Dell SupportAssist Vulnerability Let Attackers Escalate Privileges
A newly disclosed high-impact vulnerability in Dell’s widely used SupportAssist software could allow attackers to escalate privileges on affected systems....
Read more →Category: CyberSecurityNews
IBM AIX Vulnerability Let Attackers Trigger DoS Condition
IBM has reported vulnerabilities in its AIX operating system that could allow attackers to cause a Denial of Service (DoS)...
Read more →
Researchers Uncovered Dark Web Operation Acquiring KYC Details
iProov, a leading provider of biometric identity verification solutions, has uncovered a covert dark web operation aimed at undermining Know...
Read more →
Japan Airlines System Hit by Cyber Attack, Flight Operations Affected
Japan Airlines (JAL), the nation’s second-largest airline, reported a significant cyberattack on its systems early Thursday morning, causing disruptions to...
Read more →
New Sophisticated Attack Weaponizes Windows Defender to Bypass EDR
A sophisticated attack technique that weaponizes Windows Defender Application Control (WDAC) to disable Endpoint Detection and Response (EDR) sensors on...
Read more →
Apache Traffic Control Vulnerability Let Attackers Inject Malicious SQL Commands
A critical SQL injection vulnerability, identified as CVE-2024-45387, has been discovered in Apache Traffic Control, a widely used open-source platform...
Read more →
Postman Data Leak – 30,000 Publicly Accessible Workspaces Could Lead Massive Hack
Researchers uncovered a widespread and alarming trend involving data leaks from Postman, a widely used cloud-based API development and testing...
Read more →
Apache HugeGraph-Server Vulnerability Lets Attackers Bypass Authentication
A new security vulnerability, CVE-2024-43441, has been identified in Apache HugeGraph-Server, a widely used open-source graph database system. This flaw,...
Read more →
OilRig Hackers Exploiting Windows Kernel 0-day to Attack Organizations
The Iranian state-sponsored hacking group OilRig, also known as APT34, has intensified its cyber espionage activities, targeting critical infrastructure and...
Read more →
Two New Malicious PyPI packages Attacking Users to Steal Login Details
Two malicious Python Package Index (PyPI) packages: Zebo-0.1.0 and Cometlogger-0.1, have been identified, posing a significant threat to user security. These packages,...
Read more →
Adobe ColdFusion Vulnerability Let Attackers Read arbitrary files
Adobe has issued updates to address a vulnerability in its ColdFusion software that could allow attackers to read arbitrary files...
Read more →
Brazilian Hacker Charged for Selling Data Stolen From Hacked Computers
Junior Barros De Oliveira, a 29-year-old resident of Curitiba, Brazil, has been indicted in the United States for orchestrating an...
Read more →