Hackers Attacking GitHub Users With a New Sophisticated Tool
GoIssue is a new sophisticated phishing tool targeting GitHub users. It poses a significant threat to developers and organizations worldwide. Cybersecurity researchers at SlashNext have…
Category: CyberSecurityNews
Fortinet Patches Critical Flaws That Let Hackers Take Control of The System
Fortinet has released critical security updates to address multiple product vulnerabilities, including FortiOS, FortiAnalyzer, FortiManager, and FortiClient Windows. If left unpatched, these flaws could allow…
China-Nexus Hackers Hijack Websites to Deliver Cobalt Strike Malware
Chinese state-sponsored hackers recently compromised two prominent Tibetan websites in a sophisticated cyber-espionage campaign to distribute the notorious Cobalt Strike malware. The attack, attributed to…
Zoom App Vulnerability Let Attackers Execute Remote Code
Zoom recently disclosed multiple vulnerabilities affecting its suite of applications, including a critical flaw that could allow attackers to execute remote code. The Zoom app…
Chrome 131 Released With Fix for 12 Security Vulnerabilities
Google has released Chrome 131 to the stable channel for Windows, Mac, and Linux, addressing 12 security vulnerabilities, including several high and medium-severity flaws. This…
CISA Warns of Microsoft Zero-day Exploited in Attacks
The Cybersecurity and Infrastructure Security Agency (CISA) has issued a warning regarding two newly disclosed vulnerabilities in Microsoft Windows, urging organizations and users to apply…
Apache CloudStack Released Fix for Critical KVM Infrastructure Vulnerabilities
The Apache CloudStack project has announced the release of critical security updates to address severe vulnerabilities in its KVM-based infrastructure. The latest LTS security releases,…
What is the CIA Triad (Confidentiality, Integrity, Availability)?
The CIA Triad stands as one of the fundamental models used to guide policies and strategies for protecting information. The “CIA” in the triad stands…
Microsoft Released Patch for Exchange Server Email Spoofing Vulnerability
Microsoft has unveiled crucial Security Updates (SUs) for its Exchange Server platforms. The November 2024 update addresses several vulnerabilities in Exchange Server 2019 and 2016,…
Microsoft Active Directory Certificate Services Vulnerability (CVE-2024-49019)
Microsoft has recently disclosed a new security vulnerability, CVE-2024-49019, in Microsoft Patch Tuesday updates, affecting Active Directory Certificate Services (AD CS). This vulnerability, classified as…
How to Build an Effective Incident Response Plan: A Practical Guide
Creating a robust Incident Response Plan (IRP) is essential for businesses navigating today’s cyber-threat terrain. This guide will walk you through how to build an…
4 Zero-Days and 89 Vulnerabilities Patched
Microsoft released its latest Patch Tuesday update, addressing 89 security vulnerabilities across its software portfolio. Four of these are classified as zero-day vulnerabilities, with two…