PAX PoS Terminal Flaw Could Allow Attackers to Tamper with Transactions
The point-of-sale (PoS) terminals from PAX Technology are impacted by a collection of high-severity vulnerabilities that can be weaponized by...
News
New iShutdown Method Exposes Hidden Spyware Like Pegasus on Your iPhone
Cybersecurity researchers have identified a "lightweight method" called iShutdown for reliably identifying signs of spyware on Apple iOS devices, including...
Feds Warn of AndroxGh0st Botnet Targeting AWS, Azure, and Office 365 Credentials
The U.S. Cybersecurity and Infrastructure Security Agency (CISA) and the Federal Bureau of Investigation (FBI) warned that threat actors deploying...
Webinar: The Art of Privilege Escalation – How Hackers Become Admins
In the digital age, the battleground for security professionals is not only evolving, it's expanding at an alarming rate. The...
Google Chrome Multiple Vulnerabilities
Multiple vulnerabilities were identified in Google Chrome. A remote attacker could exploit some of these vulnerabilities to trigger denial of...
Citrix Products Multiple Vulnerabilities
Multiple vulnerabilities were identified in Citrix Products. A remote attacker could exploit some of these vulnerabilities to trigger denial of...
GitHub Rotates Keys After High-Severity Vulnerability Exposes Credentials
GitHub has revealed that it has rotated some keys in response to a security vulnerability that could be potentially exploited...
Active Exploitation of Zero-Day Vulnerability in Google Chrome
Google has released security updates addressing a zero-day vulnerability (CVE-2024-0519) in their Chrome browser on Windows, Mac and Linux systems....
Atlassian Warns Of Critical Rce Flaw In Older Confluence Versions
Atlassian Confluence Data Center and Confluence Server are vulnerable to a critical remote code execution (RCE) vulnerability that impacts versions...
Majorca City Calvi Extorted For 11m In Ransomware Attack
The Calvià City Council in Majorca announced it was targeted by a ransomware attack on Saturday, which impacted municipal services....
The Dual Role Ai Plays In Cybersecurity How To Stay Ahead
There's a wide range of AI-enabled solutions available for various business use cases, and organizations are increasingly recognizing their value....
Pixiefail Flaws Impact Pxe Network Boot In Enterprise Systems
A set of nine vulnerabilities, collectively called 'PixieFail,' impact the IPv6 network protocol stack of Tianocore's EDK II, the open-source...
Macos Info Stealers Quickly Evolve To Evade Xprotect Detection
Multiple information stealers for the macOS platform have demonstrated the capability to evade detection even when security companies follow and...
Google Fixes First Actively Exploited Chrome Zero Day Of 2024
Google has released security updates to fix the first Chrome zero-day vulnerability exploited in the wild since the start of...
Github Rotates Keys To Mitigate Impact Of Credential Exposing Flaw
GitHub rotated keys potentially exposed by a vulnerability patched in December that could let attackers access credentials within production containers via environment...
Citrix Warns Of New Netscaler Zero Days Exploited In Attacks
Citrix urged customers on Tuesday to immediately patch Netscaler ADC and Gateway appliances exposed online against two actively exploited zero-day...
Fbi Androxgh0st Malware Botnet Steals Aws Microsoft Credentials
CISA and the FBI warned today that threat actors using Androxgh0st malware are building a botnet focused on cloud credential...
Citrix, VMware, and Atlassian Hit with Critical Flaws — Patch ASAP!
Citrix is warning of two zero-day security vulnerabilities in NetScaler ADC (formerly Citrix ADC) and NetScaler Gateway (formerly Citrix Gateway)...
Zero-Day Alert: Update Chrome Now to Fix New Actively Exploited Vulnerability
Google on Tuesday released updates to fix four security issues in its Chrome browser, including an actively exploited zero-day flaw....
Inferno Drainer Spoofs Over 100 Crypto Brands to Steal $80m+
The most prolific known crypto drainer of 2023 impersonated over 100 cryptocurrency brands across 16,000 phishing domains to trick victims...
Ivanti Zero-Days Exploited By Multiple Actors Globally
Two zero-day vulnerabilities in Ivanti products revealed last week are being exploited en masse worldwide, with over 1700 devices already...
Crypto Heists Surge in 2023, $16.93m Already Stolen in 2024
Crypto heists increased in volume by 42% in 2023, with 283 incidents, according to an analysis by consumer awareness firm...
Phemedrone Stealer Targets Windows Defender Flaw Despite Patch
Cybersecurity experts have uncovered the active exploitation of CVE-2023-36025, which also led to the dissemination of a new strain of...
Email Nightmare: 94% of Firms Hit by Phishing Attacks in 2023
Email security remained top of mind for cybersecurity professionals in 2023 as over nine in ten (94%) cyber decision-makers had...
