New UEFI Secure Boot Bypass Vulnerability Exposes Systems to Malicious Bootkits
A newly discovered vulnerability, CVE-2024-7344, has been identified as a critical flaw in the UEFI Secure Boot mechanism, potentially impacting...
Read more →Category: CyberSecurityNews
Hackers Attacking Exploited Thousands of PHP-Based Web Applications to Deploy Malware
A massive cybersecurity threat has emerged as hackers exploit vulnerabilities in PHP-based web applications to deploy malware on a global...
Read more →
Veeam Azure Backup Solution Vulnerability Allows Attackers To Enumerate Network
A critical security flaw has been discovered in Veeam’s popular backup solution for Microsoft Azure, potentially exposing countless organizations to...
Read more →
Black Basta Abusing Teams Chat To Initiate Remote Session & Drop Malware
Notorious ransomware group Black Basta has been observed leveraging Microsoft Teams as part of a sophisticated social engineering campaign. This...
Read more →
Ivanti Endpoint Manager Vulnerabilities Allows Attackers To Extract Sensitive Information
Ivanti addressed multiple severe vulnerabilities in its Endpoint Manager (EPM) software, potentially exposing organizations to significant data breaches. The most...
Read more →
Botnet Malware Exploits 13,000 MikroTik Devices By Abusing Misconfigured DNS Records
Cybersecurity experts at Infoblox Threat Intel have uncovered a sophisticated botnet leveraging misconfigured DNS records to bypass email protection systems...
Read more →
2024 CVE Review – “Critical, High, Medium” Position Shifting in Cybersecurity
As the calendar turns to 2025, cybersecurity professionals are taking stock of key trends in Common Vulnerabilities and Exposures (CVEs)...
Read more →
0-Click RCE Vulnerability in Samsung Smartphones Let Attackers Trigger OOB Write – Technical Analysis
Google Security researchers have disclosed a critical vulnerability, tagged as CVE-2024-49415, affecting Samsung smartphones last year and reported to Samsung...
Read more →
Apple Opens Applications for Information Security Internship
If you’re a tech-savvy student eager to start career in cyber security, Apple has just announced an exciting opportunity for...
Read more →
Hackers Released 15,000+ Unique Fortigate Firewall Configs
A hacking collective known as the “Belsen Group” has released over 15,000 unique FortiGate firewall configurations online. The data dump,...
Read more →
CISA Released Free Microsoft Expanded Cloud Logging Playbook (PDF)
The Cybersecurity and Infrastructure Security Agency (CISA) has released the Microsoft Expanded Cloud Logs Implementation Playbook, a comprehensive guide aimed...
Read more →
Palo Alto Networks Expedition Tool Flaw Let Attackers Access Firewall Passwords
Palo Alto Networks has disclosed multiple critical security vulnerabilities in its Expedition migration tool, including a concerning OS command injection...
Read more →