Category: CyberSecurityNews

Let's Encrypt Announces 6-day Validity Certificates
17
Jan
2025

Let’s Encrypt Announces 6-day Validity Certificates

Let’s Encrypt, the non-profit certificate authority, has introduced six-day validity certificates, commonly referred to as short-lived certificates. This new offering,…

CISA Releases Recommendations For Closing Software Understanding Gap
17
Jan
2025

CISA Releases Recommendations For Closing Software Understanding Gap

The Cybersecurity and Infrastructure Security Agency (CISA), in collaboration with other federal agencies, has released a comprehensive report urging a…

Active Directory Group Policy Bypassed To Allow NTLMv1 Authentications
17
Jan
2025

Active Directory Group Policy Bypassed To Allow NTLMv1 Authentications

Silverfort’s cybersecurity research team has uncovered a significant flaw in Microsoft’s Active Directory Group Policy that allows NTLMv1 authentication to…

U.S. President Issues Executive Order to Strengthen National Cybersecurity
17
Jan
2025

U.S. President Issues Executive Order to Strengthen National Cybersecurity

To strengthen the nation’s defenses against cyber threats, U.S President signed an Executive Order on Thursday to enhance cybersecurity measures…

A Sophisticated Linux Rootkit Attack Critical Infrastructure
17
Jan
2025

A Sophisticated Linux Rootkit Attack Critical Infrastructure

In recent months, a stealthy and highly sophisticated Linux rootkit named Pumakit has been identified, targeting critical infrastructure sectors including…

Russian Hackers Attacking WhatsApp Users With Malicious QR codes
17
Jan
2025

Russian Hackers Attacking WhatsApp Users With Malicious QR codes

Russian state-sponsored hacking group Star Blizzard has shifted its tactics to exploit WhatsApp users through malicious QR codes. This marks…

US Treasury Breach - Chinese Hackers Accessed Secretary Janet Yellen’s Computer
17
Jan
2025

US Treasury Breach – Chinese Hackers Accessed Secretary Janet Yellen’s Computer

Chinese state-sponsored hackers have successfully breached the computer systems of the U.S. Treasury Department, gaining access to Secretary Janet Yellen’s…

2024 Malware Trends - An Year With Highest Ever Recorded Cyber Threats
16
Jan
2025

2024 Malware Trends – An Year With Highest Ever Recorded Cyber Threats

Last year witnessed an alarming escalation in cyber threats, with malware families evolving and attack tactics becoming more sophisticated than…

Kubernetes Windows Nodes Vulnerability Allows Arbitrary Command Execution On Host
16
Jan
2025

Kubernetes Windows Nodes Vulnerability Allows Arbitrary Command Execution On Host

A newly disclosed vulnerability in Kubernetes, CVE-2024-9042, has raised concerns within the cloud-native community. This security flaw specifically affects Windows…

FTC Slams GoDaddy For Failing To Implement Standard Security Practices Following Major Breaches
16
Jan
2025

FTC Slams GoDaddy For Failing To Implement Standard Security Practices Following Major Breaches

The Federal Trade Commission (FTC) has taken significant action against GoDaddy, one of the world’s largest web hosting companies, for…

New Tunneling Protocol Vulnerabilities Lets Attackers Hijack Over 4 Million Internet Hosts & VPN
16
Jan
2025

New Tunneling Protocol Vulnerabilities Lets Attackers Hijack Over 4 Million Internet Hosts & VPN

Researchers from Top10VPN report to Cyber Security News that they have uncovered major vulnerabilities in tunneling protocols that allow attackers…

FunkSec Ransomware Dominating Ransomware Attacks, Compromised 85 Victims in December
16
Jan
2025

FunkSec Ransomware Dominating Ransomware Attacks, Compromised 85 Victims in December

A new ransomware group called FunkSec has emerged as a dominant force in the cybercrime landscape, claiming to have compromised…