FunkSec Ransomware Dominating Ransomware Attacks, Compromised 85 Victims in December
A new ransomware group called FunkSec has emerged as a dominant force in the cybercrime landscape, claiming to have compromised over 85 victims in December…
Category: CyberSecurityNews
California Wildfire Exploited By Hackers To Launch Phishing Attacks
As California battles devastating wildfires, cybercriminals are seizing the opportunity to exploit the confusion and uncertainty through sophisticated phishing attacks. The Veriti Research team has…
New UEFI Secure Boot Bypass Vulnerability Exposes Systems to Malicious Bootkits
A newly discovered vulnerability, CVE-2024-7344, has been identified as a critical flaw in the UEFI Secure Boot mechanism, potentially impacting the majority of UEFI-based systems.…
Hackers Attacking Exploited Thousands of PHP-Based Web Applications to Deploy Malware
A massive cybersecurity threat has emerged as hackers exploit vulnerabilities in PHP-based web applications to deploy malware on a global scale. Imperva Threat Research has…
Veeam Azure Backup Solution Vulnerability Allows Attackers To Enumerate Network
A critical security flaw has been discovered in Veeam’s popular backup solution for Microsoft Azure, potentially exposing countless organizations to network enumeration and further malicious…
Black Basta Abusing Teams Chat To Initiate Remote Session & Drop Malware
Notorious ransomware group Black Basta has been observed leveraging Microsoft Teams as part of a sophisticated social engineering campaign. This new tactic, which combines email…
Ivanti Endpoint Manager Vulnerabilities Allows Attackers To Extract Sensitive Information
Ivanti addressed multiple severe vulnerabilities in its Endpoint Manager (EPM) software, potentially exposing organizations to significant data breaches. The most alarming of these flaws are…
Botnet Malware Exploits 13,000 MikroTik Devices By Abusing Misconfigured DNS Records
Cybersecurity experts at Infoblox Threat Intel have uncovered a sophisticated botnet leveraging misconfigured DNS records to bypass email protection systems and deliver malware through spam…
2024 CVE Review – “Critical, High, Medium” Position Shifting in Cybersecurity
As the calendar turns to 2025, cybersecurity professionals are taking stock of key trends in Common Vulnerabilities and Exposures (CVEs) from the previous year, revealing…
0-Click RCE Vulnerability in Samsung Smartphones Let Attackers Trigger OOB Write – Technical Analysis
Google Security researchers have disclosed a critical vulnerability, tagged as CVE-2024-49415, affecting Samsung smartphones last year and reported to Samsung with a 90-day deadline to…
Apple Opens Applications for Information Security Internship
If you’re a tech-savvy student eager to start career in cyber security, Apple has just announced an exciting opportunity for students passionate about Information Security.…
Hackers Released 15,000+ Unique Fortigate Firewall Configs
A hacking collective known as the “Belsen Group” has released over 15,000 unique FortiGate firewall configurations online. The data dump, reportedly obtained by exploiting a…