Data Breach, Vulnerabilities & Cyber Attack & Other News
Welcome to this week’s Cyber Security Newsletter, where we delve into the latest developments and crucial updates in cybersecurity. Your involvement in this rapidly changing…
Category: CyberSecurityNews
Curl Vulnerability Let Attackers Access Sensitive Information
A critical security flaw has been discovered in the popular data transfer tool Curl, potentially allowing attackers to access sensitive information. The vulnerability, identified as…
Password Era is Ending ” Microsoft to Delete 1 Billion Password to Replace “Passkey
In a significant turn towards a passwordless future, Microsoft has announced groundbreaking strides in adopting passkeys, a secure and user-friendly alternative to traditional passwords. With…
30,000 Devices in Germany Discovered with Pre-installed Malware “Badbox”
The Federal Office for Information Security (BSI) in Germany has taken decisive action against a wave of malware-infected digital picture frames and media players connected…
CISA Warns of Cleo 0-Day Vulnerability Exploited by Ransomware Gangs
The Cybersecurity and Infrastructure Security Agency (CISA) has issued an urgent warning about a critical vulnerability in Cleo’s file transfer software being actively exploited by…
New HeartCrypt Packer-as-a-Service (PaaS) Protecting Malware From Antivirus
A new packer-as-a-service (PaaS) called HeartCrypt has emerged as a powerful tool for malware operators to evade antivirus detection. Developed in July 2023 and launched…
Yahoo Terminates Their Entire Red Team From The “Team Paranoids”
Yahoo has laid off around 25% of its cybersecurity team, known as “The Paranoids,” over the past year, according to information obtained by Cyber Security News.…
Hackers Scanning RDP Services Especially Port 1098 For Exploitation
There is a significant surge in scanning activities targeting Remote Desktop Protocol (RDP) services, with a particular focus on port 1098/TCP. Over the past two…
Hackers Weaponize Google Drive Links to Breach Corporate Networks
A sophisticated attack campaign targeting organizations in Japan and other East Asian countries. The threat actor, identified as APT-C-60, is employing a clever social engineering…
300,000+ Prometheus Monitoring Servers Exposed To DoS Attacks
Over 336,000 Prometheus servers and Exporters were exposed to DoS attacks, allowing attackers to obtain sensitive information such as credentials and API keys. Prometheus is…
New Stealthy Linux Malware PUMAKIT With Unique Privilege Escalation Methods
Security researchers at Elastic Security Labs have uncovered a sophisticated Linux malware dubbed PUMAKIT, which employs advanced stealth techniques and unique privilege escalation methods to…
Critical Dell Security Vulnerabilities Let Attackers Compromise Affected Systems
Dell has recently disclosed two critical security vulnerabilities affecting a wide range of its products, potentially exposing numerous systems to serious risks. The vulnerabilities, identified…