Black Friday: Significant Security Gaps in E-Commerce Web Apps
The personally identifiable information (PII) of millions of online shoppers could be at risk as a result of significant security...
Cybersecurity Executive Pleads Guilty to Hacking Hospitals
The chief operating officer (COO) of a US network security firm has pleaded guilty to compromising the IT systems of...
Konni Campaign Deploys Advanced RAT With UAC Bypass Capabilities
Security researchers have detected a Russian-language Word document carrying a malicious macro in the ongoing Konni campaign. Despite its September 2023...
Microsoft Launches Defender Bug Bounty Program
Microsoft has launched another bug bounty program, this time with the goal of making its Microsoft Defender-branded products and services...
Europol Launches OSINT Taskforce to Hunt For Russian War Crimes
Europol has announced a new unit whose job it will be to find and analyze publicly available information indicating Russian...
Regulator Issues Privacy Ultimatum to UK’s Top Websites
The UK’s privacy regulator has warned website owners operating in the country that they face enforcement action if they don’t...
India Faces Surge in IM App Attacks With Trojan Campaigns
Microsoft has detected a notable increase in mobile banking Trojan campaigns directed at users in India, primarily through instant messaging...
Why Ensuring Supply Chain Security in the Space Sector is Critical
The space sector is facing a growing threat from nation-state cyberattacks, making it critical for organizations to know who has...
LockBit Affiliates are Exploiting Citrix Bleed, Government Agencies Warn
Several government agencies and cybersecurity organizations have raised the alarm in response to multiple threat actor groups exploiting Citrix Bleed,...
Employee Policy Violations Cause 26% of Cyber Incidents
A substantial 26% of cyber incidents in businesses over the last two years have been found to be the result...
Flaw in Apache ActiveMQ Exposes Linux Systems to Kinsing Malware
A critical vulnerability in Apache ActiveMQ, identified as CVE-2023-46604, has been exposed, revealing an active exploitation scenario by the notorious...
CISA: Citrix Releases Security Updates for Citrix Hypervisor
Citrix Releases Security Updates for Citrix Hypervisor Citrix has released security updates addressing vulnerabilities in Citrix Hypervisor 8.2 CU1 LTSR....
CISA: CISA Requests Comment on Draft Secure Software Development Attestation Form
CISA Requests Comment on Draft Secure Software Development Attestation Form CISA has opened a 30-day Federal Register notice to receive...
CISA: CISA Releases The Mitigation Guide: Healthcare and Public Health (HPH) Sector
CISA Releases The Mitigation Guide: Healthcare and Public Health (HPH) Sector Today, CISA released the Mitigation Guide: Healthcare and Public...
CISA: Juniper Releases Security Advisory for Juniper Secure Analytics
Juniper Releases Security Advisory for Juniper Secure Analytics Juniper released a security advisory to address multiple vulnerabilities affecting Juniper Secure...
CISA: FBI and CISA Release Advisory on Scattered Spider Group
FBI and CISA Release Advisory on Scattered Spider Group Today, the Federal Bureau of Investigation (FBI) and the Cybersecurity and...
CISA: CISA Releases Five Industrial Control Systems Advisories
CISA Releases Five Industrial Control Systems Advisories CISA released five Industrial Control Systems (ICS) advisories on November 21, 2023. These...
CISA: Mozilla Releases Security Updates for Firefox and Thunderbird
Mozilla Releases Security Updates for Firefox and Thunderbird Mozilla has released security updates to address vulnerabilities in Firefox and Thunderbird....
CISA: Adobe Releases Security Updates for ColdFusion
Adobe Releases Security Updates for ColdFusion On Nov. 14, 2023, Adobe released security updates addressing vulnerabilities affecting unpatched ColdFusion software....
CISA: CISA Adds One Known Exploited Vulnerability to Catalog
CISA Adds One Known Exploited Vulnerability to Catalog CISA has added one new vulnerability to its Known Exploited Vulnerabilities Catalog, based...
CISA: CISA, FBI, MS-ISAC, and ASD’s ACSC Release Advisory on LockBit Affiliates Exploiting Citrix Bleed
CISA, FBI, MS-ISAC, and ASD’s ACSC Release Advisory on LockBit Affiliates Exploiting Citrix Bleed Today, the Cybersecurity and Infrastructure Security...
Play Ransomware Victim: McHale Landscape Design
Play News Ransomware NOTE: No files or stolen information are by RedPacket Security. Any legal issues relating to the content...
US-CERT Vulnerability Summary for the Week of November 13, 2023
High VulnerabilitiesPrimary Vendor -- ProductDescriptionPublishedCVSS ScoreSource & Patch Infocheckpoint -- endpoint_securityLocal attacker can escalate privileges on affected installations of Check...
Deepsecrets – Secrets Scanner That Understands Code
Yet another tool - why? Existing tools don't really "understand" code. Instead, they mostly parse texts. DeepSecrets expands classic regex-search...
