Beware Of Weaponized Excel Document That Delivers Fileless Remcos RAT
A recent advanced malware campaign leverages a phishing attack to deliver a seemingly benign Excel file that exploits CVE-2017-0199. By exploiting this vulnerability in Microsoft…
Month: September 2024
Cyber workforce must almost double to meet global talent need
The global cyber security workforce needs to increase by 87% to fill the current shortfall of cyber talent, according to research. ISC2’s 2024 Cybersecurity workforce…
Palo Alto Networks Warns Of PAN-OS Command Injection Vulnerability
Palo Alto Networks has disclosed a high-severity command injection vulnerability in its PAN-OS software that could allow authenticated administrators to bypass system restrictions and execute…
Hackers Exploiting Apache OFBiz RCE Vulnerability in the Wild
A critical vulnerability in the Apache OFBiz framework has been actively exploited by hackers. The flaw designated CVE-2024-45195, allows for unauthenticated remote code execution (RCE),…
UK Data Centers Gain Critical National Infrastructure Status
UK data centers are now critical assets, at power with electricity grids and water supply systems. In a landmark move, the UK government has classified…
Hacker Claims 440GB Data Stolen
Cybersecurity giant Fortinet, known for its firewalls and network security solutions, has confirmed a cybersecurity incident affecting its systems. The Fortinet data breach confirmation comes…
SolarWinds ARM Vulnerability Let Attackers Execute Remote Code
SolarWinds, a leading provider of IT management software, has recently disclosed critical vulnerabilities in its Access Rights Manager (ARM) platform. The vulnerabilities, identified as CVE-2024-28990…
From Open Networks to Zero Trust: A Paradigm Shift
The evolution of network security mirrors the broader technological landscape: a journey from simplicity to complexity, from reactive to proactive defense. In the early days…
Cyble’s Beenu Arora Weighs In On Mastercard’s Acquisition
The discussion, featuring Beenu Arora, CEO and Co-Founder of Cyble, examined the potential impact of this acquisition on businesses and industries across various sectors. As…
FBI And CISA Addresses Claims Of Hacked Voter Information
The Federal Bureau of Investigation (FBI) and the Cybersecurity and Infrastructure Security Agency (CISA) have highlighted a growing concern about the spread of false claims…
Docker Desktop Vulnerabilities Let Attackers Execute Remote Code
Docker has addressed critical vulnerabilities in Docker Desktop that could allow attackers to execute remote code. These vulnerabilities, identified as CVE-2024-8695 and CVE-2024-8696, highlight the…
New infosec products of the week: September 13, 2024
Here’s a look at the most interesting products from the past week, featuring releases from Druva, Huntress, Ketch, LOKKER, Tenable, Trellix, and Wing Security. Tenable…