Ivanti Connect Secure Zero Days Now Under Mass Exploitation
Two zero-day vulnerabilities affecting Ivanti's Connect Secure VPN and Policy Secure network access control (NAC) appliances are now under mass...
News
Us Court Docs Expose Fake Antivirus Renewal Phishing Tactics
In a seizure warrant application, the U.S. Secret Service sheds light on how threat actors stole $34,000 using fake antivirus...
Over 178k Sonicwall Firewalls Vulnerable To Dos Potential Rce Attacks
Security researchers have found over 178,000 SonicWall next-generation firewalls (NGFW) with the management interface exposed online are vulnerable to denial-of-service...
Security Experts Urge IT to Lock Down GitHub Services
Threat intelligence firm Recorded Future has warned that threat actors are increasingly using GitHub services to launch covert cyber-attacks, and...
HelloFresh Fined £140K After Sending 80 Million Spam Messages
Meal-kit company HelloFresh is the latest brand to receive a major fine from the UK’s privacy regulator, after it was...
British Library Catalogue Back Online After Ransomware Attack
The British Library has begun restoring its online services as it continues to recover from last year’s ransomware attack.Sir Roly...
Senators Demand Probe into SEC Hack After Bitcoin Price Spike
US lawmakers have demanded an investigation into the hack of the Securities and Exchange Commission (SEC)’s X (formerly Twitter) account...
Researchers Uncover Major Surge in Global Botnet Activity
Security researchers have discovered a significant increase in global botnet activity between December 2023 and the first week of January...
Python-Based Tool FBot Disrupts Cloud Security
Security researchers have shed light on a new Python-based hacking tool, FBot, showcasing distinct features from other cloud malware families. Discovered...
Environmental Websites Hit by DDoS Surge in COP28 Crossfire
The 28th United Nations Climate Change Conference (COP 28), held in Dubai at the end of 2023, sparked an “unprecedented...
Active Exploitation of Critical Vulnerability in Microsoft SharePoint Server
Microsoft had previously released updates addressing a critical vulnerability (CVE-2023-29357) in Microsoft SharePoint Server. The vulnerability is reportedly being actively...
3 Ransomware Group Newcomers to Watch in 2024
The ransomware industry surged in 2023 as it saw an alarming 55.5% increase in victims worldwide, reaching a staggering 4,368...
Opera MyFlaw Bug Could Let Hackers Run ANY File on Your Mac or Windows
Cybersecurity researchers have disclosed a security flaw in the Opera web browser for Microsoft Windows and Apple macOS that could...
Active Exploitation of Critical Vulnerability in Microsoft SharePoint Server
Microsoft had previously released updates addressing a critical vulnerability (CVE-2023-29357) in Microsoft SharePoint Server. The vulnerability is reportedly being actively...
Balada Injector Infects Over 7,100 WordPress Sites Using Plugin Vulnerability
Thousands of WordPress sites using a vulnerable version of the Popup Builder plugin have been compromised with a malware called...
DDoS Attacks on the Environmental Services Industry Surge by 61,839% in 2023
The environmental services industry witnessed an "unprecedented surge" in HTTP-based distributed denial-of-service (DDoS) attacks, accounting for half of all its...
High-Severity Flaws Uncovered in Bosch Thermostats and Smart Nutrunners
Multiple security vulnerabilities have been disclosed in Bosch BCC100 thermostats and Rexroth NXA015S-36V-B smart nutrunners that, if successfully exploited, could...
Save Up To 315 On Data Privacy Tools With Adguard Vpn
A virtual private network (VPN) is a foundational data privacy tool for both professional life and your day-to-day browsing. AdGuard...
Grapheneos Frequent Android Auto Reboots Block Firmware Exploits
The GrapheneOS team behind the privacy and security-focused Android-based operating system with the same name is suggesting that Android should introduce an auto-reboot...
New Findings Challenge Attribution in Denmark’s Energy Sector Cyberattacks
The cyber attacks targeting the energy sector in Denmark last year may not have had the involvement of the Russia-linked...
Critical Vulnerability in Juniper Networks Products
Juniper Networks has released security updates addressing a critical vulnerability (CVE-2024-21591) in their SRX Series firewalls and EX Series switches....
Critical Vulnerabilities in GitLab Products
GitLab has released security updates addressing critical vulnerabilities (CVE-2023-7028 and CVE-2023-5356) in their Community Edition (CE) and Enterprise Edition (EE)....
Hacker Spins Up 1 Million Virtual Servers To Illegally Mine Crypto
A 29-year-old man in Ukraine was arrested this week for using hacked accounts to create 1 million virtual servers used...
Critical RCE Vulnerability Uncovered in Juniper SRX Firewalls and EX Switches
Juniper Networks has released updates to fix a critical remote code execution (RCE) vulnerability in its SRX Series firewalls and...
