Hackers Weaponize Windows Flaw to Deploy Crypto-Siphoning Phemedrone Stealer
Threat actors have been observed leveraging a now-patched security flaw in Microsoft Windows to deploy an open-source information stealer called...
Us Court Docs Expose Fake Antivirus Renewal Phishing Tactics
In a seizure warrant application, the U.S. Secret Service sheds light on how threat actors stole $34,000 using fake antivirus...
Ivanti Connect Secure Zero Days Now Under Mass Exploitation
Two zero-day vulnerabilities affecting Ivanti's Connect Secure VPN and Policy Secure network access control (NAC) appliances are now under mass...
Latest Adblock Update Causes Massive Youtube Performance Hit
Adblock and Adblock Plus users report performance issues on YouTube, initially blamed on Google but later determined to be an...
Windows Smartscreen Flaw Exploited To Drop Phemedrone Malware
A Phemedrone information-stealing malware campaign exploits a Microsoft Defender SmartScreen vulnerability (CVE-2023-36025) to bypass Windows security prompts when opening URL...
Over 178k Sonicwall Firewalls Vulnerable To Dos Potential Rce Attacks
Security researchers have found over 178,000 SonicWall next-generation firewalls (NGFW) with the management interface exposed online are vulnerable to denial-of-service...
Security Experts Urge IT to Lock Down GitHub Services
Threat intelligence firm Recorded Future has warned that threat actors are increasingly using GitHub services to launch covert cyber-attacks, and...
British Library Catalogue Back Online After Ransomware Attack
The British Library has begun restoring its online services as it continues to recover from last year’s ransomware attack.Sir Roly...
HelloFresh Fined £140K After Sending 80 Million Spam Messages
Meal-kit company HelloFresh is the latest brand to receive a major fine from the UK’s privacy regulator, after it was...
Environmental Websites Hit by DDoS Surge in COP28 Crossfire
The 28th United Nations Climate Change Conference (COP 28), held in Dubai at the end of 2023, sparked an “unprecedented...
Python-Based Tool FBot Disrupts Cloud Security
Security researchers have shed light on a new Python-based hacking tool, FBot, showcasing distinct features from other cloud malware families. Discovered...
Researchers Uncover Major Surge in Global Botnet Activity
Security researchers have discovered a significant increase in global botnet activity between December 2023 and the first week of January...
Senators Demand Probe into SEC Hack After Bitcoin Price Spike
US lawmakers have demanded an investigation into the hack of the Securities and Exchange Commission (SEC)’s X (formerly Twitter) account...
Active Exploitation of Critical Vulnerability in Microsoft SharePoint Server
Microsoft had previously released updates addressing a critical vulnerability (CVE-2023-29357) in Microsoft SharePoint Server. The vulnerability is reportedly being actively...
CISA: CISA Releases One Industrial Control Systems Advisory
CISA Releases One Industrial Control Systems Advisory CISA released one Industrial Control Systems (ICS) advisory on January 9, 2024. These...
CISA: CISA Adds Six Known Exploited Vulnerabilities to Catalog
CISA Adds Six Known Exploited Vulnerabilities to Catalog CISA has added six new vulnerabilities to its Known Exploited Vulnerabilities Catalog, based...
CISA: Fortinet Releases Security Updates for FortiOS and FortiProxy
Fortinet Releases Security Updates for FortiOS and FortiProxy Fortinet has released a security update to address a vulnerability in FortiOS...
CISA: CISA Adds One Known Exploited Vulnerability to Catalog
CISA Adds One Known Exploited Vulnerability to Catalog CISA has added one new vulnerability to its Known Exploited Vulnerabilities Catalog, based...
CISA: Microsoft Releases Security Updates for Multiple Products
Microsoft Releases Security Updates for Multiple Products Microsoft has released security updates to address vulnerabilities in multiple products. A cyber threat...
CISA: CISA Releases Nine Industrial Control Systems Advisories
CISA Releases Nine Industrial Control Systems Advisories CISA released nine Industrial Control Systems (ICS) advisories on January 11, 2024. These...
CISA: Juniper Networks Releases Security Bulletin for Junos OS and Junos OS Evolved
Juniper Networks Releases Security Bulletin for Junos OS and Junos OS Evolved Juniper Networks has released a security advisory to address...
CISA: Ivanti Releases Security Update for Connect Secure and Policy Secure Gateways
Ivanti Releases Security Update for Connect Secure and Policy Secure Gateways Ivanti has released a security update to address an...
CISA: Cisco Releases Security Advisory for Cisco Unity Connection
Cisco Releases Security Advisory for Cisco Unity Connection Cisco released a security advisory to address a vulnerability (CVE-2024-20272) in Cisco...
CISA: CISA Adds Two Known Exploited Vulnerabilities to Catalog
CISA Adds Two Known Exploited Vulnerabilities to Catalog CISA has added two new vulnerabilities to its Known Exploited Vulnerabilities Catalog, based...
