VMware HCX Vulnerability Let Attackers Inject Malicious SQL Queries
VMware has disclosed a critical security vulnerability in its HCX platform, a key component for hybrid cloud extension solutions. The flaw, identified as CVE-2024-38814, allows…
Category: CyberSecurityNews
New Linux Malware That Steal Money From ATMs
Hackers are increasingly targeting ATMs through various illicit methods. They exploit physical and software vulnerabilities to force machines to dispense cash. The rise of accessible…
Anonymous Sudan Hackers Charged for Cyber Attacks on Critical Infrastructure
A federal grand jury indictment unsealed today charges two Sudanese nationals with operating and controlling Anonymous Sudan, an online cybercriminal group responsible for tens of…
What is Certificate-Based Authentication? How it Works!
Certificate-Based Authentication (CBA) is a robust security mechanism that has been a cornerstone in high-security environments for decades. It leverages digital certificates to verify the…
Organization Hacked by North Korean IT Worker, Remote Hiring Gone Wrong
A recent cyberattack has highlighted the growing threat of North Korean operatives infiltrating Western companies by posing as remote IT workers. An unidentified firm based…
North Korean Hackers Exploit Zero-Day Flaw In Internet Explorer
A joint report by AhnLab Security Emergency response Center (ASEC) and the National Cyber Security Center (NCSC) has revealed a new zero-day vulnerability (CVE-2024-38178) in…
Multiple Flaws Impacting Boot Chain Of Samsung Devices
The Android boot chain initiates with the “Boot ROM,” which initializes the “bootloader.” The bootloader then loads the kernel, which is responsible for managing system resources…
Linux System ‘noexec’ Mount Flag Bypass Allows Malicious Code Execution
A recent discovery in the Linux ecosystem has unveiled a method to bypass the ‘noexec’ mount flag, enabling malicious code execution on systems that were…
Critical Oracle Security Update, 334 Vulnerabilities Patched
Oracle has released its October 2024 Critical Patch Update (CPU), addressing a staggering 334 security vulnerabilities across its vast product portfolio. This quarterly update, the…
Kubernetes Image Builder Flaw Let Attackers Gain Root Access to VMs
The Kubernetes Security Response Committee has disclosed two critical vulnerabilities in the Kubernetes Image Builder that could allow attackers to gain root access to virtual…
90+ 0-Days, 40+ N-Days Exploited In The Wild
Hackers exploit security vulnerabilities in the wild primarily to gain ‘unauthorized access to systems,’ ‘steal sensitive data,’ and ‘disrupt services.’ These vulnerabilities often arise from…
Authorities Takendown Sipulitie Dark Web Marketplace
Finnish Customs, in collaboration with the Swedish Police, has successfully shut down the Sipulitie dark web marketplace. This site, operating on the encrypted Tor network…