Threat actors carry out man-in-the-middle attacks to intercept, tamper, and manipulate communications between two parties unknown to them. Consequently, they can acquire private information like…
Morphisec researchers have discovered a critical zero-click remote code execution (RCE) vulnerability in Microsoft Outlook, designated CVE-2024-38021. Unlike the previously disclosed CVE-2024-30103, this vulnerability does…
Fujitsu Limited has disclosed the results of an investigation into a cyberattack that potentially exposed customers’ personal information. The breach, first announced on March 15,…
A proof-of-concept (PoC) exploit has been released for a critical local file inclusion vulnerability in Splunk Enterprise, identified as CVE-2024-36991. This vulnerability affects Splunk Enterprise…
A cybersecurity researcher, Zakhar Fedotkin, demonstrated how differences in PDF rendering across various browsers and operating systems can be exploited to manipulate the displayed pricing…
A massive data leak involving Truecaller, the popular caller ID and spam-blocking app, has reportedly exposed the personal information of 273 million Indian users. The…
Microsoft has finally introduced spell check and autocorrect features to its venerable Notepad text editor, a staple of the Windows operating system for over four…
A security flaw was discovered in the Modern Events Calendar, a widely used WordPress plugin with over 150,000 active installations. The vulnerability, identified as an…
The hackers take advantage of Cloud services and GitHub since they are highly popular and can give access to massive amounts of data. Since they…
Security researchers have discovered a new vulnerability in OpenSSH, identified as CVE-2024-6409, which could potentially allow remote code execution attacks on affected systems. This vulnerability, which affects OpenSSH versions…
Microsoft employees in China will be required to use iPhones, as the company plans to block Android devices from accessing its corporate resources. This decision,…
Researchers discovered a flaw in the DoNex ransomware’s encryption scheme, allowing them to create a decryptor for DoNex and its predecessors (Muse, fake LockBit 3.0,…
