Takeaways from the Campaign Targeting Browser Extensions
Dec 30, 2025The Hacker NewsBrowser Security / GenAI Security News has been making headlines over the weekend of the extensive attack campaign targeting browser extensions…
Month: December 2024
CISA’s 2024 KEV Catalog Update: Vulnerabilities And Trends
In 2024, the U.S. Cybersecurity and Infrastructure Security Agency (CISA) continued to build on its critical cybersecurity initiative by expanding its Known Exploited Vulnerabilities (KEV)…
What is Dunelm doing for women in tech?
In September 2024, Dunelm reported a 4.1% jump in annual sales to £1.71bn for the year to 29 June. During the same month, GlobalData estimated…
Threat actors attempt to exploit a flaw in Four-Faith routers
Threat actors attempt to exploit a flaw in Four-Faith routers Pierluigi Paganini December 30, 2024 VulnCheck researchers warn that threat actors are attempting to exploit…
AT&T and Verizon say networks secure after Salt Typhoon breach
AT&T and Verizon confirmed they were breached in a massive Chinese espionage campaign targeting telecom carriers worldwide but said the hackers have now been evicted…
Top 10 financial services stories of 2024
It seems fintech has been replaced by generative artificial intelligence (GenAI) as the most-used term in banking IT this year. Fintech, after all, is not…
Microsoft Warns of Windows 11 24H2 Bug Blocks Security Updates
Microsoft has alerted users to a critical bug affecting the Windows 11 24H2 update, which could potentially leave systems vulnerable to security threats. The issue,…
D-Link Web Management Interface Vulnerability Let Attackers Gain Device Access
A critical vulnerability (CVE-2024-13030) has been identified in the web management interface of the D-Link DIR-823G router with firmware version 1.0.2B05_20181207. The vulnerability allows attackers…
The Cyber Security Agency Of Singapore Alerts CVE-2024-43441
The Cyber Security Agency of Singapore has issued a warning about several critical vulnerabilities found in Apache software products. The Apache Software Foundation has rolled…
Malware botnets exploit outdated D-Link routers in recent attacks
Two botnets tracked as ‘Ficora’ and ‘Capsaicin’ have recorded increased activity in targeting D-Link routers that have reached end of life or are running outdated…
Top Law Enforcement Operations in Cybersecurity in 2024: A Year of Major Strikes Against Cybercrime
In 2024, law enforcement agencies worldwide ramped up their efforts to combat cybercrime, leading to a series of high-profile operations aimed at disrupting the activities…
Critical Flaw Exposes Four-Faith Routers to Remote Exploitation
SUMMARY: Vulnerability: CVE-2024-12856 impacts Four-Faith routers (models F3x24 and F3x36), allowing remote code execution. Exploit Path: Attackers use the /apply.cgi endpoint to exploit the adj_time_year…