FortiGate Devices Compromised by Stealthy Backdoor Technique
Apr 17, 2025
Categories
Top Articles
TL;DR: MITRE CVE Program Funding Expiration – What CISOs Must Know
Apr 17, 2025
BidenCash Dark Web Market Leaks Nearly One Million Credit Cards
Apr 16, 2025
BreachForums is Offline: A New Twist or Just Another Cyber Shenanigan?
Apr 16, 2025
Critical Fortinet Vulnerability (CVE-2024-48887) Puts FortiSwitch Admin Credentials at Risk
Apr 10, 2025
Dec 19, 2024
The Year of Takedowns: Significant Law Enforcement Operations of 2024
The Year of Takedowns: Significant Law Enforcement Operations of 2024 As 2024 comes to a close, the global fight against cybercrime has witnessed a series of groundbreaking law enforcement operations ...
Learn More
Dec 16, 2024
Cleo File Transfer Vulnerabilities (CVE-2024-50623, CVE-2024-55956) – ...
Cleo File Transfer Vulnerabilities (CVE-2024-50623, CVE-2024-55956) – Cl0P’s Latest Attack Vector [Update] April 8, 2025: “WK Kellogg Confirms Data Breach Tied to Cleo Exploits” [Update] ...
Learn More
Dec 14, 2024
BadBox Malware Compromises 30,000 Devices in Germany
BadBox Malware Compromises 30,000 Devices in Germany The German Federal Office for Information Security (BSI) has taken decisive action to stop the BadBox malware campaign, which affected over 30,000 ...
Learn More
Dec 12, 2024
Major Cyber Attacks in Review: November 2024
Major Cyber Attacks in Review: November 2024 November 2024 brought several high-profile cyber attacks that targeted critical sectors, including telecommunications, supply chain management, and healthc...
Learn More
Dec 11, 2024
Critical Ivanti CSA Auth Bypass (CVE-2024-11639) Patched Alongside Oth...
Critical Ivanti CSA Auth Bypass (CVE-2024-11639) Patched Alongside Other High-Impact Flaws Ivanti recently released critical security updates to address several high-impact vulnerabilities in its prod...
Learn More
Dec 11, 2024
Cryptojacking Campaign Targets Docker and Kubernetes: Surge in Contain...
Cryptojacking Campaign Targets Docker and Kubernetes: Surge in Container-Based Attacks A recent surge in cryptojacking campaigns has targeted unsecured Docker and Kubernetes environments, exploiting m...
Learn More
Dec 11, 2024
December 2024 Patch Tuesday Update – One Actively Exploited Zero-Day, ...
December 2024 Patch Tuesday Update – One Actively Exploited Zero-Day, Multiple Critical RCEs; SAP Updates [Update] January 2, 2025: “PoC Exploit Available for Critical CVE-2024-49112 “LDAP Nightmare” ...
Learn More
Dec 10, 2024
Termite Ransomware Attack on Blue Yonder: What You Need to Know
Termite Ransomware Attack on Blue Yonder: What You Need to Know In late November 2024, Blue Yonder, a critical provider of supply chain management solutions, fell victim to a ransomware attack attribu...
Learn More
Dec 10, 2024
OpenWrt’s Attended SysUpgrade (ASU) Vulnerability Exposes Routers to M...
OpenWrt’s Attended SysUpgrade (ASU) Vulnerability Exposes Routers to Malicious Firmware Attacks OpenWrt, a popular open-source Linux-based embedded operating system, recently discovered a critical vul...
Learn More
Dec 06, 2024
Mitel MiCollab PoC Exploit Links CVE-2024-41713 and Zero-Day, Exposing...
Mitel MiCollab PoC Exploit Links CVE-2024-41713 and Zero-Day, Exposing Sensitive Files [Update] January 8, 2025: “CISA Adds Mitel MiCollab Vulnerabilities to KEV Catalog” Cyberattacks tar...
Learn More
Dec 06, 2024
Manson Market Takedown: Europol Aids Law Enforcement Operation to Disr...
Manson Market Takedown: Europol Aids Law Enforcement Operation to Disrupt Online Fraud The digital age has opened the way for increasingly sophisticated cybercriminal networks. These groups target ind...
Learn More
Dec 05, 2024
How Tariffs Impact Supply Chain Security and Strategies to Mitigate Ri...
How Tariffs Impact Supply Chain Security and Strategies to Mitigate Risks Recent announcements regarding new tariffs on China, Mexico, and Canada highlight a looming shift in global trade dynamics. Wi...
Learn More
Dec 04, 2024
Veeam Service Provider Console (VSPC) Users Urged to Patch CVE-2024-42...
Veeam Service Provider Console (VSPC) Users Urged to Patch CVE-2024-42448 and CVE-2024-42449 Veeam has recently released patches addressing two serious security vulnerabilities in its Service Provider...
Learn More
Dec 04, 2024
Old Cisco ASA Vulnerability (CVE-2014-2120) Fuels Androxgh0st Botnet A...
Old Cisco ASA Vulnerability (CVE-2014-2120) Fuels Androxgh0st Botnet Activity Cisco has issued a fresh warning regarding CVE-2014-2120, a decade-old vulnerability in its Adaptive Security Appliance (A...
Learn More
Dec 03, 2024
International Operation Dismantles MATRIX: A Sophisticated Encrypted M...
International Operation Dismantles MATRIX: A Sophisticated Encrypted Messaging Service The importance of international collaboration in the fight against cybercrime has once again been demonstrated. M...
Learn More
Nov 29, 2024
Zyxel Firewalls Exploited for Ransomware Attacks; 20 Security Flaws Di...
Zyxel Firewalls Exploited for Ransomware Attacks; 20 Security Flaws Discovered in Advantech Access Points [Update] December 4, 2024: Added details about CVE-2024-11667’s inclusion in CISA’...
Learn More
Nov 27, 2024
RomCom Backdoor Attacks Use Zero-Day Exploits in Mozilla and Windows (...
RomCom Backdoor Attacks Use Zero-Day Exploits in Mozilla and Windows (CVE-2024-9680 & CVE-2024-49039) Recent research has revealed how the RomCom cyber threat group exploited two zero-day vulnerab...
Learn More
Nov 26, 2024
Critical QNAP Vulnerabilities in Notes Station 3 and QuRouter Demand I...
Critical QNAP Vulnerabilities in Notes Station 3 and QuRouter Demand Immediate Patching (CVE-2024-38645, CVE-2024-38643, CVE-2024-48860) QNAP recently released multiple security advisories addressing ...
Learn More
Nov 25, 2024
Perfctl Campaign Exploits Millions of Linux Servers for Crypto Mining ...
Perfctl Campaign Exploits Millions of Linux Servers for Crypto Mining and Proxyjacking Linux servers, the backbone of countless organizations worldwide, have recently come under siege by a stealthy an...
Learn More
Nov 22, 2024
NodeStealer’s Evolution: A Growing Threat to Facebook Accounts and Bey...
NodeStealer’s Evolution: A Growing Threat to Facebook Accounts and Beyond NodeStealer, a Python-based infostealer, has resurfaced in a more dangerous form, raising the stakes for global cybersecurity ...
Learn More
