What You Need to Know
If your company is using Microsoft products, you are at risk of falling victim to a Tycoon 2FA phishing attack....
Read more →Category: CyberSecurityNews
Dell SupportAssist Vulnerability Exposes PCs to Privilege Escalation Attacks
A critical security vulnerability has been identified in Dell’s SupportAssist for Home PCs, specifically affecting the installer executable version 4.0.3....
Read more →
Slack Vulnerability Let Attackers Steal Data From Private Slack Channels
A newly discovered vulnerability in Slack AI could allow attackers to exfiltrate sensitive data from private Slack channels. Cybersecurity researchers...
Read more →
Chipmaker Microchip Hit by Cyber Attack, Operations Impacted
Microchip Technology Incorporated, a leading semiconductor manufacturer, has been hit by a significant cyber attack that has disrupted its operations....
Read more →
Xeon Sender Abusing Nine SaaS providers For Massive SMS Attacks
Xeon Sender, a Python script, is a tool that enables threat actors to send spam messages through nine different SaaS...
Read more →
AWS Configuration Vulnerability Exposes Thousands of Web Apps
A recent discovery by Miggo Research has unveiled a critical configuration vulnerability in Amazon Web Services (AWS) that exposes thousands...
Read more →
TA453 Hackers Using Fake podcast To Deliver New BlackSmith Malware Toolkit
Iranian threat actor TA453 launched a phishing campaign targeting a prominent religious figure with a fake podcast invitation aiming to...
Read more →
Critical Vulnerability In OpenBMCs For Servers, Leads To Full Compromise
BMCs are specialized microcontrollers embedded in servers and other devices, responsible for monitoring and managing hardware health, including temperature, voltage,...
Read more →
Hackers Exploit PHP Vulnerability in Windows for Remote Code Execution
Cybersecurity researchers at Symantec recently identified a new malware that exploits a PHP vulnerability(CVE-2024-4577) in the CGI argument injection flaw....
Read more →
Hackers Exploited AWS ENV Files to Attack 110,000 Domains & Steal Credentials
A sophisticated extortion campaign targeted 110,000 domains by exploiting exposed .env files on unsecured web applications. The attackers obtained AWS...
Read more →
New UULoader Attacking Users Via Weaponized PDF Documents
Malicious .msi installers disguised as legitimate software actively target Korean and Chinese speakers by dubbing UULoader, contain a loader likely...
Read more →
Microsoft Launches Unified Teams App for Personal & Work Environments
Microsoft has unveiled a significant update to its popular collaboration platform, Microsoft Teams, by launching a unified app that brings...
Read more →