Safari, Edge, & DuckDuckGo Spoofing Flaws Impact Million Users
RedSecLabs security researchers Rafay Baloch and Muhammad Samaak have uncovered address bar spoofing vulnerabilities in widely used mobile browsers such as Safari, Microsoft Edge, and…
Category: CyberSecurityNews
VS Code Marketplace Flaw Let Attackers Include Malicious Extensions
Researchers identified security vulnerabilities in the VS Code Marketplace that could be exploited by malicious actors, as these flaws allowed extensions with malicious dependencies to…
Mozilla’s 0Day Investigative Network, Gen Bug Bounty Program
Generative artificial intelligence (GenAI) is reshaping our world, from streamlining work tasks like coding to helping us plan summer vacations. As we increasingly adopt GenAI…
PoC Exploit Published For XML eXternal Entity (XXE) Injection Vulnerability
A new XXE (XML eXternal Entity) Injection has been discovered to affect SharePoint on both on-prem and cloud instances. This vulnerability has been assigned to…
Frontier Communication Ransom attack:750,000 Data Exposed
Frontier Communications Parent, Inc. (the “Company”) detected unauthorized access to portions of its information technology environment. The breach, attributed to a likely cybercrime group, exposed…
Bitdefender GravityZone Flaw Let Hackers Launch SSRF Attacks
Bitdefender has recently fixed a critical Server-Side Request Forgery (SSRF) vulnerability in its GravityZone Console On-Premise, known as CVE-2024-4177. This flaw, discovered in the host…
Microsoft Made Changes to Recall Feature Following Controversial Security Concerns
Microsoft has announced significant updates to its new Recall feature for Copilot+ PCs, following a wave of security and privacy concerns raised by experts and…
Beware of Fake Chrome Update Pop-Ups that Installs Malware
In the ever-changing cybersecurity landscape, a persistent threat appears in the form of a fake Chrome update. Usually, these efforts involve injecting harmful code into…
Kimsuky APT Exploiting Facebook And MS Console For Targeted Attacks
Facebook and MS Console are often targeted by hackers, as they contain a lot of personal and sensitive data that can be used for identity…
270GB of New York Times Internal Data and Source Code Leaked
An anonymous hacker has claimed to have leaked 270 GB of internal data and source code from The New York Times (NYT) on the controversial…
Wineloader Mimic As Ambassador Of India To Start The Infection Chain
ARC Labs delved into the intricacies of the Wineloader backdoor, a sophisticated tool used in spearphishing campaigns linked to the notorious APT29 group, also known…
A New Tool that Extracts Dara From Windows 11 Recall Feature
Microsoft’s Windows Recall is a new feature for Copilot+ PCs, announced in May 2024. It takes periodic screenshots (every 5 seconds when screen content changes)…