

Microsoft August 2022 Patch Tuesday

Microsoft August 2022 Patch Tuesday

Microsoft August 2022 Patch Tuesday (9th August 2022) released patches for 2 zero-day vulnerabilities...

August 10th, 2022

Continue Reading

Django release patches for SQL Injection Vulnerability

Django release patches for SQL Injection Vulnerability

A security advisory was released by Django project on a high severity SQL (structured query language...

August 2nd, 2022

Continue Reading

VMware vCenter Server updates address a privilege escalation vulnerability (CVE-2021-22048)

VMware vCenter Server updates address a privilege escalation vulnerability (CVE-2021-22048)

VMware finally released patch after eight months of disclosing the high severity vulnerability in VMware...

August 1st, 2022

Continue Reading

CISA urges users to update necessary patches in Cisco Products

CISA urges users to update necessary patches in Cisco Products

On 22nd July 2022, the US Cybersecurity and Infrastructure Security Agency (CISA) released an advisory...

July 25th, 2022

Continue Reading

Critical Vulnerability in Confluence Server and Data center

Critical Vulnerability in Confluence Server and Data center

Atlassian disclosed a critical vulnerability tracked as CVE-2022-26134 on 2nd June 2022. This is a Critical...

July 22nd, 2022

Continue Reading

Google Patches Zero – day Vulnerability in Chrome

Google Patches Zero – day Vulnerability in Chrome

Google on last Monday 4th July 2022 released an emergency chrome update to fix a high severity zero –...

July 11th, 2022

Continue Reading

Amazon has Fixed a High Severity Vulnerability in Amazon Photos Android App

Amazon has Fixed a High Severity Vulnerability in Amazon Photos Android App

On 28th June 2022, Checkmarx has reported that Amazon Inc’s Amazon Photos Android app has a high-severity...

July 5th, 2022

Continue Reading

CISA urges organizations to update Firefox, Firefox ESR, and Thunderbird

CISA urges organizations to update Firefox, Firefox ESR, and Thunderbird

On 28th June 2022, The Mozilla Foundation has released patch to fix multiple vulnerabilities in Firefox,...

July 4th, 2022

Continue Reading

Ransomware Exploiting Mitel VOIP Zero-Day

Ransomware Exploiting Mitel VOIP Zero-Day

On June 23rd 2022 Crowdstrike released a report mentioning about a zero-day exploit tracked as CVE-2022-29499...

June 27th, 2022

Continue Reading

Adobe patched 46 Security Flaws in a Wide Range of Enterprise-facing Software Products

Adobe patched 46 Security Flaws in a Wide Range of Enterprise-facing Software Products

On Patch Tuesday release for June, Adobe released multiple security advisories to address 46 vulnerabilities...

June 20th, 2022

Continue Reading

Massive DDoS attack mitigated

Massive DDoS attack mitigated

Internet infrastructure organization Cloudflare stated that they mitigated a record breaking 26 million...

June 16th, 2022

Continue Reading

Apple blocks many Applications from defrauding Users

Apple blocks many Applications from defrauding Users

It has been stated by Apple Inc that over the course of last week that more than 343,000 iOS apps were...

June 7th, 2022

Continue Reading

Follina-A severe Zero-Day Code Execution Vulnerability

Follina-A severe Zero-Day Code Execution Vulnerability

May of 2022, Microsoft disclosed a remote code execution (RCE) vulnerability in the Microsoft Support...

June 2nd, 2022

Continue Reading

Critical bugs in Android apps from major Mobile providers

Critical bugs in Android apps from major Mobile providers

Security researchers at Microsoft have detected high severity vulnerabilities in a framework used by...

June 1st, 2022

Continue Reading

Verizon suffers Ransomware Attack

Verizon suffers Ransomware Attack

A database was stolen from Verizon was stolen by an attacker, that includes full name, email address,...

May 30th, 2022

Continue Reading

A Malware through documents

A Malware through documents

According to threat analysts it has been found a recent malware circulation campaign using PDF attachments...

May 23rd, 2022

Continue Reading

Eternity Malware-as-a-Service

Eternity Malware-as-a-Service

It has been found that cybercriminals are now promoting a new modular, malware-as-a-service offering...

May 14th, 2022

Continue Reading

Xbox goes down

Xbox goes down

It was reported by Microsoft that Xbox Live services are currently down in a major outage, impacting...

May 9th, 2022

Continue Reading

A threat to Twitter verified account owners

A threat to Twitter verified account owners

Phishing scams as we all know continue to target verified account owners on social media platforms, recently...

May 5th, 2022

Continue Reading

Black Basta in Action

Black Basta in Action

A brand new ransomware gang known as Black Basta has swiftly catapulted in to action in the month of...

