HCL BigFix WebUI Flaw Redirect users to External Site
HCL BigFix is an endpoint management platform that has the capability to automate discovery, management, and remediation. It can find and fix vulnerabilities on endpoints,…
Month: July 2023
FIN8 Revamped Hacking Toolkit with New Stealthy Attack Features
Syssphinx (aka FIN8) is a financially motivated cyber-crime group deploying revamped sardonic backdoor to deliver Noberus ransomware. This group has been active since January 2016, targeting…
how to keep your flight plans safe
We take a look at several scams targeting flyers off on their holidays, and how you can keep yourself safe. You may be getting ready…
Estée Lauder beauty giant breached by two ransomware gangs
Two ransomware actors, ALPHV/BlackCat and Clop, have listed beauty company Estée Lauder on their data leak sites as a victim of separate attacks. In a…
Hackers Exploit Zimbra and Roundcube Email Servers
An alarming spear-phishing campaign has been uncovered, specifically aimed at government organizations. This attack preys on the vulnerabilities of Zimbra and Roundcube email servers. It…
Sophisticated DDoS Attacks Have Evolved Rapidly
Sophisticated DDoS attacks have become a favored tool for hackers, enabling them to target not only large organizations but also individuals. This means that both…
Docker Hub images found to expose secrets and private keys
Researchers have found that numerous Docker images shared on Docker Hub expose sensitive data. Numerous Docker images shared on Docker Hub are exposing sensitive data,…
Estée Lauder beauty giant breached in two separate ransomware attacks
Two ransomware actors, ALPHV/BlackCat and Clop, have listed beauty company Estée Lauder on their data leak sites as a victim of separate attacks. In a…
New Jailbreak Attacks Uncovered in LLM chatbots like ChatGPT
LLMs have reshaped content generation, making understanding jailbreak attacks and prevention techniques challenging. Surprisingly, there’s a scarcity of public disclosures on countermeasures employed in chatbot…
Hackers Use “chatgpt5[.]zip” to Trick Users into Download Malware
Hackers Use “chatgpt5 [.]zip” to Trick Users into Downloading Malware. Phishing remains a severe cybersecurity threat, deceiving employees with cleverly disguised malicious links and malware…
VirusTotal Data Leak Exposes User’s Sensitive Details
The latest news revealed a popular Google platform to scan malicious documents from Virustotal exposed to data breaches of its registered customers. At the end…
Since Microsoft can’t figure out how it got hacked, it lets customers see M365 logs for free
Microsoft said on Wednesday that it will broaden logging settings for lower-tier M365 customers and prolong the time of retention for threat-hunting data in response…