Threat actors leverage Out-of-Band Application Security Testing (OAST) techniques in the npm, PyPI, and RubyGems ecosystems to carry out multi-stage attacks, establish command and control…
Internet service provider Flip has migrated its customer base onto Swoop Telecommunications’ network under a three-year, $30 million deal. Swoop chief technology officer Tom Berryman…
Microsoft Bing displays what is being categorized as a misleading Google-esque search page when users search for ‘Google,’ making it look like you are on…
A throwback to January 5, 1990, marks the day the Joshi virus was unleashed — a significant event in the realm of technology and cybersecurity.…
FireScam, an information stealer malware with spyware capabilities, is being disseminated as a fake “Telegram Premium” application. The malware spreads through a phishing website on…
Garak is a free, open-source tool specifically designed to test the robustness and reliability of Large Language Models (LLMs). Inspired by utilities like Nmap or…
Cybersecurity professionals are the frontline warriors combating hackers, hacktivists, and ransomware groups. To fight with these cyber criminals, the world needs cybersecurity expertise who can…
An alarming new development emerged in the cybersecurity landscape with the release of a proof-of-concept (PoC) exploit targeting the critical vulnerability identified as CVE-2024-6387. This…
The EAGERBEE malware, a sophisticated backdoor previously linked to cyberespionage campaigns in the Middle East and Southeast Asia, has undergone significant updates. Recent investigations reveal…
Attackers published 20 malicious npm packages impersonating legitimate Nomic Foundation and Hardhat plugins, where these packages, downloaded over 1,000 times, compromised development environments and potentially…
Toyota, one of the world’s largest car manufacturers, has embarked on a project to transform its digital employee experience (DEX). In the US, Toyota has…
A proof-of-concept (PoC) exploit for the critical OpenSSH vulnerability CVE-2024-6387, also known as “regreSSHion,” has been released, raising alarms across the cybersecurity community. The flaw,…
