Google to Remove App that Made Google Pixel Devices Vulnerable to Attacks
A large percentage of Google's own Pixel devices shipped globally since September 2017 included dormant software that could be used...
News
OpenAI Blocks Iranian Influence Operation Using ChatGPT for U.S. Election Propaganda
OpenAI on Friday said it banned a set of accounts linked to what it said was an Iranian covert influence...
Attackers Exploit Public .env Files to Breach Cloud Accounts in Extortion Campaign
A large-scale extortion campaign has compromised various organizations by taking advantage of publicly accessible environment variable files (.env) that contain...
Florida-Based National Public Data Confirms Data Breach
National Public Data, a US background check company, suffered a data breach in April 2024 that could have exposed sensitive...
Geopolitical Tensions Drive Explosion in DDoS Attacks
Web distributed denial of service (DDoS) attacks rose by 265% in the first half of 2024 compared to H2 2023,...
Microsoft Mandates MFA for All Azure Sign-Ins
Microsoft has announced it is mandating multi-factor authentication (MFA) for all Azure sign-ins.Customers can select from multiple MFA options through...
Attackers Exploit Public .env Files to Breach Cloud and Social Media Accounts
A large-scale extortion campaign has compromised various organizations by taking advantage of publicly accessible environment variable files (.env) that contain...
Russian Hacker Jailed 3+ Years for Selling Stolen Credentials on Dark Web
A 27-year-old Russian national has been sentenced to over three years in prison for peddling financial information, login credentials, and...
Multi-Stage ValleyRAT Targets Chinese Users with Advanced Tactics
Chinese-speaking users are the target of an ongoing campaign that distributes malware known as ValleyRAT. "ValleyRAT is a multi-stage malware...
Russian Hackers Using Fake Brand Sites to Spread DanaBot and StealC Malware
Cybersecurity researchers have shed light on a sophisticated information stealer campaign that impersonates legitimate brands to distribute malware like DanaBot...
The Hidden Security Gaps in Your SaaS Apps: Are You Doing Due Diligence?
SaaS applications have become indispensable for organizations aiming to enhance productivity and streamline operations. However, the convenience and efficiency these...
Google Pixel Devices Shipped with Vulnerable App, Leaving Millions at Risk
A large percentage of Google's own Pixel devices shipped globally since September 2017 included dormant software that could be used...
New Banshee Stealer Targets 100+ Browser Extensions on Apple macOS Systems
Cybersecurity researchers have uncovered new stealer malware that's designed to specifically target Apple macOS systems. Dubbed Banshee Stealer, it's offered...
Ubuntu Linux Kernel Multiple Vulnerabilities
Multiple vulnerabilities were identified in Ubuntu Linux Kernel. A remote attacker could exploit some of these vulnerabilities to trigger denial...
F5 BIG-IP Sensitive Information Disclosure Vulnerability
A vulnerability was identified in F5 BIG-IP, a remote attacker could exploit this vulnerability to trigger sensitive information disclosure on the targeted system. Note:No patch...
Microsoft Fixes Nine Zero-Days on Patch Tuesday
Microsoft fixed nine zero-day vulnerabilities on its August Patch Tuesday yesterday, including six that have been exploited in the wild.These...
Critical Vulnerability Found in Microsoft’s AI Healthcare Chatbot
Severe vulnerabilities have been discovered in Microsoft’s AI healthcare chatbot service, allowing access to user and customer information, according to...
Cyber-Attack Spreads Phishing Scam Across Greater Manchester Areas
A cyber-attack has hit several boroughs across Greater Manchester, a metropolitan county in Northwest England, leaving thousands of residents vulnerable...
NCSC Calls on UK Firms to Join Mass Cyber-Deception Initiative
The UK’s leading cybersecurity agency has called on the country’s organizations to deploy cyber-deception technologies at scale, in a bid...
Research Uncovers New Microsoft Outlook Vulnerability
Security researchers have revealed a significant vulnerability in Microsoft Outlook. According to Morphisec Threat Labs, which discovered the flaw, CVE-2024-38173...
SolarWinds Urges Upgrade After Revealing Critical RCE Bug
IT management software provider SolarWinds has urged customers to immediately patch a critical vulnerability in its Web Help Desk platform.CVE-2024-28986...
New Phishing Attack Uses Sophisticated Infostealer Malware
A new sophisticated phishing attack featuring a stealthy infostealer malware that exfiltrates a wide range of sensitive data has been uncovered...
Google Warns of Iranian Cyber-Attacks on Presidential Campaigns
An Iranian state-backed threat actor is targeting individuals associated with the Harris and Trump Presidential campaigns, according to Google’s Threat...
Manufacturing Firm Loses $60m in BEC Scam
Chemical manufacturing company Orion has revealed it has lost $60m in a business email compromise (BEC) scam.In a filing to the...
