The Steep Cost of Neglecting Cybersecurity Training
In modern business, cybersecurity is not merely a technical concern but a crucial financial safeguard. With cyber threats growing in sophistication and frequency, the financial…
Category: CyberSecurityNews
New APT Group BlindEagle Attacking Multiple Organizations Via Weaponized Emails
BlindEagle (APT-C-36) is a Latin American Advanced Persistent Threat group that has been active since 2018. It targets the governmental, financial, and energy sectors in…
Multiple F5 Flaws Let Attackers Login With User Session & Cause DoS Attack
Two vulnerabilities have been discovered in BIG-IP, which are associated with Insufficient Session Fixation and Expired Pointer Dereference. These vulnerabilities have been assigned to CVE-2024-39809…
Android & iOS Users Targeted with New Phishing Attack Using PWAs & WebAPKs
A novel type of phishing attack has been discovered, targeting both Android and iOS users. This attack combines traditional social engineering techniques with the use…
Apache DolphinScheduler Vulnerability Let Hackers Execute Remote Code
A critical vulnerability has been identified in Apache DolphinScheduler, a popular open-source workflow orchestration platform. This security flaw, designated as CVE-2024-43202, allows hackers to execute…
Raspberry Pi Foundation Launches 2GB Variant for Just $50
The Raspberry Pi Foundation has unveiled a new addition to its popular single-board computer lineup – the Raspberry Pi 5 2GB model, priced at an…
FBI Investigation Confirms that Iran Hackers Behind Trump Campaign Hack
The Federal Bureau of Investigation (FBI), in collaboration with the Office of the Director of National Intelligence (ODNI) and the Cybersecurity and Infrastructure Security Agency…
PoC Exploit Released for Windows 0-Day Downgrade Attack
A proof-of-concept (PoC) exploit has been publicly released for a pair of critical zero-day vulnerabilities in Microsoft Windows that enable a novel “downgrade attack.” The…
Microsoft Azure Kubernetes Services Vulnerability Let Attackers Escalate Privileges
Mandiant recently disclosed a critical vulnerability in Microsoft Azure Kubernetes Services (AKS) that could have allowed attackers to escalate privileges and access sensitive credentials within…
Styx Stealer Malware Stealing Browser And Instant Messenger Data
Recently cybersecurity researchers at Check Point discovered a new malware dubbed “Styx Stealer,” capable of stealing browser and instant messenger data. Threat actors often exploit…
TOYOTA Data Breach – Hackers Leaked 240 GB of Data Online
Toyota’s U.S. branch has reportedly suffered a massive data breach, resulting in the unauthorized release of approximately 240 GB of sensitive information. The breach, allegedly…
Microsoft macOS Apps Vulnerability Allows Hackers to Record Audio/Video
Cisco Talos has identified eight security vulnerabilities in Microsoft applications running on the macOS operating system, raising concerns about potential exploitation by adversaries. These vulnerabilities,…