Enhancing Crowdsource reward system – Labs Detectify
Starting November 1, 2023, the reward for each time a submitted module is found in customers’ assets (pay-per-hit) will be doubled for critical, high, and…
Month: April 2025
CentreStack RCE exploited as zero-day to breach file sharing servers
Hackers exploited a vulnerability in Gladinet CentreStack’s secure file-sharing software as a zero-day since March to breach storage servers Gladinet CentreStack is an enterprise file-sharing…
Hellcat Ransomware Updated It’s Arsenal to Attack Government, Education, and Energy Sectors
A sophisticated ransomware strain known as Hellcat has emerged as a formidable threat in the cybersecurity landscape since its first appearance in mid-2024. The malware…
CISA Alerts on Active Exploitation of CentreStack Hard-Coded Key Vulnerability
The Cybersecurity and Infrastructure Security Agency (CISA) has issued an alert highlighting a critical vulnerability in Gladinet CentreStack, a cloud-based enterprise file-sharing platform. The issue,…
Lovable AI Found Most Vulnerable to VibeScamming — Enabling Anyone to Build Live Scam Pages
Lovable, a generative artificial intelligence (AI) powered platform that allows for creating full-stack web applications using text-based prompts, has been found to be the most…
US tariffs drive PC sales boost
The latest market data from analyst Canalys has reported that PC shipments experienced a surge in first quarter of 2025 (Q1 2025), driven by manufacturers…
A Response to “Mac Elitism and Snobbery”
A fellow security blogger, Michael Farnum, has posted a piece that I felt compelled to respond to. In the post he essentially complains that most…
2023 Detectify Crowdsource Awards: Meet the winners
We at Detectify are thrilled to present the 2023 Detectify Crowdsource Awards, akin to the Oscars or Grammys of ethical hacking. The awards are our…
Microsoft investigates global Exchange Admin Center outage
Microsoft is investigating an ongoing outage that is blocking admins worldwide from accessing the Exchange Admin Center (EAC). The company tagged this ongoing issue as…
Patches Released for Multiple Product Vulnerabilities
Why Application Security is Non-Negotiable The resilience of your digital infrastructure directly impacts your ability to scale. And yet, application security remains a critical weak…
Passkeys: A More Secure Future.
09 Apr Passkeys: A More Secure Future. Posted at 10:15h in Blogs by Taylor Fox Why Passkeys Are the Future of Online Security: Moving Beyond…
WhatsApp vulnerability could be used to infect Windows users with malware (CVE-2025-30401)
WhatsApp users are urged to update the Windows client app to plug a serious security vulnerability (CVE-2025-30401) that may allow attackers to trick users into…