CISA: CISA Adds One Known Exploited Vulnerability to Catalog
CISA Adds One Known Exploited Vulnerability to Catalog CISA has added one new vulnerability to its Known Exploited Vulnerabilities Catalog, based...
OSINT
CISA: CISA Joins ACSC-led Guidance on How to Use AI Systems Securely
CISA Joins ACSC-led Guidance on How to Use AI Systems Securely CISA has collaborated with the Australian Signals Directorate’s Australian...
CISA: CISA Adds One Known Exploited Vulnerability to Catalog
CISA Adds One Known Exploited Vulnerability to Catalog CISA has added one new vulnerability to its Known Exploited Vulnerabilities Catalog, based...
CISA: Apple Releases Security Updates for Multiple Products
Apple Releases Security Updates for Multiple Products Apple has released security updates for iOS and iPadOS, macOS, Safari, watchOS, and tvOS....
CISA: CISA Releases Six Industrial Control Systems Advisories
CISA Releases Six Industrial Control Systems Advisories CISA released six Industrial Control Systems (ICS) advisories on January 23, 2024. These...
CISA: Apple Releases Security Updates for Multiple Products
Apple Releases Security Updates for Multiple Products Apple has released security updates for iOS and iPadOS, macOS, Safari, watchOS, and tvOS....
VexTrio: The Uber of Cybercrime – Brokering Malware for 60+ Affiliates
The threat actors behind ClearFake, SocGholish, and dozens of other actors have established partnerships with another entity known as VexTrio...
Malicious NPM Packages Exfiltrate Hundreds of Developer SSH Keys via GitHub
Two malicious packages discovered on the npm package registry have been found to leverage GitHub to store Base64-encrypted SSH keys...
Zero-Day Vulnerability in Apple Products
Apple has released security updates to address a zero-day vulnerability (CVE-2024-23222) in their products. The vulnerability is reportedly being actively...
From Megabits to Terabits: Gcore Radar Warns of a New Era of DDoS Attacks
As we enter 2024, Gcore has released its latest Gcore Radar report, a twice-annual publication in which the company releases...
“Activator” Alert: MacOS Malware Hides in Cracked Apps, Targeting Crypto Wallets
Cracked software have been observed infecting Apple macOS users with a previously undocumented stealer malware capable of harvesting system information...
BreachForums Founder Sentenced to 20 Years of Supervised Release, No Jail Time
Conor Brian Fitzpatrick has been sentenced to time served and 20 years of supervised release for his role as the...
~40,000 Attacks in 3 Days: Critical Confluence RCE Under Active Exploitation
Malicious actors have begun to actively exploit a recently disclosed critical security flaw impacting Atlassian Confluence Data Center and Confluence...
Trezor Support Site Breach Exposes Personal Data Of 66 000 Customers
Trezor issued a security alert after identifying a data breach that occurred on January 17 due to unauthorized access to their...
Apple Fixes First Zero Day Bug Exploited In Attacks This Year
Apple released security updates to address this year's first zero-day vulnerability exploited in attacks that could impact iPhones, Macs, and...
Loandepot Cyberattack Causes Data Breach For 166 Million People
Mortgage lender loanDepot says that approximately 16.6 million people had their personal information stolen in a ransomware attack disclosed earlier...
Cracked Macos Apps Drain Wallets Using Scripts Fetched From Dns Records
Hackers are using a stealthy method to deliver to macOS users information-stealing malware through DNS records that hide malicious scripts....
Sec Confirms X Account Was Hacked In Sim Swapping Attack
The U.S. Securities and Exchange Commission confirmed today that its X account was hacked through a SIM-swapping attack on the...
Ivanti Vpn Appliances Vulnerable If Pushing Configs After Mitigation
Ivanti warned admins to stop pushing new device configurations to appliances after applying mitigations because this will leave them vulnerable...
Hackers Start Exploiting Critical Atlassian Confluence Rce Flaw
Security researchers are observing exploitation attempts for the CVE-2023-22527 remote code execution flaw vulnerability that affects outdated versions of Atlassian Confluence servers....
Malicious Web Redirect Scripts Stealth Up To Hide On Hacked Sites
Security researchers looking at more than 10,000 scripts used by the Parrot traffic direction system (TDS) noticed an evolution marked by...
Apple Issues Patch for Critical Zero-Day in iPhones, Macs – Update Now
Apple on Monday released security updates for iOS, iPadOS, macOS, tvOS, and Safari web browser to address a zero-day flaw...
Trello – 15,111,945 breached accounts
HIBP In January 2024, data was scraped from Trello and posted for sale on a popular hacking forum. Containing over...
RansomHouse Ransomware Victim: HOE Pharmaceuticals Sdn Bhd
RansomHouse Logo NOTE: No files or stolen information are by RedPacket Security. Any legal issues relating to the content...
