Hackers Weaponize npm Packages To Steal Solana Private Keys Via Gmail
Hackers have deployed malicious npm packages designed to exfiltrate Solana private keys through Gmail’s trusted infrastructure, as uncovered recently by...
Read more →Category: CyberSecurityNews
PoC Exploit Released For QNAP Remote Code Execution Vulnerability
A critical remote code execution (RCE) vulnerability designated as CVE-2024-53691 has been identified in the QNAP QTS/QuTS hero operating system....
Read more →
Microsoft Configuration Manager Vulnerability Allows Remote Code Execution
A critical vulnerability, CVE-2024-43468, has been identified in Microsoft Configuration Manager (ConfigMgr), posing a severe security risk to organizations relying...
Read more →
Windows Common Log File System Zero-day Vulnerability (CVE-2024-49138) Exploited
A zero-day vulnerability in the Windows Common Log File System (CLFS) driver, designated as CVE-2024-49138. This critical flaw, identified by...
Read more →
Windows 11 BitLocker-Encrypted Files Accessed Without Disassembling Laptops
Researchers demonstrated how attackers can bypass its protections without physically tampering with the device. The exploit, known as “bitpixie” (CVE-2023-21563),...
Read more →
Linux Kernal 6.13 Released – What’s New!
Linus Torvalds announced the final release of Linux Kernel 6.13, marking the end of its development cycle. As expected, the...
Read more →
Yubico PAM Module Vulnerability Let Attackers Bypass Authentications In Certain Configurations
A leading provider of hardware authentication security keys, Yubico has recently disclosed a significant vulnerability in its PAM (Pluggable Authentication...
Read more →
CISA Warns of Aviatrix Controllers OS Command Injection Vulnerability Exploited in Wild
The Cybersecurity and Infrastructure Security Agency (CISA) has added a critical vulnerability affecting Aviatrix Controllers to its Known Exploited Vulnerabilities...
Read more →
Now Microsoft Teams Let Users Customize Banner Notification Positions
Microsoft has unveiled a much-anticipated feature for its Teams platform: the ability to customize the position of banner notifications on...
Read more →
New AI Telegram Module To Analyze Hacking Related Content In Telegram
A new AI module developed by a Russian software engineer with support from the National Technology Initiative is set to...
Read more →
New PoC Released For Ivanti Connect Secure RCE Vulnerability (CVE-2025-0282)
Security researchers have unveiled a proof-of-concept (PoC) exploit for a critical remote code execution vulnerability in Ivanti Connect Secure, Policy...
Read more →
Let’s Encrypt Announces 6-day Validity Certificates
Let’s Encrypt, the non-profit certificate authority, has introduced six-day validity certificates, commonly referred to as short-lived certificates. This new offering,...
Read more →