Critical WordPress Anti-Spam Plugin Flaws Expose 200,000+ Sites to Remote Attacks
Two critical security flaws impacting the Spam protection, Anti-Spam, and FireWall plugin WordPress could...
November 27th, 2024
Continue ReadingNew Qilin ransomware encryptor features stronger encryption, evasion
A new Rust-based version of the Qilin (Agenda) ransomware strain, dubbed 'Qilin.B,' has been spotted...
October 24th, 2024
Continue ReadingFree Sniper Dz Phishing Tools Fuel 140,000+ Cyber Attacks Targeting User Credentials
More than 140,000 phishing websites have been found linked to a phishing-as-a-service (PhaaS) platform...
October 2nd, 2024
Continue ReadingHackers deploy AI-written malware in targeted attacks
Suspected cases AI-created malware have been spotted in real attacks. Earlier this year, cybersecurity...
September 25th, 2024
Continue ReadingPatch Issued for Critical VMware vCenter Flaw Allowing Remote Code Execution
The vulnerability, tracked as CVE-2024-38812 (CVSS score: 9.8), has been described as a heap-overflow...
September 18th, 2024
Continue ReadingSonicWall SSLVPN access control flaw is now exploited in attacks
CVE-2024-40766 is a critical (CVSS v3 score: 9.3) access control flaw impacting SonicWall Firewall Gen...
September 9th, 2024
Continue ReadingCisco Fixes Two Critical Flaws in Smart Licensing Utility to Prevent Remote Attacks
The flaws, which were discovered during internal security testing, also do not affect Smart Software...
September 5th, 2024
Continue ReadingMalware exploits 5-year-old zero-day to infect end-of-life IP cameras
The flaw, discovered by Akamai's Aline Eliovich, is tracked as CVE-2024-7029 and is a high-severity (CVSS...
August 30th, 2024
Continue ReadingCritical Flaw in WordPress LiteSpeed Cache Plugin Allows Hackers Admin Access
Cybersecurity researchers have disclosed a critical security flaw in the LiteSpeed Cache plugin for...
August 22nd, 2024
Continue ReadingZero-click Windows TCP/IP RCE impacts all systems with IPv6 enabled, patch now
Microsoft warned customers this Tuesday to patch a critical TCP/IP remote code execution (RCE) vulnerability...
August 16th, 2024
Continue ReadingFreeBSD Releases Urgent Patch for High-Severity OpenSSH Vulnerability
The vulnerability, tracked as CVE-2024-7589, carries a CVSS score of 7.4 out of a maximum of 10.0, indicating...
August 13th, 2024
Continue ReadingGoogle fixes Android kernel zero-day exploited in targeted attacks
The zero-day, tracked as CVE-2024-36971, is a use after free (UAF) weakness in the Linux kernel's network...
August 6th, 2024
Continue ReadingWhatsApp for Windows lets Python, PHP scripts execute with no warning
A security issue in the latest version of WhatsApp for Windows allows sending Python and PHP attachments...
July 30th, 2024
Continue ReadingStargazer Goblin’ Creates 3,000 Fake GitHub Accounts for Malware Spread
A threat actor known as Stargazer Goblin has set up a network of inauthentic GitHub accounts to fuel...
July 29th, 2024
Continue ReadingCrowdStrike Explains Friday Incident Crashing Millions of Windows Devices
Cybersecurity firm CrowdStrike on Wednesday blamed an issue in its validation system for causing millions...
July 24th, 2024
Continue ReadingFaulty CrowdStrike Update Crashes Windows Systems, Impacting Businesses Worldwide
Businesses across the world have been hit by widespread disruptions to their Windows workstations stemming...
July 19th, 2024
Continue ReadingSolarWinds Patches 11 Critical Flaws in Access Rights Manager Software
SolarWinds has addressed a set of critical security flaws impacting its Access Rights Manager (ARM)...
