StripedFly malware framework infects 1 million Windows, Linux hosts
A sophisticated cross-platform malware platform named StripedFly flew under the radar of cybersecurity researchers for five years, infecting over a...
Year: 2023
CISA Releases Cybersecurity Toolkit For Healthcare
A leading US cybersecurity agency has published a new set of online resources designed to help IT security leaders in the...
UK Parliament Opens Inquiry into Cyber-Resilience
UK lawmakers have launched an inquiry into the cyber-resilience of critical national infrastructure (CNI), claiming the country is the third...
Humans Need to Rethink Trust in the Wake of Generative AI
As generative AI rapidly evolves, one of the biggest risks that is being discussed is the potential for the technology...
Europol: Police Must Start Planning For Post-Quantum Future
Law enforcers should start building their knowledge and assessing the potential impact of quantum computing technologies, to ensure they can...
UK IT Pros Express Concerns About C-Suite’s Generative AI Ambitions
Ahead of the UK's AI Safety Summit, new research has revealed significant concerns among UK IT professionals regarding the deployment of...
#ISC2Congress: CISO Best Practices for Managing Cyber Risk
Leading CISOs have offered best practices for security leaders on how to manage cyber risks effectively during the ISC2 Security...
#ISC2Congress: CISOs Can Elevate Their Role with New Cyber Regulations
New cybersecurity rules and regulations offer security leaders a great opportunity to elevate their role at their organizations, boosting security...
Operation Triangulation iOS Attack Details Revealed
In an update to previous reports, Kaspersky’s Global Research and Analysis Team (GReAT) has disclosed new insights into the notorious...
CISA: CISA Updates Guidance for Addressing Cisco IOS XE Web UI Vulnerabilities
CISA Updates Guidance for Addressing Cisco IOS XE Web UI Vulnerabilities Today, CISA updated its guidance addressing two vulnerabilities, CVE-2023-20198...
CISA: CISA Releases One Industrial Control Systems Advisory
CISA Releases One Industrial Control Systems Advisory CISA released one Industrial Control Systems (ICS) advisory on October 24, 2023. This...
CISA: CISA Adds One Known Exploited Vulnerability to Catalog
CISA Adds One Known Exploited Vulnerability to Catalog CISA has added one new vulnerability to its Known Exploited Vulnerabilities Catalog, based...
CISA: CISA Releases Fact Sheet on Effort to Revise the National Cyber Incident Response Plan (NCIRP)
CISA Releases Fact Sheet on Effort to Revise the National Cyber Incident Response Plan (NCIRP) Today, the Cybersecurity and Infrastructure...
CISA: CISA Releases Guidance for Addressing Cisco IOS XE Web UI Vulnerabilities
CISA Releases Guidance for Addressing Cisco IOS XE Web UI Vulnerabilities Today, CISA, in response to active, widespread exploitation, released...
CISA: Mozilla Releases Security Advisories for Multiple Products
Mozilla Releases Security Advisories for Multiple Products Mozilla has released security updates to address vulnerabilities in Firefox and Thunderbird. A...
CISA: CISA Adds One Known Exploited Vulnerability to Catalog
CISA Adds One Known Exploited Vulnerability to Catalog CISA has added one new vulnerability to its Known Exploited Vulnerabilities Catalog, based...
CISA: Apple Releases Security Advisories for Multiple Products
Apple Releases Security Advisories for Multiple Products Apple has released security updates to address vulnerabilities in multiple products. A cyber...
CISA: VMware Releases Security Advisory for vCenter Server
VMware Releases Security Advisory for vCenter Server VMware released a security advisory for a vulnerability (CVE-2023-34048) affecting the VMware vCenter...
CISA: CISA Releases Nine Industrial Control Systems Advisories
CISA Releases Nine Industrial Control Systems Advisories CISA released nine Industrial Control Systems (ICS) advisories on October 26, 2023. These...
US-CERT Vulnerability Summary for the Week of October 16, 2023
High VulnerabilitiesPrimary Vendor -- ProductDescriptionPublishedCVSS ScoreSource & Patch Info1e -- platformAffected 1E Platform versions have a Blind SQL Injection vulnerability...
PathFinder – Tool That Provides Information About A Website
Web Path Finder is a Python program that provides information about a website. It retrieves various details such as page...
Record-Breaking 100 Million RPS DDoS Attack Exploits HTTP/2 Rapid Reset Flaw
Cloudflare on Thursday said it mitigated thousands of hyper-volumetric HTTP distributed denial-of-service (DDoS) attacks that exploited a recently disclosed flaw...
iLeakage: New Safari Exploit Impacts Apple iPhones and Macs with A and M-Series CPUs
A group of academics has devised a novel side-channel attack dubbed iLeakage that exploits a weakness in the A- and...
HackerOne Bug Bounty Disclosure: b-flickr-api-key-leaked-in-github-commit-b-m-y-nk
Company Name: b'Mozilla Core Services' Company HackerOne URL: https://hackerone.com/mozilla_core_services Submitted By:b'm4y4nk'Link to Submitters Profile:https://hackerone.com/b'm4y4nk' Report Title:b'Flickr API key leaked in...
