HTTP/2 Bomb: How Default Configurations Open a New DoS Vector
Jun 04, 2026
Categories
Top Articles
CVE-2025-48595: June 2026 Android Security Update Fixes Framework Zero-Day
Jun 03, 2026
Charter Data Breach: ShinyHunters Claims 42 Million Records Stolen on the Dark Web
May 29, 2026
April 2026: ShinyHunters Hits Medtronic and ADT as North Korean Hackers Drain DeFi Protocols
May 29, 2026
TrapDoor: Malicious npm, PyPI, Crates.io Packages Target Developer Secrets & AI Tooling
May 25, 2026
Jul 10, 2024
Cyber Security Aspect of the 2024 NATO Summit
Cyber Security Aspect of the 2024 NATO Summit [Update] July 11, 2024: “Washington Summit Declaration” The idea of building alliances was already important for increasing the security of kingdoms and l...
Learn More
Jul 04, 2024
Critical HTTP File Server Vulnerability (CVE-2024-23692) Actively Expl...
Critical HTTP File Server Vulnerability (CVE-2024-23692) Actively Exploited to Deploy Cryptomining Malware, RATs, Stealers Researchers have identified active exploitation targeting a critical vulnerab...
Learn More
Jul 03, 2024
Velvet Ant's Strategic Targeting: A Long-Term Cyber Espionage Campaign...
Velvet Ant’s Strategic Targeting: A Long-Term Cyber Espionage Campaign Against F5 BIG-IP Systems In the constantly evolving landscape of cybersecurity, the Velvet Ant Advanced Persistent Threat (APT) ...
Learn More
Jul 01, 2024
New Security Vulnerability "regreSSHion" Exposes Millions of Linux Ope...
New Security Vulnerability “regreSSHion” Exposes Millions of Linux OpenSSH Servers to RCE Attacks (CVE-2024-6387) [Update] July 2, 2024: “PoC Exploit for regreSSHion Vulnerability (CVE-2024-6387) Surf...
Learn More
Jun 27, 2024
GitLab Issues Critical Patches for CE/EE Alongside Fortra & MOVEit (CV...
GitLab Issues Critical Patches for CE/EE Alongside Fortra & MOVEit (CVE-2024-5655, CVE-2024-5276, CVE-2024-5805, CVE-2024-5806) GitLab has rolled out new security updates for both its Community Ed...
Learn More
Jun 26, 2024
Polyfill Fuels Supply Chain Concerns with Malicious Redirects: +100,00...
Polyfill Fuels Supply Chain Concerns with Malicious Redirects: +100,000 Websites Affected Latest Update: “Polyfill Issue Affects +380,000 Hosts and Major Companies, With Ongoing New Domain Registratio...
Learn More
Jun 18, 2024
VMware vCenter Server Updates Address Critical RCE and Privilege Escal...
VMware vCenter Server Updates Address Critical RCE and Privilege Escalation Vulnerabilities (CVE-2024-37079, CVE-2024-37080, CVE-2024-37081) Broadcom has released a security update for its popular man...
Learn More
Jun 12, 2024
Microsoft’s June 2024 Patch Tuesday Highlights KeyTrap Zero-Day, Criti...
Microsoft’s June 2024 Patch Tuesday Highlights KeyTrap Zero-Day, Critical MSMQ Flaw; Windows LPE Exploit [Update] December 24, 2024: “CVE-2024-30085 PoC Exploit Released, Immediate Action Required to ...
Learn More
Jun 11, 2024
Major Cyber Attacks in Review: May 2024
Major Cyber Attacks in Review: May 2024 May 2024 saw several major cyber attacks across diverse sectors, including cryptocurrency, cloud services, and online archives. Notable incidents include the $3...
Learn More
Jun 10, 2024
Malvertising Campaign Targets Windows Administrators Using PuTTy and W...
Malvertising Campaign Targets Windows Administrators Using PuTTy and WinSCP An AI illustration of the malvertising campaign using PuTTy and WinSCP In the ever-evolving landscape of digital security...
Learn More
Jun 07, 2024
Grandoreiro Malware Campaign: A Global Threat to Banking Security
Grandoreiro Malware Campaign: A Global Threat to Banking Security The Grandoreiro banking trojan was first observed in 2016. This threat is described as a highly sophisticated and adaptive Windows-bas...
Learn More
Jun 05, 2024
Zyxel NAS Devices’ EoL Models Patched for Critical Code Execution Vuln...
Zyxel NAS Devices’ EoL Models Patched for Critical Code Execution Vulnerabilities: CVE-2024-29972, CVE-2024-29973, CVE-2024-29974 [Update] June 24, 2024: “Critical Zyxel NAS Vulnerability (CVE-2024-29...
Learn More
Jun 02, 2024
Overview of the Snowflake Breach: Threat Actor Offers Data of Cloud Co...
Overview of the Snowflake Breach: Threat Actor Offers Data of Cloud Company’s Customers This blog actively documents significant updates related to the Snowflake Breach. Latest update: Arkana Security...
Learn More
May 31, 2024
New in CISA KEV: Check Point VPN Zero-Day CVE-2024-24919 & Linux Kerne...
New in CISA KEV: Check Point VPN Zero-Day CVE-2024-24919 & Linux Kernel Flaw CVE-2024-1086 [Update] CVE-2024-1086 Now Tied to Ransomware Attacks The U.S. Cybersecurity and Infrastructure Agency (C...
Learn More
May 31, 2024
GuptiMiner Campaign: The Trojan Tango of Infiltrating Antivirus Update...
GuptiMiner Campaign: The Trojan Tango of Infiltrating Antivirus Updates for Deception The GuptiMiner malware campaign is creating significant disruption in the cybersecurity landscape by exploiting a ...
Learn More
May 30, 2024
Progress Telerik Report Server Receives Security Update for Critical A...
Progress Telerik Report Server Receives Security Update for Critical Auth Bypass Vulnerability, CVE-2024-4358 [Update] June 14, 2024: “CISA Adds CVE-2024-4358 to Known Exploited Vulnerabilities Catalo...
Learn More
May 29, 2024
PoC Exploit for CVE-2024-4956 in Sonatype Nexus Repository 3 Draws Thr...
PoC Exploit for CVE-2024-4956 in Sonatype Nexus Repository 3 Draws Threat Actors’ Attention Sonatype recently released a security advisory alerting users to a high-severity security vulnerability, ide...
Learn More
May 27, 2024
New Cyber Attack Campaign Bombarding Organizations with Fake Emails an...
New Cyber Attack Campaign Bombarding Organizations with Fake Emails and Phone Calls The cyber threat landscape is always changing, with attackers using new methods to get into organizations and exploi...
Learn More
May 24, 2024
CVE-2020-17519 in Apache Flink Enters CISA’s KEV Catalog & GitLab ...
CVE-2020-17519 in Apache Flink Enters CISA’s KEV Catalog & GitLab Patches XSS Flaw, CVE-2024-4835 The U.S. Cybersecurity and Infrastructure Security Agency (CISA) has recently updated its Known Ex...
Learn More
May 24, 2024
DNSBomb: A New DoS Threat Targeting Critical Internet Infrastructure
DNSBomb: A New DoS Threat Targeting Critical Internet Infrastructure Illustrative Image – Generated by DALL-E ...
Learn More
