BreachForums Founder Sentenced to 20 Years of Supervised Release, No Jail Time
Conor Brian Fitzpatrick has been sentenced to time served and 20 years of supervised release for his role as the...
News
~40,000 Attacks in 3 Days: Critical Confluence RCE Under Active Exploitation
Malicious actors have begun to actively exploit a recently disclosed critical security flaw impacting Atlassian Confluence Data Center and Confluence...
Apple Products Multiple Vulnerabilities
Multiple vulnerabilities were identified in Apple Products. A remote attacker could exploit some of these vulnerabilities to trigger denial of service...
Apple Products Multiple Vulnerabilities
Multiple vulnerabilities were identified in Apple Products. A remote attacker could exploit some of these vulnerabilities to trigger elevation of...
Trezor Support Site Breach Exposes Personal Data Of 66 000 Customers
Trezor issued a security alert after identifying a data breach that occurred on January 17 due to unauthorized access to their...
Apple Fixes First Zero Day Bug Exploited In Attacks This Year
Apple released security updates to address this year's first zero-day vulnerability exploited in attacks that could impact iPhones, Macs, and...
Loandepot Cyberattack Causes Data Breach For 166 Million People
Mortgage lender loanDepot says that approximately 16.6 million people had their personal information stolen in a ransomware attack disclosed earlier...
Hackers Start Exploiting Critical Atlassian Confluence Rce Flaw
Security researchers are observing exploitation attempts for the CVE-2023-22527 remote code execution flaw vulnerability that affects outdated versions of Atlassian Confluence servers....
Malicious Web Redirect Scripts Stealth Up To Hide On Hacked Sites
Security researchers looking at more than 10,000 scripts used by the Parrot traffic direction system (TDS) noticed an evolution marked by...
Cracked Macos Apps Drain Wallets Using Scripts Fetched From Dns Records
Hackers are using a stealthy method to deliver to macOS users information-stealing malware through DNS records that hide malicious scripts....
Sec Confirms X Account Was Hacked In Sim Swapping Attack
The U.S. Securities and Exchange Commission confirmed today that its X account was hacked through a SIM-swapping attack on the...
Ivanti Vpn Appliances Vulnerable If Pushing Configs After Mitigation
Ivanti warned admins to stop pushing new device configurations to appliances after applying mitigations because this will leave them vulnerable...
Apple Issues Patch for Critical Zero-Day in iPhones, Macs – Update Now
Apple on Monday released security updates for iOS, iPadOS, macOS, tvOS, and Safari web browser to address a zero-day flaw...
VMware vCenter Server Multiple Vulnerabilities
Multiple vulnerabilities were identified in VMware vCenter Server. A remote attacker could exploit some of these vulnerabilities to trigger sensitive information...
Russian Spies Brute Force Senior Microsoft Staff Accounts
Russian state hackers managed to compromise the email accounts of some of Microsoft’s senior leadership team, using basic brute-force techniques,...
CISA Emergency Directive Demands Action on Ivanti Zero-Days
A leading US security agency has issued an emergency directive requiring all of the government’s civilian federal agencies to mitigate...
Data Privacy Week: Lack of Understanding, Underfunding Threaten Data Privacy and Compliance
A lack of understanding combined with budgetary squeezes are significant obstacles for organization's navigating data privacy and compliance with data...
LoanDepot Data Breach Hits 16.6 Customers
LoanDepot, one of the largest US-based retail mortgage lenders, has confirmed that around 16.6 million of its customers have had...
New macOS Malware Targets Cracked Apps
Security researchers have discovered a new and previously unknown macOS malware that exploits pirated software to infiltrate users’ systems.The malware, distinct...
Thai Court Blocks 9near.org to Avoid Exposure of 55M Citizens
The Criminal Court in Thailand has issued an order to block the website 9near.org after it threatened to expose the...
US-CERT Vulnerability Summary for the Week of January 15, 2024
The CISA Vulnerability Bulletin provides a summary of new vulnerabilities that have been recorded by the National Institute of Standards and...
North Korean Hackers Weaponize Fake Research to Deliver RokRAT Backdoor
Media organizations and high-profile experts in North Korean affairs have been at the receiving end of a new campaign orchestrated...
MavenGate Attack Could Let Hackers Hijack Java and Android via Abandoned Libraries
Several public and popular libraries abandoned but still used in Java and Android applications have been found susceptible to a...
NS-STEALER Uses Discord Bots to Exfiltrate Your Secrets from Popular Browsers
Cybersecurity researchers have discovered a new Java-based "sophisticated" information stealer that uses a Discord bot to exfiltrate sensitive data from...
