CVE Alert: CVE-2024-7673
Vulnerability Summary: CVE-2024-7673 A maliciously crafted DWFX file, when parsed in w3dtk.dll through Autodesk Navisworks, can force a Heap-based Buffer...
CVE Alert: CVE-2024-45073
Vulnerability Summary: CVE-2024-45073 IBM WebSphere Application Server 8.5 and 9.0 is vulnerable to stored cross-site scripting. This vulnerability allows a...
CVE Alert: CVE-2024-7674
Vulnerability Summary: CVE-2024-7674 A maliciously crafted DWF file, when parsed in dwfcore.dll through Autodesk Navisworks, can force a Heap-based Buffer...
CVE Alert: CVE-2024-7675
Vulnerability Summary: CVE-2024-7675 A maliciously crafted DWF file, when parsed in w3dtk.dll through Autodesk Navisworks, can force a Use-After-Free. A...
NIST New Guidelines: Password Complexity and Mandatory Changes No Longer Required
In a significant shift in password management practices, NIST has declared that using a mixture of character types and mandatory...
Infostealer Hidden in Malicious Ads for League of Legends Downloads
Discover how malicious advertisements disguise an infostealer within League of Legends downloads, putting players at risk. In a surprising turn...
Cybercriminals Target UK Rail Network Wi-Fi: Attack Details and Implications
Cybercriminals have launched a concerning attack on the UK rail network, displaying offensive content on public Wi-Fi at major train...
Employees Secretly Sharing Work Info with AI: A Deep Dive
A significant portion of employees, over a third, are sharing sensitive work information with AI tools without their employer's consent....
Mobile Crypto Drainer Malware Discovered on Google Play
Mobile crypto drainer malware has recently been identified in an app on Google Play, marking a concerning trend for mobile...
MC2 Data Breach Exposes 100 Million to Fraud Risks
A significant MC2 Data breach has put the personal information of over 100 million US citizens at risk of fraud,...
Russian Hackers Target Ukrainian Servicemen: Cyber Warfare Intensifies
Russian hackers are increasingly targeting Ukrainian servicemen through messaging apps, underscoring the escalating cyber conflict between the two nations. A...
UK Railway Station Wi-Fi Hack Leads to Arrest of Suspect
A man has been arrested in connection with the recent hack of UK railway stations, where offensive messages were displayed...
€91 Million GDPR Violation Fine for Meta by Ireland’s DPC
Ireland's Data Protection Commission has levied a hefty €91 million fine on Meta for serious GDPR violations related to user...
US Sanctions Crypto Exchanges Involved in Russian Cybercrime Activities
The US government has taken significant action against cryptocurrency exchanges tied to Russian cybercriminals, focusing on their role in processing...
Growing Iranian Spear Phishing Threat: UK and US Authorities Issue Warning
The growing Iranian spear phishing threat has raised alarm bells as the UK’s National Cyber Security Centre (NCSC) and US...
Strengthening Security and Resilience of Undersea Cables: A Global Urgency
Global leaders are increasingly emphasizing the need to enhance the security and resilience of undersea cables, crucial for safeguarding global...
CISOs Need a Seat at the Table for Effective Cyber Resilience
PwC emphasizes the crucial role of Chief Information Security Officers (CISOs) in enhancing cyber resilience in organizations. Their involvement in...
Cyber-Attacks Impact Over a Third of English Schools: What’s Next?
In the 2023/24 academic year, a staggering 34% of English schools and colleges fell victim to cyber incidents, highlighting critical...
NVIDIA Container Toolkit Vulnerability Threatens AI Systems
A critical vulnerability in the NVIDIA Container Toolkit (CVE-2024-0132) has emerged, raising alarms about security in AI systems and cloud...
Critical RCE Vulnerabilities Impacting Common Unix Printing System (CUPS)
A significant discovery has emerged regarding critical remote code execution (RCE) vulnerabilities in the Common Unix Printing System (CUPS), affecting...
Insufficient Cybersecurity Funding: US State CISOs Face Major Challenges
Insufficient cybersecurity funding is a critical challenge for US state CISOs, impacting their ability to protect citizens and assets effectively....
Central Tickets – 722,860 breached accounts
HIBP In September 2024, data from the ticketing service Central Tickets was publicly posted to a hacking forum. The data...
Cobalt Strike Beacon Detected – 170[.]130[.]165[.]18:444
The Information provided at the time of posting was detected as "Cobalt Strike". Depending on when you are viewing this...
Cobalt Strike Beacon Detected – 47[.]99[.]90[.]64:80
The Information provided at the time of posting was detected as "Cobalt Strike". Depending on when you are viewing this...
