Researcher Exploited CI / CD Pipelines To Gain Full Server Access
A CI/CD pipeline is a series of automated steps that helps software teams deliver code faster, safer, and more reliably. It coordinates all the processes…
Category: CyberSecurityNews
Quad7 Botnet Operators Compromising Several Routers And VPN Appliances
The Quad7 botnet (aka 7777 botnet, xlogin botnet) has gained attention for its use of compromised TP-Link routers to conduct attacks on Microsoft 365 accounts. …
Zyxel NAS Devices Vulnerable to Command Injection Attacks
Zyxel has issued critical hotfixes to address a command injection vulnerability identified in two of its Network Attached Storage (NAS) products, NAS326 and NAS542. These…
London High School Sent Students Home Following Ransomware Attack
A high school in south London, Charles Darwin School, has been forced to close its doors temporarily due to a severe ransomware attack. The incident…
WhatsApp View Once Privacy Flaw Exploited by Attackers in the wild
WhatsApp’s “View Once” feature, designed to enhance privacy by allowing users to send photos and videos that disappear after being opened once, has been found…
Best EasyDMARC Replacement Option- PowerDMARC
A report by Egress indicates that 94% of organizations have reported email security incidents like phishing attacks! This is why domain protection is crucial in…
Russian Military Hackers Attacking Attacking U.S. and Global Critical Infrastructure
The NSA, FBI, CISA, and allies have assessed the cyber actors associated with the Russian General Staff Main Intelligence Directorate (GRU), Unit 29155, who are…
Understand How Threat Intelligence Benefits for a Business
As a business owner, you’ve likely invested in various security tools such as SIEMs, antivirus software, and IDS/IPS systems. You may also have a dedicated…
Hackers Stolen 300,000 Users Personal Data in Cyber Attack at Car Rental Firm
Avis Car Rental disclosed that hackers had stolen personal data from approximately 300,000 customers. The breach, which occurred between August 3 and August 6, 2024,…
Hackers Exploiting GeoServer RCE Vulnerability to Deploy Malware
GeoServer is an open-source server for sharing geospatial data, and this open-source software server is written in Java. It publishes data from any major spatial…
Beware Of Malicious Chrome Extension That Delivers Weaponized ZIP Archive
Malicious Chrome extensions pose significant risks to users, as they can compromise personal information, inject unwanted promotions, and even manipulate web traffic as well. There…
Kibana Vulnerabilities Let Attackers Execute Arbitrary Code
Elastic has disclosed two critical vulnerabilities affecting Kibana, the popular data visualization and exploration tool used with Elasticsearch. These vulnerabilities, CVE-2024-37288 and CVE-2024-37285, allow attackers…