Top Open Source API Security Tools
The modern world relies on Application Programming Interfaces (APIs). They allow applications to communicate with each other, servers, and consumers to facilitate data sharing and…
Month: December 2024
Researchers Bypass WPA3 to Acquire Network Password
Researchers have successfully bypassed the Wi-Fi Protected Access 3 (WPA3) protocol to obtain network passwords using a combination of Man-in-the-Middle attacks and social engineering techniques.…
The Invisible Russia-Ukraine Battlefield | WIRED
Russia’s systems were “not very mobile, not very distributed,” Clark tells WIRED. Their relatively small number of big systems, Clark says, “weren’t really relevant in…
U.S. Judge Rules Against NSO Group in WhatsApp Pegasus Spyware Case
Dec 23, 2024Ravie LakshmananSpyware / Mobile Security Meta Platforms-owned WhatsApp scored a major legal victory in its fight against Israeli commercial spyware vendor NSO Group…
IBM Cognos Analytics Vulnerability Allows Malicious File Upload & Injection Attacks
IBM has released a critical security update for its Cognos Analytics software, addressing two severe vulnerabilities: CVE-2023-42017 and CVE-2024-51466. These vulnerabilities could allow attackers to upload malicious files…
LockBit Ransomware’s Digital Architect Arrested In Israel
FBI has arrested Rostislav Panev, a 51-year-old dual Russian-Israeli national, for his alleged role as a developer within the notorious LockBit ransomware group. Panev’s arrest…
Lazarus APT targeted employees at an unnamed nuclear-related organization
Lazarus APT targeted employees at an unnamed nuclear-related organization Pierluigi Paganini December 23, 2024 North Korea-linked Lazarus Group targeted employees of an unnamed nuclear-related organization…
PHP-based Craft CMS Vulnerability Let Attackers Execute Remote Code
A critical vulnerability in the popular PHP-based Craft CMS has been discovered, allowing unauthenticated attackers to execute remote code on affected systems. The security flaw,…
North Korean Hackers Stolen $2.2 Billion from Crypto Platforms in 2024
North Korean hackers are estimated to have stolen a staggering $2.2 billion in 2024, up 21% from 2023. With advanced tactics and increasing sophistication, the…
Italy Fines OpenAI €15 Million for ChatGPT GDPR Data Privacy Violations
Dec 23, 2024Ravie LakshmananGDPR / Data Privacy Italy’s data protection authority has fined ChatGPT maker OpenAI a fine of €15 million ($15.66 million) over how…
17M Patient Records Stolen in Ransomware Attack on Three California Hospitals
A staggering 17 million patient records, containing sensitive personal and medical information, have been stolen in a devastating ransomware attack on PIH Health. The cyberattack,…
Germany Investigates BadBox Malware Infections, Targeting Over 192,000 Devices
Germany has launched an investigation into reports of a significant cyber threat believed to be linked to the BadBox Malware, which has allegedly infected over…