NodeStealer’s Evolution: A Growing Threat to Facebook Accounts and Beyond
Nov 22, 2024
Categories
Top Articles
Financial Software Company Finastra Investigates Recent Security Incident
Nov 21, 2024
Privilege Escalation Risks in ‘needrestart’ Utility Threaten Linux Systems; OSS-Fuzz Finds 26 Hidden Flaws
Nov 21, 2024
Apple, Oracle, and Apache Issue Critical Updates for Actively Exploited and High-Risk Vulnerabilities
Nov 20, 2024
Exploited PAN-OS Zero-Days Threaten Thousands of Firewalls (CVE-2024-0012 and CVE-2024-9474)
Nov 19, 2024
Oct 30, 2024
New Zero-Day Vulnerability in Windows Themes Threatens NTLM Security
New Zero-Day Vulnerability in Windows Themes Threatens NTLM Security A newly discovered zero-day vulnerability in Windows Themes files exposes users’ NTLM credentials, posing serious risks for remote ...
Learn More
Oct 29, 2024
Free ISP Breach Compromises Millions, Threat Actor Threatens Data Leak
Free ISP Breach Compromises Millions, Threat Actor Threatens Data Leak Free, a leading French ISP and subsidiary of Iliad Group, confirmed a major data breach on October 26, 2024, impacting millions o...
Learn More
Oct 24, 2024
Lazarus Exploits Google Chrome Zero-Day to Steal Cryptocurrency in ‘De...
Lazarus Exploits Google Chrome Zero-Day to Steal Cryptocurrency in ‘DeTankZone’ Campaign (CVE-2024-4947) Earlier in 2024, the North Korean Lazarus APT group exploited a critical zero-day vulnerability...
Learn More
Oct 24, 2024
FortiManager Zero-Day ‘FortiJump’ Is Now Publicly Addressed (CVE-2024-...
FortiManager Zero-Day ‘FortiJump’ Is Now Publicly Addressed (CVE-2024-47575) [Update] November 18, 2024: “PoC Released for FortiJump Vulnerability (CVE-2024-47575)” [Update] October 25, 2...
Learn More
Oct 22, 2024
Roundcube Vulnerability (CVE-2024-37383) Exploited in Phishing Attacks...
Roundcube Vulnerability (CVE-2024-37383) Exploited in Phishing Attacks Targeting Government Agencies for Credential Theft A vulnerability in the popular open-source Roundcube Webmail, CVE-2024-37383, ...
Learn More
Oct 22, 2024
ScienceLogic SL1 0-Day from Rackspace Breach Added to CISA KEV (CVE-20...
ScienceLogic SL1 0-Day from Rackspace Breach Added to CISA KEV (CVE-2024-9537) A critical security vulnerability was recently discovered in the ScienceLogic SL1 Portal (formerly EM7), exploited as a z...
Learn More
Oct 22, 2024
IntelBroker’s Alleged Cisco Breach: A Deep Dive into the Claims and Re...
IntelBroker’s Alleged Cisco Breach: A Deep Dive into the Claims and Responses [Update] November 7, 2024: “IntelBroker Raises Stakes, Claims Cisco Breach Tops 800GB” On October 14, 2024, IntelBroker, t...
Learn More
Oct 22, 2024
Critical VMware Vulnerability Patched Again in vCenter Server: CVE-202...
Critical VMware Vulnerability Patched Again in vCenter Server: CVE-2024-38812 [Updated] November 19, 2024: “VMware vCenter Server Vulnerabilities (CVE-2024-38812 and CVE-2024-38813) Actively Exp...
Learn More
Oct 18, 2024
An Overview of Microsoft Digital Defense Report 2024
An Overview of Microsoft Digital Defense Report 2024 The Microsoft Digital Defense Report 2024 offers a detailed view of the increasingly intricate global cybersecurity landscape. The tech giant revea...
Learn More
Oct 16, 2024
Critical Vulnerabilities Affecting GitHub Enterprise Server, Kubernete...
Critical Vulnerabilities Affecting GitHub Enterprise Server, Kubernetes Image Builder, and GiveWP Plugin Recently, several critical vulnerabilities have been disclosed, affecting widely used platforms...
Learn More
Oct 11, 2024
Major Cyber Attacks in Review: September 2024
Major Cyber Attacks in Review: September 2024 September 2024 saw a wave of major cyber attacks hitting critical sectors. BingX and Indodax, two prominent cryptocurrency platforms, suffered combined lo...
Learn More
Oct 10, 2024
Internet Archive Data Breach and DDoS Attacks: What You Need to Know
Internet Archive Data Breach and DDoS Attacks: What You Need to Know [Update] October 21, 2024: “New Breach Hits Internet Archive, API Keys and Source Code Exposed” The Internet Archive has come under...
Learn More
Oct 10, 2024
Critical Vulnerabilities in Palo Alto Networks Expedition Could Expose...
Critical Vulnerabilities in Palo Alto Networks Expedition Could Expose Firewall Credentials, Patch Available [Updated] November 15, 2024: “CISA Alerts of Active Exploitation: CVE-2024-9463 and C...
Learn More
Oct 09, 2024
New Ivanti CSA Zero-Days Under Active Exploitation; Critical RCE in Co...
New Ivanti CSA Zero-Days Under Active Exploitation; Critical RCE in Connect Secure & Policy Secure [UPDATE] October 14, 2024: “Nation-State Attack Exploits Ivanti CSA Vulnerabilities, More D...
Learn More
Oct 09, 2024
October 2024 Patch Tuesday Update – Microsoft Fixes 117 Vulnerabilitie...
October 2024 Patch Tuesday Update – Microsoft Fixes 117 Vulnerabilities, 2 Actively Exploited Zero-Days [Update] October 22, 2024: “PoC Exploit Released for Critical WinReg Vulnerability (CVE-20...
Learn More
Oct 08, 2024
Qualcomm Addresses Exploited Zero-Day and a Critical RCE in October 20...
Qualcomm Addresses Exploited Zero-Day and a Critical RCE in October 2024 Security Bulletin Just yesterday, Qualcomm rolled out its latest monthly security bulletin, addressing numerous vulnerabilities...
Learn More
Oct 07, 2024
FBCS Breach Exposes Millions, Comcast and Truist Bank Affected
FBCS Breach Exposes Millions, Comcast and Truist Bank Affected In February 2024, Financial Business and Consumer Solutions (FBCS), a U.S.-based debt collection agency, experienced a significant data b...
Learn More
Oct 05, 2024
CosmicSting (CVE-2024-34102) Vulnerability Under Active Exploitation
CosmicSting (CVE-2024-34102) Vulnerability Under Active Exploitation In a concerning development for e-commerce security, threat actors are actively exploiting a critical vulnerability in Adobe Commer...
Learn More
Oct 04, 2024
Foxit Reader Vulnerability (CVE-2024-28888): PoC Code Released, Patch ...
Foxit Reader Vulnerability (CVE-2024-28888): PoC Code Released, Patch to Prevent Attacks Details and a Proof-of-Concept (PoC) exploit code for a serious vulnerability in Foxit Reader have recently eme...
Learn More
Oct 02, 2024
RCE Vulnerability in Zimbra (CVE-2024-45519) Actively Exploited, Admin...
RCE Vulnerability in Zimbra (CVE-2024-45519) Actively Exploited, Administrators Advised to Patch Immediately Recently, Zimbra, a widely used email and collaboration platform, addressed a critical vuln...
Learn More
