Storm-0978, a threat actor, actively targeted European and North American defense and government entities in a phishing campaign. Exploiting CVE-2023-36884, the campaign used Word documents…
An unnamed advanced persistent threat (APT) group has set its sights on two Rockwell Automation product vulnerabilities that they could use to cause disruption or…
Siemens and Schneider Electric published nine new security warnings that together addressed 50 vulnerabilities impacting its industrial devices. Recently, Schneider Electric and Siemens Energy indicated that…
As per the research conducted by SentinelOne, a new risk has been identified, which affects the information security researchers as well as the infosec community.…
CaixaBank has begun the recruitment of 200 young people with the tech skills that are “fundamental” to the digital transformation of the Spanish bank. The…
SonicWall fixed multiple critical vulnerabilities impacting its GMS firewall management and Analytics management and reporting engine. SonicWall addressed multiple critical vulnerabilities in its Global Management…
A ‘critical’ severity flaw has been detected inFortiOS and FortiProxy, identified as CVE-2023-33308 (CVSS rating 9.8). A remote attacker can use the vulnerability on susceptible devices to execute…
IP geolocation API services can do far more than serve website visitors in their local language and currency using IP lookup. They can also play…
Python-based malware targets Windows, linux, and macOS and is presumed to be used by dangerous password attack groups, also known as Crypto mimics. This group…
The OWASP Zed Attack Proxy is a widely used tool for conducting web application penetration testing. It is free and open-source. ZAP functions as a…
The University of Oklahoma published a notice informing staff and students that it has suffered a security breach. This breach was also due to the…
What’s old is new again, with researchers seeing a threefold increase in malware distributed through USB drives in the first half of 2023 A new…
