Cyber Security

U.S. Government Takes Action Against Online Marketplaces Selling Fraudulent Identity Documents to Cybercriminals

Citrix Netscaler 0-Day RCE Vulnerability Fixed – Vulnerable Instances Decrease from 28,200 to 12,400

NodeBB Vulnerability: Allowing Attackers to Inject Boolean-Based Blind and PostgreSQL Error-Based Payloads

NightSpire Ransomware Group Exploits Organizational Vulnerabilities to Breach Systems

AppSuite PDF Editor Vulnerability Allows Execution of Arbitrary Commands on Compromised Systems

New TAOTH Campaign Leverages Outdated Software to Distribute Malware and Harvest Sensitive Information

Increase in Cyber Attacks on the Education Sector After Back-to-School Season

Cybercriminals Exploit Compromised Third-Party SonicWall SSL VPN Credentials to Distribute Sinobi Ransomware

Threat Actors Exploiting Windows and Linux Vulnerabilities in Real-World Attacks to Gain Unauthorized System Access

Hikvision Vulnerabilities Allow Attackers to Inject Executable Commands

Virustotal Introduces New Endpoint Offering Detailed Functionality Descriptions for Malware Analysts’ Code Requests

Threat Actors Exploit Facebook Ads to Distribute Free TradingView Premium App Lures, Delivering Android Malware

New Research on Proof of Concept Reveals Security Challenges in Coding with Large Language Models

How Adversary-in-the-Middle (AiTM) Attacks Circumvent Multi-Factor Authentication (MFA) and Endpoint Detection and Response (EDR) Solutions

How Adversary-in-the-Middle (AiTM) Attacks Circumvent Multi-Factor Authentication (MFA) and Endpoint Detection and Response (EDR) Solutions

PhpSpreadsheet Library Vulnerability Allows Attackers to Inject Malicious HTML Input

Nagios XSS Vulnerability Allows Remote Attackers to Execute Arbitrary JavaScript Code

New Mac Malware Named ‘JSCoreRunner’ Exploits PDF Conversion Websites to Distribute Malicious Software

Critical Citrix 0-Day Vulnerability Exploited Since May, Exposing Global Organizations to Risks

New ‘Sindoor Dropper’ Malware Targets Linux Systems Using Malicious .desktop Files

U.S. Government Takes Action Against Online Marketplaces Selling Fraudulent Identity Documents to Cybercriminals

Citrix Netscaler 0-Day RCE Vulnerability Fixed – Vulnerable Instances Decrease from 28,200 to 12,400

NodeBB Vulnerability: Allowing Attackers to Inject Boolean-Based Blind and PostgreSQL Error-Based Payloads

NightSpire Ransomware Group Exploits Organizational Vulnerabilities to Breach Systems

AppSuite PDF Editor Vulnerability Allows Execution of Arbitrary Commands on Compromised Systems

New TAOTH Campaign Leverages Outdated Software to Distribute Malware and Harvest Sensitive Information

Increase in Cyber Attacks on the Education Sector After Back-to-School Season

Cybercriminals Exploit Compromised Third-Party SonicWall SSL VPN Credentials to Distribute Sinobi Ransomware

Threat Actors Exploiting Windows and Linux Vulnerabilities in Real-World Attacks to Gain Unauthorized System Access

Hikvision Vulnerabilities Allow Attackers to Inject Executable Commands

Virustotal Introduces New Endpoint Offering Detailed Functionality Descriptions for Malware Analysts’ Code Requests

Threat Actors Exploit Facebook Ads to Distribute Free TradingView Premium App Lures, Delivering Android Malware

New Research on Proof of Concept Reveals Security Challenges in Coding with Large Language Models

How Adversary-in-the-Middle (AiTM) Attacks Circumvent Multi-Factor Authentication (MFA) and Endpoint Detection and Response (EDR) Solutions

How Adversary-in-the-Middle (AiTM) Attacks Circumvent Multi-Factor Authentication (MFA) and Endpoint Detection and Response (EDR) Solutions

PhpSpreadsheet Library Vulnerability Allows Attackers to Inject Malicious HTML Input

Nagios XSS Vulnerability Allows Remote Attackers to Execute Arbitrary JavaScript Code

New Mac Malware Named ‘JSCoreRunner’ Exploits PDF Conversion Websites to Distribute Malicious Software

Understanding Threat Actors Targeting High-Value Entities like Google in Salesforce Attacks: Essential Insights for Organizations