Hackers Compromised Multiple Squarespace Customers’ Domains
Unknown threat actors have compromised multiple domain names registered with Squarespace. The incident, which began around July 10, 2024, has affected numerous domains that were…
Category: CyberSecurityNews
OilAlpha Hacker Group Attacking Humanitarian & Human Rights Organizations
A pro-Houthi group, OilAlpha, is targeting humanitarian organizations in Yemen with malicious Android applications by stealing credentials and gathering intelligence, potentially disrupting aid distribution. The…
CRYSTALRAY Hackers Exploiting Popular Pentest Tools To Evade Detections
The threat actor Crystalray, previously observed using SSH-Snake, has significantly expanded operations, targeting over 1,500 victims. Employing mass scanning, exploiting multiple vulnerabilities, and utilizing tools…
BianLian Ransomware Leveraging RDP Credentials To Gain Initial Access
BianLian emerged in 2022, and after its emergence rapidly, it became one of the three most active ransomware groups. They started their operations by exploiting…
Google to Acquire Cybersecurity Firm Wiz for $23 Billion
Google is reportedly in advanced discussions to acquire the cloud security firm Wiz for a staggering $23 billion. The Wall Street Journal broke the news…
Hackers Starting To Exploit The Vulnerabilities Within 22 Minutes Of PoC Release
The growing tension and global elections in the past year have presented major challenges to internet security, raising the volume of malicious traffic. Cloudflare cybersecurity…
AT&T Paid $370,000 to Hacker For Deleting Stolen Records
AT&T reportedly paid a hacker approximately $370,000 to delete stolen customer data. The payment was made to ensure the erasure of call and text records…
FishXProxy Fuels Phishing Attacks with Clever Deceptive Attacks
Imagine receiving an email that looks legitimate, down to the last detail. This is the deceptive power of the new FishXProxy Phishing Kit, a sophisticated…
AT&T Reveals Massive Data Breach Affecting Nearly All Customers’
AT&T, one of the largest telecommunications companies in the United States, has disclosed a significant data breach that exposed the call and text records of…
Exim Mali Server Vulnerability Impacts 1.5 Million Email Servers
According to recent findings by security researchers, more than 1.5 million email servers are currently vulnerable to a critical security flaw in the Exim mail…
CISA Warns of Hackers Exploiting OS Command Injection Vulnerabilities
The Cybersecurity and Infrastructure Security Agency (CISA) and the Federal Bureau of Investigation (FBI) have raised alarms about hackers exploiting OS command injection vulnerabilities. These…
VMware Aria Automation Flaw Let Hackers Perform SQL Injection Attacks
VMware has released security updates to address a critical SQL injection vulnerability in its Aria Automation product. The vulnerability tracked as CVE-2024-22280, could allow authenticated…