2,048 Ivanti VPN Instances Vulnerable to Exploited Zero-Day Attacks
A critical security vulnerability in Ivanti Connect Secure VPN appliances has left 2,048 instances worldwide exposed to potential exploitation, with...
Read more →Category: CyberSecurityNews
Researchers Hacked into Apple’s New USB-C Controller
Security researchers have successfully hacked Apple’s proprietary ACE3 USB-C controller. This chip, introduced with the iPhone 15 and iPhone 15...
Read more →
Critical Samsung 0-Click Vulnerability Found in Samsung S24 and S23 Devices Fixed
On September 21, 2024, a critical security vulnerability was identified by Google researchers in the Monkey’s Audio (APE) decoder used...
Read more →
New Skimmer Malware Hijacking WordPress Websites to Steal Credit Cards
A sophisticated credit card skimmer malware had been found hitting WordPress checkout pages, silently injecting malicious JavaScript into database records...
Read more →
Samsung Patches Multiple Vulnerabilities That Let Attackers Execute Arbitrary Code
Samsung Mobile has announced the release of a comprehensive maintenance update as part of its monthly Security Maintenance Release (SMR)...
Read more →
Microsoft Fixes Outlook Client Freeze Issue When Copying Text Using Ctrl+C
Microsoft has resolved a persistent issue that caused classic Outlook to freeze or hang when users attempted to copy text...
Read more →
Darktrace to Acquire Cado Security to Enhance Cloud Forensic Capabilities
Darktrace, a global leader in AI cybersecurity, has announced plans to acquire Cado Security, a UK-based cyber investigation and response...
Read more →
Robot Vacuums Hacked To Spy On Their Owners
Critical vulnerabilities in Ecovacs robot vacuums enable hackers to exploit these devices for surveillance and harassment. The findings, presented at...
Read more →
Weaponized LDAP PoC Exploit Installing Information-Stealing Malware
Security researchers are tricked into downloading and executing information-stealing malware by a fake proof-of-concept (PoC) exploit for CVE-2024-49113, dubbed LDAPNightmare....
Read more →
Fake CrowdStrike Job Offers Attacking Developers to Deploy Cryptominer
In a sophisticated phishing campaign, uncovered cybercriminals are exploiting CrowdStrike’s recruitment branding to target developers and deploy the XMRig cryptominer....
Read more →
Apple Says, “Siri Audio is Always Private, Never Used for Ads”
Following the $95 million privacy breach settlement, Apple has clarified that Siri audio is not used for advertisements, remains private,...
Read more →
Facebook Awarded $100,000 for Bug that Allows Internal Access to Server
Facebook has awarded a $100,000 bug bounty to security researcher Ben Sadeghipour for discovering a critical vulnerability in the company’s...
Read more →