HTTP/2 Bomb: How Default Configurations Open a New DoS Vector
Jun 04, 2026
Categories
Top Articles
CVE-2025-48595: June 2026 Android Security Update Fixes Framework Zero-Day
Jun 03, 2026
Charter Data Breach: ShinyHunters Claims 42 Million Records Stolen on the Dark Web
May 29, 2026
April 2026: ShinyHunters Hits Medtronic and ADT as North Korean Hackers Drain DeFi Protocols
May 29, 2026
TrapDoor: Malicious npm, PyPI, Crates.io Packages Target Developer Secrets & AI Tooling
May 25, 2026
May 22, 2024
Atlassian and Ivanti Address Critical Vulnerabilities in May Updates: ...
Atlassian and Ivanti Address Critical Vulnerabilities in May Updates: CVE-2024-21683, CVE-2023-4759, CVE-2024-29822, and More [Update] October 3, 2024: “CISA Added Ivanti EPM Vulnerability (CVE-2024-2...
Learn More
May 22, 2024
Critical Patch for Veeam Backup Enterprise Manager (VBEM): CVE-2024-29...
Critical Patch for Veeam Backup Enterprise Manager (VBEM): CVE-2024-29849 Could Allow Account Takeover [Update] June 10, 2024: “PoC Exploit Released for the Critical CVE-2024-29849 Vulnerability in Ve...
Learn More
May 21, 2024
Critical Auth Bypass in GitHub Enterprise Server, CVE-2024-4985; PoC A...
Critical Auth Bypass in GitHub Enterprise Server, CVE-2024-4985; PoC Available for QNAP QTS’ CVE-2024-27130 The vulnerability landscape continues to grow, introducing critical risks that can enable ma...
Learn More
May 21, 2024
CVE-2024-4367 in PDF.js Allows JavaScript Execution, Potentially Affec...
CVE-2024-4367 in PDF.js Allows JavaScript Execution, Potentially Affecting Millions of Websites: Update Now Security experts identified a significant vulnerability in PDF.js, a widely used JavaScript ...
Learn More
May 16, 2024
Critical Security Updates for Git SCM: CVE-2024-32002 & CVE-2024-3...
Critical Security Updates for Git SCM: CVE-2024-32002 & CVE-2024-32004 Lead to RCE [Update] May 17, 2024: “Exploit for the Critical Git Vulnerability (CVE-2024-32002)” The Git SCM project has rec...
Learn More
May 16, 2024
BreachForums Seized Once Again, What is Next?
BreachForums Seized Once Again, What is Next? [Update] July 24, 2024: “Threat Actor Emo Leaks Personal Information of 212,414 BreachForums 1.0 Members” [Update] June 13, 2024: “BreachForums Back Onlin...
Learn More
May 15, 2024
SAP Security Patch Day May 2024: Critical CVE-2024-33006 Vulnerability...
SAP Security Patch Day May 2024: Critical CVE-2024-33006 Vulnerability Could Lead to System Takeover On May 14, 2024, SAP delivered its monthly security updates, which included 14 new Security Notes a...
Learn More
May 15, 2024
Microsoft May 2024 Patch Tuesday Highlights: 61 CVEs, Actively Exploit...
Microsoft May 2024 Patch Tuesday Highlights: 61 CVEs, Actively Exploited Zero-Days (CVE-2024-30051, CVE-2024-30040) [Update] September 10, 2024: “PoC Exploit Available for Windows DWM Core Library Ele...
Learn More
May 10, 2024
Alleged Europol Breach by IntelBroker
Alleged Europol Breach by IntelBroker [May 11, 2024] Europol made an announcement confirming the breach and added details. [May 11, 2024] Europol data is allegedly sold to an unknown buyer. Europol, t...
Learn More
May 10, 2024
BogusBazaar Scams 850K Shoppers Through Fraudulent E-Commerce Sites
BogusBazaar Scams 850K Shoppers Through Fraudulent E-Commerce Sites In a recent investigation, researchers exposed an expansive network of fraudulent e-commerce websites that scammed over 850,000 vict...
Learn More
May 10, 2024
Major Cyber Attacks in Review: April 2024
Major Cyber Attacks in Review: April 2024 April 2024 witnessed major cyber attacks targeting sectors from government bodies to technology firms, emphasizing the ever-present and escalating threats in...
Learn More
May 08, 2024
Veeam Service Provider Console Affected by Severe RCE Vulnerability: C...
Veeam Service Provider Console Affected by Severe RCE Vulnerability: CVE-2024-29212 Veeam has recently disclosed a significant security vulnerability within Veeam Service Provider Console (VSPC), iden...
Learn More
May 03, 2024
New High-Severity Vulnerability in Apache ActiveMQ Poses Risk of Unaut...
New High-Severity Vulnerability in Apache ActiveMQ Poses Risk of Unauthorized Access: CVE-2024-32114 A high-severity vulnerability, CVE-2024-32114, has been discovered in Apache ActiveMQ, potentially ...
Learn More
Apr 30, 2024
Latin America Under Threat: The Venom RAT Campaign's Cyber Invasion In...
Latin America Under Threat: The Venom RAT Campaign’s Cyber Invasion Initiative In Latin America, there is a significant cyber threat posed by the Venom RAT campaign, necessitating swift and decisive a...
Learn More
Apr 26, 2024
ShadowRay Campaign Exploits Critical Ray Framework Vulnerabilities to ...
ShadowRay Campaign Exploits Critical Ray Framework Vulnerabilities to Compromise AI Workloads Globally Since September 5, 2023, a sophisticated cyber threat named the ‘ShadowRay’ campaign has targeted...
Learn More
Apr 24, 2024
APT28 Deploys ‘GooseEgg’ in Attacks Exploiting the Windows Print Spool...
APT28 Deploys ‘GooseEgg’ in Attacks Exploiting the Windows Print Spooler Vulnerability, CVE-2022-38028 Microsoft recently shed light on a campaign orchestrated by the Russian-based threat actor Forest...
Learn More
Apr 18, 2024
OpenMetadata Vulnerabilities Allow Attackers to Cryptomine in Kubernet...
OpenMetadata Vulnerabilities Allow Attackers to Cryptomine in Kubernetes Environments Recent findings from a Microsoft security blog reveal that attackers exploit newly discovered critical vulnerabili...
Learn More
Apr 17, 2024
CVE-2024-21006 in Oracle WebLogic Server – Oracle’s April 2024 Update ...
CVE-2024-21006 in Oracle WebLogic Server – Oracle’s April 2024 Update Brings 441 New Security Patches Oracle has released its Critical Patch Update advisory for April 2024, which addresses vulnerabili...
Learn More
Apr 17, 2024
Committing a Sin, OpenJS Foundation and XZ Utils Incidents: Lessons in...
Committing a Sin, OpenJS Foundation and XZ Utils Incidents: Lessons in Open Source Security Recent events have brought to light critical issues related to cybersecurity threats and social engineering ...
Learn More
Apr 17, 2024
Ivanti Avalanche Received an Update for Over Two Dozen Vulnerabilities...
Ivanti Avalanche Received an Update for Over Two Dozen Vulnerabilities (CVE-2024-24996, CVE-2024-29204…) Ivanti has recently issued security updates to address multiple vulnerabilities in Avalanche. T...
Learn More
