75% of Organizations Hit by Ransomware in 2023
Three-quarters (75%) of organizations suffered at least one ransomware attack last year, according to Veeam’s Data Protection Trends Report 2024.The...
News
AI, Gaming, FinTech Named Major Cybersecurity Threats For Kids
The heightened utilization of AI tools and potential vulnerabilities in gaming have been identified as crucial cybersecurity concerns for children...
Vendor Email Attacks Surged by 137% in Financial Sector in 2023
The global financial services industry has witnessed a 137% increase in Vendor Email Compromise (VEC) attacks over the last year,...
US-CERT Vulnerability Summary for the Week of January 8, 2024
The CISA Vulnerability Bulletin provides a summary of new vulnerabilities that have been recorded by the National Institute of Standards and...
Active Exploitation of Zero-Day Vulnerability in Citrix’s Netscaler ADC and Gateway Products
Citrix has released security updates addressing a zero-day vulnerability (CVE-2023-6549) in their Netscaler ADC and Gateway products. The vulnerability is...
Active Exploitation of Critical Vulnerability in VMware’s Aria Automation
VMware has released security updates addressing a critical vulnerability (CVE-2023-34063) in VMware Aria Automation. The vulnerability has a Common Vulnerability...
Critical Vulnerabilities in Siemens Products
Siemens has released security updates addressing critical vulnerabilities (CVE-2023-51438 and CVE-2023-49621) in their SIMATIC IPC and SIMATIC NC 4100 products. The...
Combating IP Leaks into AI Applications with Free Discovery and Risk Reduction Automation
Wing Security announced today that it now offers free discovery and a paid tier for automated control over thousands of...
PAX PoS Terminal Flaw Could Allow Attackers to Tamper with Transactions
The point-of-sale (PoS) terminals from PAX Technology are impacted by a collection of high-severity vulnerabilities that can be weaponized by...
New iShutdown Method Exposes Hidden Spyware Like Pegasus on Your iPhone
Cybersecurity researchers have identified a "lightweight method" called iShutdown for reliably identifying signs of spyware on Apple iOS devices, including...
Feds Warn of AndroxGh0st Botnet Targeting AWS, Azure, and Office 365 Credentials
The U.S. Cybersecurity and Infrastructure Security Agency (CISA) and the Federal Bureau of Investigation (FBI) warned that threat actors deploying...
Webinar: The Art of Privilege Escalation – How Hackers Become Admins
In the digital age, the battleground for security professionals is not only evolving, it's expanding at an alarming rate. The...
Citrix Products Multiple Vulnerabilities
Multiple vulnerabilities were identified in Citrix Products. A remote attacker could exploit some of these vulnerabilities to trigger denial of...
Google Chrome Multiple Vulnerabilities
Multiple vulnerabilities were identified in Google Chrome. A remote attacker could exploit some of these vulnerabilities to trigger denial of...
GitHub Rotates Keys After High-Severity Vulnerability Exposes Credentials
GitHub has revealed that it has rotated some keys in response to a security vulnerability that could be potentially exploited...
Active Exploitation of Zero-Day Vulnerability in Google Chrome
Google has released security updates addressing a zero-day vulnerability (CVE-2024-0519) in their Chrome browser on Windows, Mac and Linux systems....
Atlassian Warns Of Critical Rce Flaw In Older Confluence Versions
Atlassian Confluence Data Center and Confluence Server are vulnerable to a critical remote code execution (RCE) vulnerability that impacts versions...
Majorca City Calvi Extorted For 11m In Ransomware Attack
The Calvià City Council in Majorca announced it was targeted by a ransomware attack on Saturday, which impacted municipal services....
The Dual Role Ai Plays In Cybersecurity How To Stay Ahead
There's a wide range of AI-enabled solutions available for various business use cases, and organizations are increasingly recognizing their value....
Pixiefail Flaws Impact Pxe Network Boot In Enterprise Systems
A set of nine vulnerabilities, collectively called 'PixieFail,' impact the IPv6 network protocol stack of Tianocore's EDK II, the open-source...
Macos Info Stealers Quickly Evolve To Evade Xprotect Detection
Multiple information stealers for the macOS platform have demonstrated the capability to evade detection even when security companies follow and...
Google Fixes First Actively Exploited Chrome Zero Day Of 2024
Google has released security updates to fix the first Chrome zero-day vulnerability exploited in the wild since the start of...
Github Rotates Keys To Mitigate Impact Of Credential Exposing Flaw
GitHub rotated keys potentially exposed by a vulnerability patched in December that could let attackers access credentials within production containers via environment...
Citrix Warns Of New Netscaler Zero Days Exploited In Attacks
Citrix urged customers on Tuesday to immediately patch Netscaler ADC and Gateway appliances exposed online against two actively exploited zero-day...
