Prompt Injection Attacks Via Email To User
Microsoft has announced LLMail-Inject, a cutting-edge challenge designed to test and improve defenses against prompt injection attacks in LLM-integrated email systems. This innovative competition, set…
Category: CyberSecurityNews
ANY.RUN Offers Upto 3 Free Licences for Cybersecurity Researchers
At Cyber Week 2024 , ANY.RUN has rolled out an array of exclusive, time-limited deals tailored to help cybersecurity professionals save big while enhancing their…
Researchers Uncover Malicious Use Of Cobalt Strike Servers In Cyber Attacks
Cybersecurity researchers have identified a cluster of servers exploiting the latest version of Cobalt Strike, a legitimate penetration testing tool, for malicious purposes. The discovery…
Black Basta Ransomware Leverages Microsoft Teams to Deliver Malware
Black Basta ransomware operators have improved their tactics, leveraging Microsoft Teams to deploy Zbot, DarkGate, and Custom Malware. The ongoing social engineering campaign comprises a…
Russian BlueAlpha APT Abuses Cloudflare Tunnels To Deliver Custom Malware
The state-sponsored cyber threat group BlueAlpha has been active since at least 2014 and has recently upgraded its malware delivery system to leverage Cloudflare Tunnels…
CapibaraZero Firmware Emerges As Affordable Flipper Zero Alternative For Pentesters
The open-source CapibaraZero firmware has emerged as a cost-effective alternative to the popular Flipper Zero multi-tool. This new firmware targets ESP32-S3-based hardware platforms, with a…
Authorities Dismantled 50+ Servers Used By Criminal Marketplace
Europol has recently announced the successful takedown of a sophisticated online fraud network. The operation, spearheaded by German authorities and supported by law enforcement agencies…
U.S. Officials Warn Americans to Use Only Encrypted Messaging Apps
In the wake of an unparalleled cyberattack targeting major U.S. telecommunications providers, including AT&T, Verizon, and Lumen Technologies, federal officials have urged Americans to protect…
Top Five Industries Aggressively Targeted By Phishing Attacks
Phishing attacks continue to pose a significant threat to various industries, with cybercriminals employing sophisticated tactics to deceive recipients. A recent analysis by Cofense Intelligence,…
QR Code-Based C2 Attack Bypasses All Type of Browser Isolation Security
Cybersecurity firm Mandiant has uncovered a novel method to bypass browser isolation technologies, a widely used security measure designed to protect users from web-based attacks…
Rockwell Automation Vulnerabilities Let Attackers Execute Remote Code
Rockwell Automation, a leading provider of industrial automation solutions, has disclosed multiple critical vulnerabilities in its Arena software that could allow attackers to execute remote…
CISA Releases Multiple ICS Advisories Detailing Exploits & Vulnerabilities
The Cybersecurity and Infrastructure Security Agency (CISA) issued two critical Industrial Control Systems (ICS) advisories on December 5, 2024. With these advisories the Cybersecurity and…