CVE Alert: CVE-2024-12054
Vulnerability Summary: CVE-2024-12054 ZF Roll Stability Support Plus (RSSPlus) is vulnerable to an authentication bypass vulnerability targeting deterministic RSSPlus SecurityAccess...
Month: February 2025
CVE Alert: CVE-2025-25281
Vulnerability Summary: CVE-2025-25281 An attacker may modify the URL to discover sensitive information about the target network. Affected Endpoints: No...
CVE Alert: CVE-2024-37602
Vulnerability Summary: CVE-2024-37602 An issue was discovered in Mercedes Benz NTG (New Telematics Generation) 6 through 2021. A possible NULL...
CVE Alert: CVE-2024-37600
Vulnerability Summary: CVE-2024-37600 An issue was discovered in Mercedes Benz NTG (New Telematics Generation) 6 through 2021. A possible stack...
Securing the Connected World with IoT Safety Measures
The proliferation of the Internet of Things (IoT) has transformed how we interact with our environment, making our lives more...
North Korea’s Operation Marstech Mayhem Targets Crypto Developers
North Korea's latest campaign, named Operation Marstech Mayhem, aims to distribute crypto-stealing malware via open source components, significantly threatening crypto...
Seashell Blizzard Expansion: Russian Group Enlists Initial Access Subgroup for Global Operations
Seashell Blizzard, a Russian state cyber-actor, has integrated a specialized initial access subgroup to enhance its global reach and compromise...
EFF Fights Against DOGE and Elon Musk’s Access to Federal Workers’ Data
The Electronic Frontier Foundation (EFF) is spearheading a coalition to block Elon Musk’s Department of Government Efficiency (DOGE) from accessing...
Romance Baiting Losses Increase by 40% Yearly: A Serious Crypto Fraud Warning
In 2024, losses from romance baiting scams surged 40% year-on-year, highlighting a critical concern in the world of cryptocurrency fraud....
CISA and FBI Alert: Mitigating Buffer Overflow Vulnerabilities in Software
CISA and the FBI have issued a crucial alert emphasizing the importance of eliminating buffer overflow vulnerabilities in software development....
Astaroth: The Phishing Kit That Effectively Bypasses 2FA
Discover the sophisticated phishing kit called Astaroth, known for its advanced techniques that effectively bypass two-factor authentication (2FA) to compromise...
Doxbin (TOoDA) – 136,461 breached accounts
HIBP In February 2025, the "doxing" website Doxbin was compromised by a group calling themselves "TOoDA" and the data dumped...
CISA: CISA Adds Four Known Exploited Vulnerabilities to Catalog
CISA Adds Four Known Exploited Vulnerabilities to Catalog CISA has added four vulnerabilities to its Known Exploited Vulnerabilities Catalog, based on...
CISA: Microsoft Releases January 2025 Security Updates
Microsoft Releases January 2025 Security Updates Microsoft released security updates to address vulnerabilities in multiple Microsoft products. A cyber threat...
CISA: CISA Releases Microsoft Expanded Cloud Logs Implementation Playbook
CISA Releases Microsoft Expanded Cloud Logs Implementation Playbook Today, CISA released the Microsoft Expanded Cloud Logs Implementation Playbook to help...
CISA: CISA and Partners Release Call to Action to Close the National Software Understanding Gap
CISA and Partners Release Call to Action to Close the National Software Understanding Gap Today, CISA—in partnership with the Defense Advanced...
CISA: CISA Adds One Known Exploited Vulnerability to Catalog
CISA Adds One Known Exploited Vulnerability to Catalog CISA has added one new vulnerability to its Known Exploited Vulnerabilities Catalog, based...
CISA: CISA Releases Twelve Industrial Control Systems Advisories
CISA Releases Twelve Industrial Control Systems Advisories CISA released twelve Industrial Control Systems (ICS) advisories on January 16, 2025. These...
CISA: CISA Releases Three Industrial Control Systems Advisories
CISA Releases Three Industrial Control Systems Advisories CISA released three Industrial Control Systems (ICS) advisories on January 21, 2025. These...
CISA: CISA and FBI Release Updated Guidance on Product Security Bad Practices
CISA and FBI Release Updated Guidance on Product Security Bad Practices In partnership with the Federal Bureau of Investigation (FBI),...
CISA: CISA and FBI Release Advisory on How Threat Actors Chained Vulnerabilities in Ivanti Cloud Service Applications
CISA and FBI Release Advisory on How Threat Actors Chained Vulnerabilities in Ivanti Cloud Service Applications CISA, in partnership with...
CISA: CISA Releases Six Industrial Control Systems Advisories
CISA Releases Six Industrial Control Systems Advisories CISA released six Industrial Control Systems (ICS) advisories on January 23, 2025. These...
CISA: CISA Releases Eight Industrial Control Systems Advisories
CISA Releases Eight Industrial Control Systems Advisories CISA released eight Industrial Control Systems (ICS) advisories on January 30, 2025. These...
CISA: CISA Adds One Known Exploited Vulnerability to Catalog
CISA Adds One Known Exploited Vulnerability to Catalog CISA has added one new vulnerability to its Known Exploited Vulnerabilities Catalog, based...
