Hackers Using AV/EDR Tool “EDRSandBlast” To Bypass Endpoints
AV, anti-malware, and EDR are tools that are primarily used to detect and prevent cyber-attacks. While the AV/EDR bypass tools...
Read more →Category: CyberSecurityNews
Critical QNAP Zero-day Flaw in QuRouter Patched, Update Now!
QNAP Systems, Inc., a leading provider of network-attached storage (NAS) and networking solutions, has released a critical security update for...
Read more →
MediaTek Smartphone Chipsets Vulnerabilities Let Attackers Escalate Privileges
Recent security bulletins have disclosed high-severity vulnerabilities in MediaTek smartphone chipsets, which could enable attackers to escalate privileges and gain...
Read more →
PfSense Stored XSS Vulnerability Leads To RCE Attacks, PoC Published
A critical security vulnerability has been discovered in pfSense version 2.5.2, potentially allowing attackers to execute arbitrary code on affected...
Read more →
Okta Verify Agent Windows Flaw Let Attackers Steal User Passwords
Okta, a leading identity and access management company, has patched a critical vulnerability in its Verify agent for Windows that...
Read more →
SYS01 InfoStealer Malware Attacking Meta Business Page To Steal Logins
Infostealer malware is a type of malicious software designed to infiltrate computer systems and extract sensitive information. Once the data...
Read more →
Threat Actors Planted ‘Pygmy Goat’ Backdoor On Hacked Sophos XG Firewall Devices
NCSC researchers have uncovered a sophisticated backdoor dubbed “Pygmy Goat” that was deployed on compromised Sophos XG firewall devices. The...
Read more →
280+ Typosquat Malicious Packages Attacking npm Developers
Over 280 malicious typosquat packages have been unearthed in an ongoing campaign targeting JavaScript developers using the popular npm (Node Package Manager) ecosystem. The...
Read more →
Opera Browser 0-Day Flaw Allows Malicious Extensions
A critical vulnerability in the Opera web browser has been discovered that could allow malicious extensions to gain unauthorized access...
Read more →
Data Breaches, Vulnerabilities, Cyber Attacks, & Other Updates
Welcome to this week’s Cybersecurity Newsletter, where you will find the latest updates and insights from the cybersecurity world. Stay...
Read more →
Okta AD/LDAP Authentication Vulnerability Allows Unauthorized Access
Okta, a leading company in identity and access management, has recently addressed a critical vulnerability in its AD/LDAP Delegated Authentication...
Read more →
LastPass Warns of Hackers Misusing Reviews for Fake Support Numbers
LastPass, the popular password management service, has issued an urgent warning to its users about an ongoing social engineering campaign...
Read more →