FTC Slams GoDaddy For Failing To Implement Standard Security Practices Following Major Breaches
The Federal Trade Commission (FTC) has taken significant action against GoDaddy, one of the world’s largest web hosting companies, for...
Read more →Category: CyberSecurityNews
New Tunneling Protocol Vulnerabilities Lets Attackers Hijack Over 4 Million Internet Hosts & VPN
Researchers from Top10VPN report to Cyber Security News that they have uncovered major vulnerabilities in tunneling protocols that allow attackers...
Read more →
FunkSec Ransomware Dominating Ransomware Attacks, Compromised 85 Victims in December
A new ransomware group called FunkSec has emerged as a dominant force in the cybercrime landscape, claiming to have compromised...
Read more →
California Wildfire Exploited By Hackers To Launch Phishing Attacks
As California battles devastating wildfires, cybercriminals are seizing the opportunity to exploit the confusion and uncertainty through sophisticated phishing attacks....
Read more →
New UEFI Secure Boot Bypass Vulnerability Exposes Systems to Malicious Bootkits
A newly discovered vulnerability, CVE-2024-7344, has been identified as a critical flaw in the UEFI Secure Boot mechanism, potentially impacting...
Read more →
Hackers Attacking Exploited Thousands of PHP-Based Web Applications to Deploy Malware
A massive cybersecurity threat has emerged as hackers exploit vulnerabilities in PHP-based web applications to deploy malware on a global...
Read more →
Veeam Azure Backup Solution Vulnerability Allows Attackers To Enumerate Network
A critical security flaw has been discovered in Veeam’s popular backup solution for Microsoft Azure, potentially exposing countless organizations to...
Read more →
Black Basta Abusing Teams Chat To Initiate Remote Session & Drop Malware
Notorious ransomware group Black Basta has been observed leveraging Microsoft Teams as part of a sophisticated social engineering campaign. This...
Read more →
Ivanti Endpoint Manager Vulnerabilities Allows Attackers To Extract Sensitive Information
Ivanti addressed multiple severe vulnerabilities in its Endpoint Manager (EPM) software, potentially exposing organizations to significant data breaches. The most...
Read more →
Botnet Malware Exploits 13,000 MikroTik Devices By Abusing Misconfigured DNS Records
Cybersecurity experts at Infoblox Threat Intel have uncovered a sophisticated botnet leveraging misconfigured DNS records to bypass email protection systems...
Read more →
2024 CVE Review – “Critical, High, Medium” Position Shifting in Cybersecurity
As the calendar turns to 2025, cybersecurity professionals are taking stock of key trends in Common Vulnerabilities and Exposures (CVEs)...
Read more →
0-Click RCE Vulnerability in Samsung Smartphones Let Attackers Trigger OOB Write – Technical Analysis
Google Security researchers have disclosed a critical vulnerability, tagged as CVE-2024-49415, affecting Samsung smartphones last year and reported to Samsung...
Read more →