July 19th, 2024
Continue ReadingGitHub Token Leak Exposes Python’s Core Repositories to Potential Attacks
JFrog, which found the GitHub Personal Access Token, said the secret was leaked in a public Docker container...
July 16th, 2024
Continue ReadingPalo Alto Networks Patches Critical Flaw in Expedition Migration Tool
Cataloged as CVE-2024-5910 (CVSS score: 9.3), the vulnerability has been described as a case of missing...
July 12th, 2024
Continue ReadingNew OpenSSH Vulnerability Discovered: Potential Remote Code Execution Risk
Select versions of the OpenSSH secure networking suite are susceptible to a new vulnerability that can...
July 10th, 2024
Continue ReadingHackers Exploiting Jenkins Script Console for Cryptocurrency Mining Attacks
Jenkins, a popular continuous integration and continuous delivery (CI/CD) platform, features a Groovy...
July 10th, 2024
Continue ReadingGoogle Address Critical Flaws in Android
Google, a leading technology giant, has once again demonstrated its commitment to user security by releasing...
July 11th, 2023
Continue ReadingFortigate still unpatched for RCE Vulnerability
No less than 330,000 FortiGate firewalls are still unpatched and vulnerable to CVE-2023-27997, a critical...
July 5th, 2023
Continue ReadingThe Surge of 8Base Ransomware Group
Ransomware attacks have become increasingly sophisticated and damaging, causing significant financial...
June 29th, 2023
Continue ReadingMicrosoft Release Optional Fix for Vulnerability
In a recent update, Microsoft has released an optional fix to address a kernel information disclosure...
June 15th, 2023
Continue ReadingApple Fixes Bug Allowing Bypass of SIP Root Restrictions
In recent findings, researchers from Microsoft have identified a critical vulnerability, labeled CVE-2023-32369...
June 1st, 2023
Continue ReadingGoogle launches bug bounty program
Google has recently unveiled the Mobile Vulnerability Rewards Program (Mobile VRP), a new bug bounty...
May 24th, 2023
Continue Reading‘Security Incident’ in Twitter Circle
Twitter introduce Twitter Circle in August 2022. This allows users to send tweets to a selected set of...
May 9th, 2023
Continue ReadingChatGPT is Back in Italy after ban
Following the company's compliance with regulatory requirements, OpenAI announced that access to its...
May 2nd, 2023
Continue ReadingVMware patches critical product vulnerabilities
In order to address significant security flaws in the VMware Aria Operations for Logs (previously vRealize...
April 25th, 2023
Continue ReadingEmergency Update from Google Chrome
You must immediately check your browser after Google issued an urgent Chrome warning! Every Chrome user...
April 18th, 2023
Continue ReadingApple updates fix security vulnerabilities
A significant iOS security update from Apple has been released to address two zero-day flaws that are...
April 11th, 2023
Continue Reading3CX desktop app faces supply chain attack
According to experts from various cybersecurity firms, a threat actor is currently actively using a compromised...
April 4th, 2023
Continue ReadingTwitter takes down leaked source code
Apparently, the source code for Twitter was posted online. According to the lawsuit, the business took...
March 28th, 2023
Continue ReadingFerrari Reveals Cyber Incident
Following a ransom demand received after attackers obtained access to certain of the company's IT systems,...
March 21st, 2023
Continue ReadingPOC released for critical Microsoft Word bug
Security researcher Joshua Drake has found an exploit in Microsoft Word and published a proof-of-concept...
March 14th, 2023
Continue ReadingChinese hackers adopt a new customized backdoor
As part of an ongoing social engineering campaign that started in January 2023, the China-aligned Mustang...
March 7th, 2023
Continue ReadingFortinet fixes vulnerabilities in FortiNAC and FortiWeb
FortiNAC and FortiWeb products were affected by two severe issues, which led Footinet to post 40 security...
February 28th, 2023
Continue ReadingGoDaddy Discloses Multi-Year Security Breach
GoDaddy has discovered a significant, multi-year security flaw that gave hackers access to the company's...
