Alleged Cyberattack On SGCC, Employee Data Claimed Stolen
A threat actor known as Desec0x has claimed to possess a database allegedly stolen from the State Grid Corporation of China (SGCC), offering it for…
Month: June 2024
PoC Exploit Published For XML eXternal Entity (XXE) Injection Vulnerability
A new XXE (XML eXternal Entity) Injection has been discovered to affect SharePoint on both on-prem and cloud instances. This vulnerability has been assigned to…
Frontier Communication Ransom attack:750,000 Data Exposed
Frontier Communications Parent, Inc. (the “Company”) detected unauthorized access to portions of its information technology environment. The breach, attributed to a likely cybercrime group, exposed…
Beware of Fake KMSPico Activators that Deliver Vidar Stealer Malware
Researchers detected an attack involving a fake KMSPico activator tool, which delivered Vidar Stealer through several events. The attack leveraged Java dependencies and a malicious…
An IT admin’s guide: Windows 10 end of support explained
Every time a new version of the Windows operating system (OS) is released, the countdown clock starts ticking on the end-of-support date of its predecessor.…
Sticky Werewolf Expands Cyber Attack Targets in Russia and Belarus
Jun 10, 2024NewsroomCyber Espionage / Malware Cybersecurity researchers have disclosed details of a threat actor known as Sticky Werewolf that has been linked to cyber…
Absolute Telecom Data Breach: 34GB Data Compromised
Absolute Telecom Pte Ltd, a prominent telecommunications company based in Singapore, has fallen victim to an alleged cyberattack. The Absolute Telecom data breach, allegedly on…
Radare: Open-source reverse engineering framework
Radare is an open-source UNIX-like reverse engineering framework and command-line toolset. It can be scripted, modified, and used for batch analysis. “I started the project…
BlackBerry Disputes Cylance Claims, While NYT Confirms Breach
Hackers claim to have hit BlackBerry Cylance and The New York Times in separate, unrelated incidents, but only the New York Times hack may be…
AI’s role in accelerating vulnerability management
With its capability to analyze, predict, and automate, AI stands to reshape many corners of business, most notably cybersecurity. In the field of vulnerability management…
Why CISOs need to build cyber fault tolerance into their business
CISOs who elevate response and recovery to equal status with prevention are generating more value than those who adhere to outdated zero tolerance for failure…
Bitdefender GravityZone Flaw Let Hackers Launch SSRF Attacks
Bitdefender has recently fixed a critical Server-Side Request Forgery (SSRF) vulnerability in its GravityZone Console On-Premise, known as CVE-2024-4177. This flaw, discovered in the host…