Kaspersky Goodbye Letter: Free Security Before Exit
In a heartfelt letter titled “To our Lovely you,” Kaspersky Lab, the Russian cybersecurity firm, has announced its departure from the United States market. Addressing…
Author: Cybernoz
VirtualBox VM Escape: Insights And Mitigation Strategies
A new threat has emerged concerning the security of VirtualBox virtual machines (VMs). A threat actor known as Cas has surfaced on BreachForums, revealing a…
Critical Apache HugeGraph Vulnerability Under Attack
Jul 17, 2024NewsroomVulnerability / Data Security Threat actors are actively exploiting a recently disclosed critical security flaw impacting Apache HugeGraph-Server that could lead to remote…
10 Signs Your Device Is Infected
Spyware presents a serious threat by infiltrating devices, accessing sensitive data, and transmitting it without consent. This form of attack underscores the importance of recognizing…
Most GitHub Actions workflows are insecure in some way
Most GitHub Actions are susceptible to exploitation; they are overly privileged or have risky dependencies, according to Legit Security. GitHub Actions security flaws pose major…
Why API Security Is Critical In Today’s Interconnected World
By Venkatesh Sundar, Founder and President, Americas, Indusface Application programming interfaces or APIs are crucial for exchanging data between various software systems. However, as reliance…
Overlooked essentials: API security best practices
In this Help Net Security, Ankita Gupta, CEO at Akto, discusses API security best practices, advocating for authentication protocols like OAuth 2.0 and OpenID Connect,…
Detect And Mitigate With Expert Tips
Phishing attacks represent the most prevalent cyber threat today, and their frequency is only rising. While this may be concerning, there are effective measures to…
SubSnipe: Open-source tool for finding subdomains vulnerable to takeover
SubSnipe is an open-source, multi-threaded tool to help find subdomains vulnerable to takeover. It’s simpler, produces better output, and has more fingerprints than other subdomain…
Void Banshee Exploits Legacy Internet Explorer In Attack
Researchers have uncovered a critical vulnerability (CVE-2024-38112) that the Void Banshee threat actor group has been actively exploiting in a recent campaign to deploy the…
Kaspersky offers free security software for six months in U.S. goodbye
Kaspersky is offering free security products for six months and tips for staying safe as a parting gift to consumers in the United States. The…
Hacker Dumps Personal Info of Millions of Users
The hacker behind the Trello data breach claims the data was stolen in January 2024 and can be used for doxing and further exposing the…