A critical Windows Registry Elevation of Privilege vulnerability, identified as CVE-2024-43641. This flaw, which affects various editions of Windows Server 2025, Windows 10, and Windows…
PLAYFULGHOST backdoor supports multiple information stealing features Pierluigi Paganini January 06, 2025 PLAYFULGHOST is a new malware family with capabilities including keylogging, screen and audio…
Microsoft has many good ideas for Windows 11 that often do not ship, and one of them was “Dynamic Wallpapers,” which, as the name suggests,…
AustralianSuper has implemented Microsoft’s Security Copilot amid fears of increasing attacks by threat actors using artificial intelligence. AustralianSuper’s Mike Backeberg (right) Australia’s largest superannuation firm,…
Cybersecurity firm ESET is urging Windows 10 users to upgrade to Windows 11 or Linux to avoid a “security fiasco” as the 10-year-old operating system…
Nuclei flaw allows signature bypass and code execution Pierluigi Paganini January 05, 2025 A vulnerability in Nuclei, an open-source vulnerability scanner, could allow attackers to…
Texas-based firm Orion recently fell victim to a significant wire transfer fraud scam, which ended up costing the business $60 million at the end of…
It’s a common challenge for today’s security teams to find themselves stuck in a never-ending cycle of identifying, prioritizing, and mitigating vulnerabilities. Oftentimes, what goes…
A new Android malware named ‘FireScam’ is being distributed as a premium version of the Telegram app via phishing websites on GitHub that mimick the…
A now-fixed vulnerability in the open-source vulnerability scanner Nuclei could potentially allow attackers to bypass signature verification while sneaking malicious code into templates that execute on…
Malicious npm packages target Ethereum developers Pierluigi Paganini January 04, 2025 Malicious npm packages target Ethereum developers, impersonating Hardhat plugins to steal private keys and…
A now-fixed vulnerability in the open-source vulnerability scanner Nuclei could potentially allow attackers to bypass signature verification while sneaking malicious code into templates that execute on…