February 20th, 2023
Continue ReadingApple releases fix WebKit zero-day vulnerability
Apple on 13th February 2023, released a fix for zero-day vulnerability in iPads, Macs and iPhones. The...
February 14th, 2023
Continue ReadingBroken Authentication vulnerability in Jira Service Management
Jira Service Management Server and Data Center had serious security flaws that have been fixed by Atlassian....
February 7th, 2023
Continue ReadingMicrosoft advises administrators to patch Exchange servers
Microsoft advises users to maintain their Exchange servers' security updates as well as take precautions...
January 31st, 2023
Continue ReadingGoTo Suffers a Data Breach
Owner of LastPass, GoTo confirms that backups belonging to customers were stolen by hackers. The organization,...
January 26th, 2023
Continue ReadingThousands of Norton LifeLock customer accounts breached
Thousands NortonLifeLock customer accounts have been compromised. The parent firm of Norton LifeLock,...
January 19th, 2023
Continue ReadingToyota reports a data breach
A widespread cyberattack on Toyota has revealed several customers' private information. Toyota confirmed...
January 10th, 2023
Continue ReadingTwitter database leaks with 235 Million records
On a well-known hacker site, a data dump containing the email addresses of 235 million Twitter users...
January 5th, 2023
Continue ReadingFacebook will pay $725 million to resolve the Cambridge Analytica data leak lawsuit
Facebook's parent company, Meta, has agreed to pay £600 million to resolve a lawsuit involving a data...
December 29th, 2022
Continue ReadingMicrosoft fixes 2 zero-days on December 2022 Patch Tuesday
On 13th December 2022 was the December Patch Tuesday, and 2 zero-day vulnerabilities and 49 flaws were...
December 14th, 2022
Continue ReadingFlaws in Cisco Secure Email Gateway
Cisco Systems Inc. has issued a bug report on alerting the public about a flaw in the Sophos and McAfee...
December 6th, 2022
Continue ReadingGoogle releases an urgent Chrome upgrade
In order to patch the eight zero-day vulnerabilities in its Chrome web browser, Google released software...
November 29th, 2022
Continue ReadingActive Exploitations in Cisco AnyConnect VPN Vulnerabilities
Threat actors are reportedly using the Cisco AnyConnect Secure Mobility Client for Windows' vulnerabilities,...
November 24th, 2022
Continue ReadingMultiple vulnerabilities in Fortinet products
Security researchers at Horizon3 reported on 13th October 2022, that the critical vulnerability, designated...
November 15th, 2022
Continue ReadingVulnerabilities in Abode Systems home security kit
The iota All-In-One Security Kit from Abode Systems Inc. was found to have numerous vulnerabilities....
November 3rd, 2022
Continue Readingvm2 Sandbox Vulnerability allows RCE
Recently, it was discovered that VM2, a widely used JavaScript sandbox library, contained the "Sandbreak"...
October 18th, 2022
Continue ReadingZero-Day RCE Vulnerability in Sophos Firewall
Sophos Group plc the British based security software and hardware company released a security advisory...
October 4th, 2022
Continue ReadingApple Vulnerabilities added to CISA Catalog
US Cybersecurity and Infrastructure Security Agency (CISA) released an advisory a security update of...
September 27th, 2022
Continue ReadingVMware Patches Privilege Escalation affecting VMware Tools
VMware published a security advisory addressing an important-severity vulnerability on August 23, 2022....
September 13th, 2022
Continue ReadingGoogle Patch Sixth Zero-day
Google issued a critical security update for Google Chrome version 105.0.5195.102 for Windows, Mac, and...
September 8th, 2022
Continue ReadingMultiple Vulnerabilities in GitLab CE and EE are Fixed by GitLab
GitLab published a security advisory on August 30, 2022, to remedy a critical security flaw that has...
