Hackers Abuse Cloudflare WARP To Hijack Cloud Services
Recently, it has been observed that several campaigns are using Cloudflare’s WARP service to target susceptible internet-facing services. The primary advantage of utilizing Cloudflare WARP…
Category: CyberSecurityNews
CrowdStrike filed a FORM 8-K to Clarify the Friday’s Update Event
CrowdStrike Holdings, Inc. faced an unexpected challenge when a sensor configuration update for their Falcon sensor software resulted in outages for numerous customers utilizing specific…
R0bl0ch0n Rogue Traffic Distribution System Impacted Over 110 Million Users
Affiliate marketing is a practice where firms compensate associates for bringing visitors or customers to their websites. It comprises sellers, publishers (affiliates), intermediaries, and consumers.…
Okta Browser Plugin Vulnerable To Cross-Site Scripting Attacks
Okta Browser Plugin is available on multiple browsers like Edge, Chrome, Safari, and Firefox. Combining all these browsers, the plugin has over 5 million users.…
Wiz Rejects Google’s $23 Billion Deal
Wiz, the $12 billion cloud security startup, has rejected a $23 billion acquisition offer from Google parent Alphabet. Fortune viewed an internal note that communicated…
Authorities Arrested DDoS Attack Service Provider
A 24-year-old Katy, Texas resident, has been sentenced to nine months in federal prison for running a website that facilitated powerful distributed denial of service…
Hackers Abuse Swap File In Shopping Sites To Inject Credit Card Skimmer
Since the Swap file stores data that the system’s RAM cannot hold, these contents often contain critical data like passwords, encryption keys, and session data,…
Why All-in-One Platforms Are the Future of Cybersecurity
Once upon a time, I.T. security teams depended on hodgepodges of different cybersecurity solutions from various vendors. However, these multivendor tech stacks became prohibitively costly…
GraphQL Security Report 2024: Uncovering Alarming Vulnerabilities
GraphQL, a flexible and efficient query language for APIs, is seeing rapid adoption across enterprises. A recent report titled “The State of GraphQL Security 2024”…
Threat Actors Hijacking Facebook Accounts With Password Stealing Malware
Threat actors leverage social media to deploy malware, such as the SYS01 stealer, which steals Facebook credentials and spreads through compromised accounts. Social media’s popularity…
Konfety Hackers Hosted apps on Google’s Play Store to Push Malicious Ads
Researchers discovered a new ad fraud scheme named Konfety that leverages “decoy twin” apps on official marketplaces and their malicious “evil twin” counterparts. Decoy twins…
Patchwork Hackers Upgraded Their Arsenal With Advanced PGoShell
Advanced Threat Intelligence Team, Knownsec 404 has recently discovered a potential Bhutan-targeted attack by the Patchwork group that has employed an advanced Go backdoor and…