0day Vulnerability In 10,000 Web Apps Exploited Using XSS Payloads
A significant vulnerability, tracked as CVE-2024-37629, has been discovered in SummerNote 0.8.18. It allows Cross-Site Scripting (XSS) via the Code...
Read more →Author: Cybernoz
Update now! Google Pixel vulnerability is under active exploitation
Google has notified Pixel users about an actively exploited vulnerability in their phones’ firmware. Firmware is the code or program...
Read more →
Data leakage in the cloud – can data truly be safe in the cloud?
As organisations store and process data in the cloud, there are increasing concerns from administrators, data owners and CISOs’ around...
Read more →
A Modular Malware With Range Of Capabilities
Hackers misuse malware for diverse illicit intentions, including data theft, disrupting systems, espionage, or distortion for unethical monetary benefits. Besides...
Read more →
Hackers Exploiting MS Office Editor Vulnerability Deploy Keylogger
Researchers have identified a sophisticated cyberattack orchestrated by the notorious Kimsuky threat group. The group has been exploiting a known...
Read more →
The “Non-Trend” of “Full Automation” Workflows in Cybersecurity: A Reality Check
By Oren Koren, CPO & Co-Founder of VERITI It’s no surprise that there’s been a shift to automated workflows in...
Read more →
2 Super Cybersecurity Stocks To Buy: SentinelOne And Tenable
13 Jun 2 Super Cybersecurity Stocks To Buy: SentinelOne And Tenable Posted at 08:42h in Blogs by Di Freeze This...
Read more →
Best practices to beat container misconfiguration
He urges IT decision-makers to strategise better and only shift what is optimum for the new environment – transforming assets...
Read more →
Truist Bank Data Breach And Kulicke & Soffa Cyberattacks
A threat actor on a dark web forum has listed data from Truist Bank for sale following a cyberattack on...
Read more →
Hackers Abuse Windows Search Functionality To Deploy Malware
Hackers use Windows Search’s vulnerability to penetrate different layers and rooms in the client’s systems and execute unauthorized code by...
Read more →
Indian Ex-Employee Jailed for Wiping 180 Virtual Servers in Singapore
A Singapore court has sentenced a 39-year-old Indian national, Kandula Nagaraju, to two years and six months imprisonment for hacking...
Read more →
PHP command injection flaw exploited to deliver ransomware (CVE-2024-4577)
An OS command injection vulnerability in Windows-based PHP (CVE-2024-4577) in CGI mode is being exploited by the TellYouThePass ransomware gang....
Read more →