September 6th, 2022
Continue ReadingCritical Vulnerability in Realtek Devices Affects Millions of Devices
A critical vulnerability tracked as CVE-2022-27255 was reported to be affecting the network devices of...
August 29th, 2022
Continue ReadingApple releases fix zero-day vulnerabilities used in attacks
On 18th August 2022 Apple Inc. released a security update for a zero-day vulnerability exploited in Safari...
August 26th, 2022
Continue ReadingMicrosoft August 2022 Patch Tuesday
Microsoft August 2022 Patch Tuesday (9th August 2022) released patches for 2 zero-day vulnerabilities...
August 10th, 2022
Continue ReadingDjango release patches for SQL Injection Vulnerability
A security advisory was released by Django project on a high severity SQL (structured query language...
August 2nd, 2022
Continue ReadingVMware vCenter Server updates address a privilege escalation vulnerability (CVE-2021-22048)
VMware finally released patch after eight months of disclosing the high severity vulnerability in VMware...
August 1st, 2022
Continue ReadingCISA urges users to update necessary patches in Cisco Products
On 22nd July 2022, the US Cybersecurity and Infrastructure Security Agency (CISA) released an advisory...
July 25th, 2022
Continue ReadingCritical Vulnerability in Confluence Server and Data center
Atlassian disclosed a critical vulnerability tracked as CVE-2022-26134 on 2nd June 2022. This is a Critical...
July 22nd, 2022
Continue ReadingGoogle Patches Zero – day Vulnerability in Chrome
Google on last Monday 4th July 2022 released an emergency chrome update to fix a high severity zero –...
July 11th, 2022
Continue ReadingAmazon has Fixed a High Severity Vulnerability in Amazon Photos Android App
On 28th June 2022, Checkmarx has reported that Amazon Inc’s Amazon Photos Android app has a high-severity...
July 5th, 2022
Continue ReadingCISA urges organizations to update Firefox, Firefox ESR, and Thunderbird
On 28th June 2022, The Mozilla Foundation has released patch to fix multiple vulnerabilities in Firefox,...
July 4th, 2022
Continue ReadingRansomware Exploiting Mitel VOIP Zero-Day
On June 23rd 2022 Crowdstrike released a report mentioning about a zero-day exploit tracked as CVE-2022-29499...
June 27th, 2022
Continue ReadingAdobe patched 46 Security Flaws in a Wide Range of Enterprise-facing Software Products
On Patch Tuesday release for June, Adobe released multiple security advisories to address 46 vulnerabilities...
June 20th, 2022
Continue ReadingMassive DDoS attack mitigated
Internet infrastructure organization Cloudflare stated that they mitigated a record breaking 26 million...
June 16th, 2022
Continue ReadingApple blocks many Applications from defrauding Users
It has been stated by Apple Inc that over the course of last week that more than 343,000 iOS apps were...
June 7th, 2022
Continue ReadingFollina-A severe Zero-Day Code Execution Vulnerability
May of 2022, Microsoft disclosed a remote code execution (RCE) vulnerability in the Microsoft Support...
June 2nd, 2022
Continue ReadingCritical bugs in Android apps from major Mobile providers
Security researchers at Microsoft have detected high severity vulnerabilities in a framework used by...
June 1st, 2022
Continue ReadingVerizon suffers Ransomware Attack
A database was stolen from Verizon was stolen by an attacker, that includes full name, email address,...
May 30th, 2022
Continue ReadingA Malware through documents
According to threat analysts it has been found a recent malware circulation campaign using PDF attachments...
May 23rd, 2022
Continue ReadingEternity Malware-as-a-Service
It has been found that cybercriminals are now promoting a new modular, malware-as-a-service offering...
May 14th, 2022
Continue ReadingXbox goes down
It was reported by Microsoft that Xbox Live services are currently down in a major outage, impacting...
May 9th, 2022
Continue ReadingA threat to Twitter verified account owners
Phishing scams as we all know continue to target verified account owners on social media platforms, recently...
