WordPress ASE Plugin Vulnerability: A Critical Threat to Site Security
A critical vulnerability in the WordPress Admin and Site Enhancements (ASE) plugin poses a significant risk to site security, affecting...
News
Lazarus Group LinkedIn Recruiting Scam Targets Bitdefender Researcher
The Lazarus Group, a notorious North Korean cyber threat actor, has recently targeted a Bitdefender researcher through a deceptive LinkedIn...
Europol Leads Global Effort to Dismantle Child Abuse Network ‘The Com’
In a significant international law enforcement crackdown, Europol has led efforts to dismantle the notorious child abuse network known as...
UK Cyber Monitoring Centre Launches ‘Richter Scale’ for Measuring Cyber-Attacks
The UK Cyber Monitoring Centre (CMC) has officially launched, introducing a new 'Richter scale' to enhance clarity in measuring cyber...
Microsoft Monthly Security Update (January 2024)
Microsoft has released monthly security update for their products: CVE-2024-29059 vulnerability is being actively exploited. An attacker can use the exposed ObjRef...
Magento Web Skimmer Campaign Targets Casio and Other E-commerce Sites
Magento web skimmer malware has compromised credit card details of customers from at least 17 e-commerce sites, including Casio UK....
Texas Cyber Command: A Strategic Response to Rising Cyber-Attacks
Texas is taking decisive action to enhance its cybersecurity with the establishment of the Texas Cyber Command amid a significant...
DaggerFly Linux Malware: Understanding ELF/Sshdinjector.A!tr and Its Threat to Network Appliances
DaggerFly Linux malware, identified as ELF/Sshdinjector.A!tr, primarily targets Linux-based network appliances for data exfiltration. A new strain of malware named...
Infostealer Attacks Surge in EMEA Organizations: A Growing Threat to Data Security
EMEA organizations are increasingly vulnerable as infostealer attacks see a significant rise, posing serious data security challenges. Organizations throughout Europe,...
Phishing Campaign Bypasses Microsoft ADFS MFA: Protect Your Organization
A sophisticated phishing campaign is targeting Microsoft Active Directory Federation Services (ADFS), exploiting vulnerabilities to bypass MFA and steal credentials....
Increase in Malware Targeting Credential Stores: A Threefold Surge
The rise in malware targeting credential stores has become a significant concern for cybersecurity, with infostealers gaining traction in the...
Phishing Campaign Targets High-Profile X Accounts: What You Need to Know
A recent phishing campaign has emerged, targeting high-profile X accounts and exploiting them for fraudulent purposes. This alarming trend poses...
Data Volumes and Deletion issues Faced by European Police in Cybercrime Investigations
European police are challenged by overwhelming data volumes and deletion issues, impacting cybercrime investigations, as highlighted in a recent Europol...
768 CVEs Exploited in the Wild in 2024: A 20% Increase Noted
In 2024, a concerning total of 768 CVEs were identified as exploited in the wild, marking a significant increase from...
UK Introduces World-First AI Security Standard for Enhanced Safety
The UK government has unveiled a pioneering AI Code of Practice aimed at establishing global security standards for artificial intelligence...
Backdoor Vulnerability in Contec Patient Monitors Exposed by CISA
The US Cybersecurity and Infrastructure Security Agency (CISA) has unveiled a serious backdoor vulnerability in the firmware of Contec CMS8000...
US-CERT Vulnerability Summary for the Week of January 27, 2025
The CISA Vulnerability Bulletin provides a summary of new vulnerabilities that have been recorded in the past week. In some...
NCSC Urges Software Vendors to Eliminate Unforgivable Vulnerabilities
The National Cyber Security Centre (NCSC) is urging the software industry to address critical vulnerabilities through enhanced developer security practices....
Syncjacking Attack: A New Threat to Browser and Device Security
The rise of the syncjacking attack presents a critical threat to browser and device security, enabling malicious extensions to seize...
Ransomware Attack Impacting Blood Donation Services in the US
A severe ransomware attack has hit the New York Blood Center Enterprises (NYBCe), affecting blood donation services across the United...
Exposed Database Leaks Sensitive Data from DeepSeek’s AI Chatbot
DeepSeek's latest AI chatbot has faced scrutiny following the discovery of an exposed database that leaked sensitive data, raising cybersecurity...
UK Organizations Increase Cybersecurity Budgets by 31%
UK organizations are set to significantly increase their cybersecurity budgets by 31% in the coming year, highlighting a strong commitment...
HTTP Clients Surge in Account Takeover Attacks on Microsoft 365
Cybercriminals are increasingly using HTTP client tools for account takeover (ATO) attacks, significantly targeting Microsoft 365 environments. In a concerning...
Google Blocks 2.36 Million Policy-Violating Apps and Bans Developer Accounts
In a significant move towards enhancing user safety, Google has blocked 2.36 million policy-violating apps from its Play Store, utilizing...