April 28th, 2022

Continue Reading

When mute is really not MUTED?

When mute is really not MUTED?

According to a new study and research it has been found that pressing the mute button on some of the...

April 18th, 2022

Continue Reading

What if you’re being watched without your knowledge?

What if you’re being watched without your knowledge?

A vulnerability/flaw in the 'Wyze' camera lets hackers watch your saved content! A vulnerability in...

March 30th, 2022

Continue Reading

Lapsus$ attacks again, This time it’s Microsoft

Lapsus$ attacks again, This time it’s Microsoft

It was confirmed by Microsoft that one of their employee's accounts had been compromised by Lapsus$ hacking...

March 24th, 2022

Continue Reading

‘GhostCringe’ Malware threatening Microsoft SQL and MySQL servers

‘GhostCringe’ Malware threatening Microsoft SQL and MySQL servers

Threat actors target poorly secured Microsoft SQL and MySQL database servers to execute GhostCringe remote...

March 17th, 2022

Continue Reading

Malicious File being distributed via YouTube

Malicious File being distributed via YouTube

YouTube being used to distribute Malwares? It was recently discovered by the SEC analysis team that...

March 14th, 2022

Continue Reading

Hackers have Samsung Source Code

Hackers have Samsung Source Code

Samsung Confirms threat actors have stolen their devices source code! It was confirmed on Monday by...

March 8th, 2022

Continue Reading

‘AON’ Insurance Giant struck by a Cyberattack during the Weekend

What is AON? Professional services and insurance giant AON suffered a cyberattack that impacted a...

March 1st, 2022

Continue Reading

Monzo Online-Banking Customers at risk of being ‘Phished’

Monzo Online-Banking Customers at risk of being ‘Phished’

Monzo Online-Banking Users targeted by Phishing Attacks! One of UK's most popular digital-only banking...

February 22nd, 2022

Continue Reading

Cybersecurity & Infrastructure Agency Orders Federal Agencies to mend actively exploited Windows bug

Cybersecurity & Infrastructure Agency Orders Federal Agencies to mend actively exploited Windows bug

The Cybersecurity and Infrastructure Security Agency most commonly known as 'CISA' has instructed federal...

February 11th, 2022

Continue Reading

Apache Log4j Vulnerability

Apache Log4j Vulnerability

What is Log4j Vulnerability? Log4j is Apache developed logging tool used in many java-based applications....

December 20th, 2021

Continue Reading

Kali Linux Release 2021.4

Kali Linux Release 2021.4

Kali Linux released its newest version 2021.4 which includes nine new tools and features. Kali Linux...

December 10th, 2021

Continue Reading

Google announced to have disrupted the Glupteba botnet

Google announced to have disrupted the Glupteba botnet

On 7th Dec 2021 google announced that they have stopped botnet Gluteba, a botnet that has spread malware...

December 9th, 2021

Continue Reading

Microsoft seized domains used by the APT15 Chinese cyberespionage group

Microsoft seized domains used by the APT15 Chinese cyberespionage group

On 6th December 2021 Microsoft seized malicious sites used by the APT15 (also known as Nickel, KE3CHANG,...

December 8th, 2021

Continue Reading

SPAR stores switched to cash only after suspected cyberattack

SPAR stores switched to cash only after suspected cyberattack

International Supermarket franchise SPAR which operates around 13,00 stores in more than 45 countries...

December 7th, 2021

Continue Reading

An authentication bypass vulnerability in Zoho’s ManageEngine is being exploited in the wild

An authentication bypass vulnerability in Zoho’s ManageEngine is being exploited in the wild

On 3rd December 2021 Manage Engine released a security update on the vulnerability tracked as CVE-2021-44515....

December 6th, 2021

Continue Reading

Mozilla Fix a Security Flaw in Network Security Services Cryptography Library

Mozilla Fix a Security Flaw in Network Security Services Cryptography Library

On 1st December 2021, Mozilla release a Security Advisor addressing the Critical vulnerability affecting...

December 3rd, 2021

Continue Reading

RTF injection technique is used by APT group in recent phishing attacks

RTF injection technique is used by APT group in recent phishing attacks

Three State sponsored threat actors from China, India and Russia is using a new novel RTF (Rich Text...

December 2nd, 2021

Continue Reading

Android Banking Trojan Campaigns Infected Over 300,000 Users

Android Banking Trojan Campaigns Infected Over 300,000 Users

ThreatFabric researchers has discovered a malware campaign that distribute android trojans that spread...

December 1st, 2021

Continue Reading

Panasonic disclosed a security breach

Panasonic disclosed a security breach

Panasonic the Japanese multinational conglomerate disclosed a security breach after threat actors gained...

November 30th, 2021

Continue Reading