HTTP/2 Bomb: How Default Configurations Open a New DoS Vector
Jun 04, 2026
Categories
Top Articles
CVE-2025-48595: June 2026 Android Security Update Fixes Framework Zero-Day
Jun 03, 2026
Charter Data Breach: ShinyHunters Claims 42 Million Records Stolen on the Dark Web
May 29, 2026
April 2026: ShinyHunters Hits Medtronic and ADT as North Korean Hackers Drain DeFi Protocols
May 29, 2026
TrapDoor: Malicious npm, PyPI, Crates.io Packages Target Developer Secrets & AI Tooling
May 25, 2026
Jan 24, 2025
A New Wave Of Ransomware Campaigns Is Targeting Microsoft Teams
A New Wave Of Ransomware Campaigns Is Targeting Microsoft Teams For companies all over the globe, Microsoft Teams is becoming an essential tool for teamwork. Nevertheless, because to its extensive use...
Learn More
Jan 24, 2025
Exploited SonicWall Zero-Day and Multiple QNAP Vulnerabilities Demand ...
Exploited SonicWall Zero-Day and Multiple QNAP Vulnerabilities Demand Immediate Action Significant security vulnerabilities have been discovered, affecting SonicWall and QNAP products. These flaws, in...
Learn More
Jan 22, 2025
Unlock Threat Intelligence Insights with SOCRadar’s AI-Powered Podcast...
Unlock Threat Intelligence Insights with SOCRadar’s AI-Powered Podcast The cyber world is constantly changing. As technology advances, so do the threats that jeopardize organizations’ security. Decemb...
Learn More
Jan 20, 2025
How Star Blizzard Exploits WhatsApp in Spear Phishing Campaign
How Star Blizzard Exploits WhatsApp in Spear Phishing Campaign Cybersecurity experts are sounding the alarm over a novel spear phishing campaign by the Russian state-sponsored group known as Star Bliz...
Learn More
Jan 16, 2025
FortiGate Firewall Configs Dumped: Revisiting CVE-2022-40684 Exploitat...
FortiGate Firewall Configs Dumped: Revisiting CVE-2022-40684 Exploitation [Update] January 18, 2025: “Fortinet’s Official Statement on the Breach” In a shocking development, the fallout from the 2022 ...
Learn More
Jan 16, 2025
Pumakit: A Sophisticated Linux Rootkit Targeting Critical Infrastructu...
Pumakit: A Sophisticated Linux Rootkit Targeting Critical Infrastructure In recent months, Pumakit, a stealthy Linux rootkit, has emerged as a significant threat, targeting critical infrastructure acr...
Learn More
Jan 15, 2025
January 2025 Patch Tuesday Highlights: 8 Zero-Days, 159 CVEs Fixed; SA...
January 2025 Patch Tuesday Highlights: 8 Zero-Days, 159 CVEs Fixed; SAP & Fortinet Updates [Update] January 16, 2025: “Growing Risk from CVE-2024-55591 as FortiGate Exploits Resurface” Microsoft h...
Learn More
Jan 14, 2025
An Overview of the Nominet Security Breach Tied to Ivanti VPN Vulnerab...
An Overview of the Nominet Security Breach Tied to Ivanti VPN Vulnerability (CVE-2025-0282) [Update] January 17, 2025: “PoC Exploit Released for Ivanti Connect Secure CVE-2025-0282 Vulnerability” Nomi...
Learn More
Jan 10, 2025
Major Cyber Attacks in Review: December 2024
Major Cyber Attacks in Review: December 2024 December 2024 saw a series of significant cyber attacks that targeted multiple industries, from healthcare to telecommunications. Ransomware groups like Bl...
Learn More
Jan 09, 2025
Ivanti Zero-Day Exploited in Connect Secure, SonicWall SSL VPN and SSH...
Ivanti Zero-Day Exploited in Connect Secure, SonicWall SSL VPN and SSH Vulnerabilities, KerioControl Flaw [Update] February 17, 2025: “SPAWNCHIMERA Malware Actively Exploiting CVE-2025-0282” [Update]...
Learn More
Jan 08, 2025
Gravy Analytics Breach Puts Millions of Location Records at Risk and H...
Gravy Analytics Breach Puts Millions of Location Records at Risk and Highlights Privacy Threats In an alarming security event, Gravy Analytics, a location data broker, has allegedly fallen victim to a...
Learn More
Jan 07, 2025
Turla Cyber Campaign Targeting Pakistan's Critical Infrastructure
Turla Cyber Campaign Targeting Pakistan’s Critical Infrastructure Among the most notorious cyber threat actors, the Turla group has garnered attention for its sophisticated and complex cyber attacks. ...
Learn More
Jan 06, 2025
Black Basta’s Tactical Evolution: Deploying Zbot, DarkGate, and Bespok...
Black Basta’s Tactical Evolution: Deploying Zbot, DarkGate, and Bespoke Malware In the ever-escalating landscape of cyber threats, Black Basta has emerged as a formidable ransomware group, continually...
Learn More
Jan 03, 2025
Cerberus Unchained: The Multi-Stage Trojan Banking Campaign Targeting ...
Cerberus Unchained: The Multi-Stage Trojan Banking Campaign Targeting Android Devices The Cerberus Android banking trojan has reemerged in a sophisticated multi-stage attack campaign targeting banking...
Learn More
Jan 03, 2025
The WarmCookie Malware Campaign: A Sneaky Threat Posed by Fake Browser...
The WarmCookie Malware Campaign: A Sneaky Threat Posed by Fake Browser Updates The WarmCookie malware campaign poses a significant threat by deceiving users into downloading malicious software under t...
Learn More
Jan 02, 2025
Critical Vulnerabilities in Progress WhatsUp Gold (CVE-2024-12108, CVE...
Critical Vulnerabilities in Progress WhatsUp Gold (CVE-2024-12108, CVE-2024-12106); PoC Available for Oracle WebLogic Flaw Three severe vulnerabilities have recently been uncovered in WhatsUp Gold, a ...
Learn More
Dec 31, 2024
ClickFix Campaign: Fake Google Meet Alerts Spread Malware Across Windo...
ClickFix Campaign: Fake Google Meet Alerts Spread Malware Across Windows and macOS The ClickFix campaign represents a sophisticated use of social engineering to deploy malware across both Windows and ...
Learn More
Dec 31, 2024
Water Makara Campaign: A Sophisticated Spear-Phishing Attack on Brazil...
Water Makara Campaign: A Sophisticated Spear-Phishing Attack on Brazilian Enterprises The Water Makara campaign is a highly sophisticated spear-phishing attack aimed specifically at Brazilian organiza...
Learn More
Dec 31, 2024
Chinese State-Sponsored Threat Actors Breach U.S. Treasury Department ...
Chinese State-Sponsored Threat Actors Breach U.S. Treasury Department in Major Cybersecurity Incident [Update] January 7, 2025: “CISA Provides Update on U.S. Treasury Breach” Chinese state-sponsored ...
Learn More
Dec 31, 2024
Four-Faith Routers Exploited Through CVE-2024-12856 Vulnerability
Four-Faith Routers Exploited Through CVE-2024-12856 Vulnerability A newly discovered vulnerability, tracked as CVE-2024-12856, is actively being exploited in Four-Faith routers. This vulnerability all...
Learn More
