SmoothOperator Supply Chain Attack Targeting 3CX VOIP Desktop Client
SmoothOperator Supply Chain Attack Targeting 3CX VOIP Desktop Client [Update] June 21, 2023: Researchers found exposed Elasticsearch and Kibana instances of a third-party vendor of 3CX. Find under the...
Top 20 Cybersecurity Newsletters
Top 20 Cybersecurity Newsletters New threat actors, vulnerabilities, fraud schemes, and other attack campaigns each day make it more challenging to stay current with the cyber world; however, staying ...
How to Maintain Your Online Security? (2023 Edition)
How to Maintain Your Online Security? (2023 Edition) If you’re concerned about your online security and getting more nervous about that, that’s entirely normal. Every day we hear the news ...
Twitter Source Code Leaked on Public GitHub Repository
Twitter Source Code Leaked on Public GitHub Repository The popular social media platform Twitter is actively searching for the person responsible for a recent data leak and any other individ...
Hacktivism on the Rise: KillNet Anonymous Sudan's Cyber Campaign Targe...
Hacktivism on the Rise: KillNet Anonymous Sudan’s Cyber Campaign Targets Australia The world of cyberattacks continues to evolve with the emergence of new hacktivist groups that target different count...
Magecart Skimmer Attack Targets WooCommerce and Authorize.net Payment ...
Magecart Skimmer Attack Targets WooCommerce and Authorize.net Payment Gateway Plugin Online transactions ease our daily lives but also pose a serious risk to both businesses and their customers. ...
CISA Issues a New Warning for Vulnerabilities in Industrial Control Sy...
CISA Issues a New Warning for Vulnerabilities in Industrial Control Systems (ICS) The recent advisories issued by the US Cybersecurity and Infrastructure Security Agency (CISA) highlight the serious v...
Attackers Exploit Adobe Acrobat Sign to Distribute RedLine Stealer Mal...
Attackers Exploit Adobe Acrobat Sign to Distribute RedLine Stealer Malware Cybercriminals employ many ways to distribute malware, including taking advantage of legitimate services. Recently, security ...
Telegram 2.0: A New Era of Privacy
Telegram 2.0: A New Era of Privacy On December 6, 2022, Telegram shared a new update blog on its blog page. In this blog post, specific topics attract attention, primarily based on privacy, and will a...
SAP Fixes Multiple Critical Vulnerabilities on March 2023 Patch Day
SAP Fixes Multiple Critical Vulnerabilities on March 2023 Patch Day SAP has recently fixed 19 vulnerabilities as part of its March 2023 patch day. Five vulnerabilities are rated critical and...
Microsoft Fixes Exploited Zero-Days in March Patch Tuesday (CVE-2023-2...
Microsoft Fixes Exploited Zero-Days in March Patch Tuesday (CVE-2023-23397 & CVE-2023-24880) [Update] December 5, 2023: Microsoft has officially attributed the exploitation of CVE-2023-23397 to AP...
Third-Party Breach Led to Exposure of 9M AT&T Customers' Informati...
Third-Party Breach Led to Exposure of 9M AT&T Customers’ Information Recently, AT&T revealed that a data breach in January compromised the personal information of about 9 ...
SOCRadar Announces $5M Series A Funding for New Extended Threat Intell...
SOCRadar Announces $5M Series A Funding for New Extended Threat Intelligence (XTI) Cybersecurity Platform Funding will support the expansion of SOCRadar’s single-platform early warning system that off...
Critical Unauthenticated RCE Vulnerability in Fortinet Products: CVE-2...
Critical Unauthenticated RCE Vulnerability in Fortinet Products: CVE-2023-25610 Fortinet has revealed a critical severity vulnerability, tracked as CVE-2023-25610, in a new advisory. It is a buff...
SOCRadar is the Gold Winner of Three Cybersecurity Excellence Awards
SOCRadar is the Gold Winner of Three Cybersecurity Excellence Awards We are thrilled to announce that SOCRadar, a leading provider of cyber threat intelligence solutions, has been awarded in three cat...
PoC Available for Critical RCE Vulnerability in Microsoft Word (CVE-20...
PoC Available for Critical RCE Vulnerability in Microsoft Word (CVE-2023-21716) CVE-2023-21716 was discovered in Microsoft Word last year. It is a critical remote code execution (RCE) vulnerability in...
Aruba Networks Fixes Six Critical RCE Vulnerabilities Affecting ArubaO...
Aruba Networks Fixes Six Critical RCE Vulnerabilities Affecting ArubaOS In a recent security advisory, Aruba Networks disclosed thirty-three vulnerabilities. Six of them were rated as critical. The vu...
Fix Available for Double Free Vulnerability in OpenSSH 9.1 (CVE-2023-2...
Fix Available for Double Free Vulnerability in OpenSSH 9.1 (CVE-2023-25136) CVE-2023-25136, a pre-authentication double-free vulnerability, has been fixed in OpenSSH version 9.2p1. The vulnerabil...
VMware Fixes Critical Vulnerability in Carbon Black App Control (CVE-2...
VMware Fixes Critical Vulnerability in Carbon Black App Control (CVE-2023-20858) VMware has recently rolled out a patch to address a critical vulnerability in its Carbon Black App Control product, whi...
Fortinet Patched Critical RCE Vulnerabilities in FortiNAC and FortiWeb...
Fortinet Patched Critical RCE Vulnerabilities in FortiNAC and FortiWeb: CVE-2022-39952 and CVE-2021-42756 [February 23, 2023] Update: The vulnerability has been exploited. Added the subheading“FortiNA...