May 5th, 2022
Continue ReadingBlack Basta in Action
A brand new ransomware gang known as Black Basta has swiftly catapulted in to action in the month of...
April 28th, 2022
Continue ReadingWhen mute is really not MUTED?
According to a new study and research it has been found that pressing the mute button on some of the...
April 18th, 2022
Continue ReadingWhat if you’re being watched without your knowledge?
A vulnerability/flaw in the 'Wyze' camera lets hackers watch your saved content! A vulnerability in...
March 30th, 2022
Continue ReadingLapsus$ attacks again, This time it’s Microsoft
It was confirmed by Microsoft that one of their employee's accounts had been compromised by Lapsus$ hacking...
March 24th, 2022
Continue Reading‘GhostCringe’ Malware threatening Microsoft SQL and MySQL servers
Threat actors target poorly secured Microsoft SQL and MySQL database servers to execute GhostCringe remote...
March 17th, 2022
Continue ReadingMalicious File being distributed via YouTube
YouTube being used to distribute Malwares? It was recently discovered by the SEC analysis team that...
March 14th, 2022
Continue ReadingHackers have Samsung Source Code
Samsung Confirms threat actors have stolen their devices source code! It was confirmed on Monday by...
March 8th, 2022
Continue Reading‘AON’ Insurance Giant struck by a Cyberattack during the Weekend
What is AON? Professional services and insurance giant AON suffered a cyberattack that impacted a...
March 1st, 2022
Continue ReadingMonzo Online-Banking Customers at risk of being ‘Phished’
Monzo Online-Banking Users targeted by Phishing Attacks! One of UK's most popular digital-only banking...
February 22nd, 2022
Continue ReadingCybersecurity & Infrastructure Agency Orders Federal Agencies to mend actively exploited Windows bug
The Cybersecurity and Infrastructure Security Agency most commonly known as 'CISA' has instructed federal...
February 11th, 2022
Continue ReadingApache Log4j Vulnerability
What is Log4j Vulnerability? Log4j is Apache developed logging tool used in many java-based applications....
December 20th, 2021
Continue ReadingKali Linux Release 2021.4
Kali Linux released its newest version 2021.4 which includes nine new tools and features. Kali Linux...
December 10th, 2021
Continue ReadingGoogle announced to have disrupted the Glupteba botnet
On 7th Dec 2021 google announced that they have stopped botnet Gluteba, a botnet that has spread malware...
December 9th, 2021
Continue ReadingMicrosoft seized domains used by the APT15 Chinese cyberespionage group
On 6th December 2021 Microsoft seized malicious sites used by the APT15 (also known as Nickel, KE3CHANG,...
December 8th, 2021
Continue ReadingSPAR stores switched to cash only after suspected cyberattack
International Supermarket franchise SPAR which operates around 13,00 stores in more than 45 countries...
December 7th, 2021
Continue ReadingAn authentication bypass vulnerability in Zoho’s ManageEngine is being exploited in the wild
On 3rd December 2021 Manage Engine released a security update on the vulnerability tracked as CVE-2021-44515....
December 6th, 2021
Continue ReadingMozilla Fix a Security Flaw in Network Security Services Cryptography Library
On 1st December 2021, Mozilla release a Security Advisor addressing the Critical vulnerability affecting...
December 3rd, 2021
Continue ReadingRTF injection technique is used by APT group in recent phishing attacks
Three State sponsored threat actors from China, India and Russia is using a new novel RTF (Rich Text...
December 2nd, 2021
Continue ReadingAndroid Banking Trojan Campaigns Infected Over 300,000 Users
ThreatFabric researchers has discovered a malware campaign that distribute android trojans that spread...
December 1st, 2021
Continue ReadingPanasonic disclosed a security breach
Panasonic the Japanese multinational conglomerate disclosed a security breach after threat actors gained...
November 30th, 2021
Continue Reading