Risk To 2M WordPress Sites
A Rank Math plugin vulnerability affects over 2 million WordPress websites. The flaw, identified as a Stored Cross-Site Scripting (XSS) vulnerability or CVE-2024-2536, poses a…
Month: March 2024
Hackers Exploiting SQL Injection Flaws
CISA and the FBI released the Secure by Design Alert to address SQL injection vulnerabilities in software that affect thousands of organizations. A persistent class…
Award Winning Cyber Start-up Raises £3m Led By Fuel Ventures To Empower Employees To Protect Themselves
Today, Think Cyber Security Ltd has announced that it has raised a £3 million late seed funding round to deliver measurable secure behaviour change. The multi-award…
Tycoon 2FA Phishing Kit Attacking Microsoft 365 & Gmail Users
Hackers use 2FA (Two-Factor Authentication) phishing kits to overcome the additional security layer provided by 2FA. These kits typically mimic legitimate login pages and prompt…
Best Practices for Kafka Management to Ensure High Availability
With the increasing popularity of Apache Kafka as a distributed streaming platform, ensuring its high availability has become a priority for businesses. The efficient management…
Which? calls for government action on fake banking sites
Thousands of fraudulent websites that appear to be those of the UK’s largest retail banks – but are, of course, nothing of the kind –…
CVE-2024-21762 Exploit Sale Targets FortiOS SSL VPN
Threat actor Hunt3rkill3rs1 is offering a CVE-2024-21762 exploit sale on a dark web forum. The exploit is designed to capitalize on the vulnerability identified as…
DEI and the Recruitment Wall
Diversity, Equity and Inclusion (DEI) initiatives are now well established in cybersecurity with only 8% of businesses saying they did not have any, according to…
Julian Assange Won’t Be Extradited to the US Yet
Manning, a former US Army intelligence analyst, confessed during a court martial in 2013 to leaking more than 725,000 documents to WikiLeaks, though her conviction…
CrowdStrike Partnered with HCLTech-Cybersecurity Transformation
CrowdStrike and HCLTech, a leading global technology company, have announced a strategic partnership. This collaboration aims to enhance HCLTech’s managed detection and response (MDR) solutions…
Cryptographic Solutions for Data Security in Cloud Computing
A Run Time Trend-based Comparison of NCS, ERSA, and EHS Abstract: Due to the recent explosion in the amount of data being created by various…
GTC 2024: Storage suppliers queue up to ride the Nvidia AI wave
Artificial intelligence (AI) is on the crest of a wave right now. And Nvidia is too, arguably. So, at its GTC 2024 event last week,…