North Korean Group ScarCruft Expands From Spying to Ransomware Attacks
North Korean hackers ScarCruft shift from spying to ransomware, using VCD malware in phishing attacks, targeting South Korea with advanced tools. Discover how this new…
Month: August 2025
Xerox Issues Urgent Security Update
Xerox Corporation has issued urgent security updates addressing two high-impact vulnerabilities in its FreeFlow Core software. The flaws, now tracked as CVE-2025-8355 and CVE-2025-8356, have…
Report Reveals Tool Overload Driving Fatigue and Missed Threats in MSPs
New Heimdal study reveals how tool sprawl creates blind spots, with over half of providers experiencing daily or weekly burnout. Survey of 80 North American…
Legitimate System Functions Exploited to Steal Secrets in Shared Linux Setups
Security researcher Ionuț Cernica revealed how commonplace Linux utilities can be weaponized to siphon sensitive data in multi-tenant environments. His talk, “Silent Leaks: Harvesting Secrets…
Looming retirements and the skills shortage
The global shortage of field technicians and engineers is expected to peak over the next few years as the Baby Boomer generation escalates retirement. Over…
Sure! Here’s a rewritten version of your content while preserving the HTML tags:Quantum computing countdown for UAE cryptocurrency market
The world is facing quantum risks Cryptocurrency is potentially at risk The UAE is making proactive preparations No one can predict precisely when quantum computing…
Xerox FreeFlow Vulnerabilities leads to SSRF and RCE Attacks
An urgent security update has been released for Xerox FreeFlow Core software, addressing two critical vulnerabilities that could allow attackers to execute remote code and…
Inside the Multimillion-Dollar Gray Market for Video Game Cheats
It’s all part of the ongoing tussle between the cheat developers and games companies, which spend money on developing anti-cheat software and trying to limit…
Multiple Critical Flaws Hit Zero Trust Products from Check Point, Zscaler, and Netskope
Security researchers at AmberWolf have uncovered critical vulnerabilities in leading Zero Trust Network Access (ZTNA) solutions from major cybersecurity vendors, potentially exposing thousands of organizations…
WinRAR zero day exploited by RomCom hackers in targeted attacks
ESET researchers have discovered a previously unknown vulnerability in WinRAR, exploited in the wild by Russia-aligned group RomCom. If you use WinRAR or related components…
Smart Buses flaws expose vehicles to tracking, control, and spying
Smart Buses flaws expose vehicles to tracking, control, and spying Pierluigi Paganini August 11, 2025 Researchers showed how hackers can exploit flaws in a bus’…
Over 29,000 Exchange servers unpatched against high-severity flaw
Over 29,000 Exchange servers exposed online remain unpatched against a high-severity vulnerability that can let attackers move laterally in Microsoft cloud environments, potentially leading to…