Gelsemium APT Hackers Attacking Linux Servers With New WolfsBane Malware
A new Linux backdoor named WolfsBane has been recently uncovered by the ESET researchers, attributed to the Gelsemium advanced persistent threat (APT) group. This discovery…
Category: CyberSecurityNews
10-Year Old Flaws In Ubuntu Server needrestart Package Let Attackers Gain Root Access
The cybersecurity community is on high alert following the discovery of five critical Local Privilege Escalation (LPE) vulnerabilities in the needrestart component, a default package…
CISA Warns of VMware VCenter Vulnerabilities Actively Exploited in Attacks
The Cybersecurity and Infrastructure Security Agency (CISA) has issued a critical warning regarding two newly discovered vulnerabilities in VMware’s vCenter Server. These vulnerabilities, identified as…
Authorities Charged 5 Hackers For Attacking Companies via Phishing Text Messages
Federal authorities have unveiled criminal charges against 5 individuals accused of directing a sophisticated phishing scheme targeting employees of companies across the United States. The…
Malicious PyPi Package Mimic ChatGPT & Claude Steals Developers Data
Kaspersky’s Global Research and Analysis Team (GReAT) has recently uncovered a sophisticated supply chain attack targeting the Python Package Index (PyPI). The attack, which remained…
Critical Kubernetes Vulnerability Let Attackers Execute Arbitrary Commands
A high-severity security vulnerability in Kubernetes has been discovered, potentially allowing attackers to execute arbitrary commands beyond container boundaries. The vulnerability has been tracked as…
macOS WorkflowKit Race Vulnerability Let Malicious Apps Intercept Shortcuts
A critical vulnerability in macOS WorkflowKit, the framework underpinning Apple’s Shortcuts app, has been disclosed. This vulnerability allows malicious applications to intercept and modify user-imported…
DDoS Attack Growing Bigger & Dangerous, New Report Reveals
Distributed Denial of Service (DDoS) attacks are escalating at an alarming rate, as unveiled in a revelation by Cloudflare researchers and the recent data indicates…
MITRE Lists 25 Most Dangerous Software Weaknesses of 2024
MITRE has released its annual list of the top 25 most dangerous software weaknesses for 2024, highlighting critical vulnerabilities that pose significant risks to software…
Fixes Vulnerabilities and Enhances Protocol Support
The Wireshark Foundation has announced the release of Wireshark 4.4.2, the latest version of its widely-used network protocol analyzer. This update brings many improvements, including…
SquareX Brings Industry’s First Browser Detection Response Solution to AISA Melbourne CyberCon 2024
SquareX, the leading browser security company, will make its Australian debut at Melbourne CyberCon 2024, hosted by AISA (Australian Information Security Association), from 26th to…
What is Domain-Based Message Authentication, Reporting & Conformance(DMARC)?
Email remains one of the most critical forms of communication for businesses, individuals, and organizations around the world. However, it also presents a major attack…