Category: CyberSecurityNews

D-Link Hacked: Hackers Steal Source Code and Customer Personal Information
18
Oct
2023

Hackers Steal Source Code and Information

D-Link Corporation, a multinational company that provides innovative networking solutions for both consumer and business markets around the world, has…

IT admins Set Admin Portal Passwords to ‘admin’
18
Oct
2023

IT admins Set Admin Portal Passwords to ‘admin’

IT admins can be considered culpable for weak password use if they fail to enforce strong password policies or neglect…

Titan File Transfer Server Flaws
18
Oct
2023

Titan File Transfer Server Flaws

Multiple vulnerabilities have been discovered in Titan MFT and Titan SFTP servers owned by South River Technologies, which were associated…

Atlassian Zero-Day Flaw Under Attack
18
Oct
2023

CISA, FBI Warns of Critical Atlassian Zero-Day Flaw Under Active Attack

A serious security flaw in some versions of Atlassian Confluence Data Center and Server has been exploited by hackers.  They…

Threat Actors Exploiting Cisco IOS XE Zero-day Vulnerability
17
Oct
2023

Threat Actors Exploiting Cisco IOS XE Zero-day Vulnerability

Threat actors exploit zero-day vulnerabilities because these flaws are unknown to the software developers, making them highly effective for launching…

ChatGPT for Vulnerability Detection - Prompts Used & Responses
17
Oct
2023

ChatGPT for Vulnerability Detection – Prompts Used & Responses

Software vulnerabilities are essentially errors in code that malicious actors can exploit. Advanced language models such as CodeBERT, GraphCodeBERT, and…

EtherHiding: A Novel Technique to Hide Malicious Code Using Binance’s Smart Chain
17
Oct
2023

A Novel Technique to Hide Malicious Code

Threat actors have employed a new technique to distribute malicious code named “EtherHiding,” which abuses Binance’s Smart Chain (BSC) contracts…

IBM QRadar SIEM XSS Flaw
16
Oct
2023

IBM QRadar SIEM XSS Flaw Let Attackers Execute Java code

Two medium-severity vulnerabilities have been discovered in the widely used IBM QRadar SIEM, associated with Cross-Site Scripting (XSS) and Information…

CISA to Flag Vulnerabilities & Misconfigurations Exploited in Ransomware Attacks
16
Oct
2023

CISA to Flag Vulnerabilities & Misconfigurations Exploited

Ransomware attacks have grown to be a serious concern for businesses of all sizes, with the potential to seriously harm the…

Hackers Abusing Skype and Teams to Deliver the DarkGate Malware
16
Oct
2023

Hackers Abusing Skype and Teams to Deliver the DarkGate Malware

Hackers utilized the Teams and Skype messaging platforms to spread the DarkGate malware to the targeted businesses. When DarkGate malware…

OWASP ZAP 2.14.0 Released – What’s New!
13
Oct
2023

OWASP ZAP 2.14.0 Released – What’s New!

OWASP ZAP is a free and open-source web application security scanner. It is designed to be utilized by expert penetration…

Telegram, AWS, and Alibaba Cloud Users Targeted in latest supply chain attack
13
Oct
2023

Telegram, AWS, & Alibaba Users Targeted in supply chain attack

A new supply-chain attack, which was active throughout September 2023, has been discovered in which threat actors used Typosquatting and…