Cleo Zero-Day RCE Vulnerability Actively Exploited in the Wild
A critical zero-day vulnerability (CVE-2024-50623) in Cleo’s file transfer products Harmony, VLTrader, and LexiComis being actively exploited by threat actors,...
Read more →Category: CyberSecurityNews
Web Apps and Admin Center Goes Offline
Microsoft is investigating a widespread outage that disrupted access to Microsoft 365 web applications and the Microsoft 365 admin center...
Read more →
Chinese Hackers Using Visual Studio Code Tunnels & RDP To Gain Remote Access
In a sophisticated cyber-espionage campaign dubbed ‘Operation Digital Eye,’ suspected Chinese state-backed hackers targeted major business-to-business IT service providers across...
Read more →
SAP NetWeaver Vulnerabilities Let Attackers Upload Malicious PDF Files
SAP has issued a crucial security update addressing multiple high-severity vulnerabilities in its NetWeaver Application Server for Java, specifically within...
Read more →
RedLine Malware Weaponizing Pirated Corporate Softwares To Steal Logins
An ongoing RedLine info-stealer effort targets Russian-speaking entrepreneurs using unlicensed corporate software copies to automate business operations. Attackers were distributing...
Read more →
WhatsApp View Once Vulnerability Let Attackers Bypass The Privacy Feature
Meta’s WhatsApp recently faced scrutiny after a significant vulnerability in its “View Once” feature was discovered, allowing attackers to bypass...
Read more →
Dell Power Manager Vulnerability Let Attackers Execute Malicious Code
A critical security vulnerability has been discovered in Dell Power Manager (DPM), a widely used application for managing power settings...
Read more →
Radiant Hacked – $50 Million USD Worth Crypto Stolen by North Korean Hackers
Radiant Capital, a prominent decentralized finance (DeFi) protocol, has fallen victim to a major security breach, resulting in the loss...
Read more →
New Meeten Malware Attacking macOS And Windows Users To Steal Logins
A new scam effort has been observed targeting Web3 leveraging fake video conferencing applications to deliver an information stealer dubbed...
Read more →
Over 270 Critical Vulnerabilities Listed
The Cybersecurity and Infrastructure Security Agency (CISA) has published its latest vulnerability bulletin, detailing over 270 security vulnerabilities identified in...
Read more →
Python Vulnerability in MacOS or Linux Leads to Exploiting The Memory
A high-severity vulnerability (CVE-2024-12254) impacting CPython has been publicly disclosed, affecting Python versions 3.12.0 and later. The flaw, identified in...
Read more →
Uncovering Attacker’s Infrastructre & Tactics Via Passive DNS
In the ever-evolving landscape of cybersecurity, understanding how attackers establish and maintain their attack infrastructure is crucial for building robust...
Read more →