Threat Actors Abuse Genuine Code-Signing Certificates To Evade Detections
A code signing certificate is a digital certificate that allows software developers to sign their applications. This ensures both the “authenticity of the publisher” and…
Category: CyberSecurityNews
Threat Actors Hacking 3 To 5 Websites per Hour Exploiting CosmicSting Vulnerability
In a disturbing development for e-commerce security, cybersecurity experts have revealed that threat actors are actively exploiting the CosmicSting vulnerability (CVE-2024-34102) to compromise 3 to…
ExoneraTor Tool To Detect IP Address Linked With Tor Network
Volt Typhoon is a Chinese state-sponsored hacking group that has been active since at least mid-2021, targeting critical infrastructure sectors in the United States and…
ErrorFather Hackers Attacking Android Users To Take Control Of Device
Cerberus is an advanced Android banking trojan that emerged in 2019, primarily designed to steal sensitive “financial information.” While this sophisticated trojan is commonly distributed…
PoC Exploit Released For Windows Kernel-Mode Drivers Privilege Escalation Flaw
A critical vulnerability in Windows Kernel-Mode Drivers has been exposed with the release of a Proof-of-Concept (PoC) exploit, allowing attackers to escalate privileges to SYSTEM…
Threat Actors Claim to Sell Data Allegedly Stolen from Cisco
A group of threat actors, led by the notorious hacker known as IntelBroker, has claimed responsibility for a significant data breach at Cisco Systems, Inc.…
Ubuntu Authd Flaw Let Attackers Spoof User ID
A recently identified vulnerability in Ubuntu’s Authd, CVE-2024-9312, has raised significant security concerns. The flaw, present through version 0.3.6, allows local attackers to spoof user…
Hackers Exploiting Ivanti CSA Zero-days To Compromise Victims’ Networks
Researchers have uncovered a sophisticated attack campaign targeting Ivanti Cloud Services Appliance (CSA) users. Nation-state actors are exploiting multiple zero-day vulnerabilities in the CSA to…
Critical Jetpack Vulnerability Impacts 27 Million Sites
Jetpack, a popular WordPress plugin, has released a critical security update. Version 13.9.1 was launched earlier today to address a vulnerability that could potentially expose…
What is Broadcast? Types, Examples & How it Works!
Broadcasting, in the context of computer networks, refers to a method of communication where a message is sent from one node to all other nodes…
Netgear WiFi Extender Vulnerability Let Attackers Inject Malicious Commands
Security researchers have uncovered critical vulnerabilities in several popular Netgear WiFi extender models that could allow attackers to execute malicious commands on affected devices. The…
Next.js Image Optimization Vulnerability Let Attackers Exhaust CPU Resources
A critical security vulnerability has been discovered in the popular React framework Next.js, potentially allowing attackers to exhaust CPU resources through its image optimization feature.…