Critical SAP NetWeaver AND CX Commerce Flaw Leads To Complete Takeover
Three vulnerabilities associated with CSS injection, file upload, and remote code execution have been discovered in the SAP Customer Experience (CX) commerce cloud and SAP…
Category: CyberSecurityNews
Wireshark 4.2.5 Released – What’s New!
The Wireshark team has announced the release of Wireshark 4.2.5, a maintenance update to the popular network protocol analyzer. This new version brings important security…
Google Chrome Zero-day (CVE-2024-4947) Actively Exploited in The Wild
Google has released an emergency security update for its Chrome web browser to patch a high-severity vulnerability that is being actively exploited by attackers in…
5 Common Phishing Vectors and Examples
Phishing attacks can be executed through various means, such as SMS and phone calls, but the most prevalent method involves sending victims emails containing malicious…
New Wi-Fi ‘SSID Confusion’ Attack Let Attackers Connecting Malicious Network
A design flaw in the IEEE 802.11 standard allows for SSID spoofing in WPA2 and WPA3 networks. While authentication protocols prevent unauthorized access points, they…
Turla APT Group Attacking European Ministry of Foreign Affairs
The well-known advanced persistent threat (APT) group Turla, based in Russia, is said to be going after the European Ministry of Foreign Affairs. This new…
Hackers Abusing to GitHub to Host Malicious Infrastructure
Cybersecurity experts from Recorded Future’s Insikt Group have uncovered a sophisticated cybercriminal campaign orchestrated by Russian-speaking threat actors from the Commonwealth of Independent States (CIS).…
WPS Office For Android Flaw Puts Over 500 M+ Users At Risk
WPS Office is an office suite developed by Kingsoft that supports spreadsheets, presentations, documents, and others. It has been used by millions of users worldwide…
WaveStealer Malware Delivered Via Telegram & Discord Platforms
Cybersecurity experts have identified a new malware, dubbed WaveStealer, that is being actively distributed through popular messaging platforms Telegram and Discord. This sophisticated malware masquerading…
How To Reduce The Alert Triage Time In The Security Operations
Security threats are rising day by day, from sneaky phishing emails to ransomware attacks. They are dangerous for both large and small organizations. As these…
Microsoft Fixes 60 Vulnerabilities With 2 Actively Exploited Zero-Day
In its May 2024 Patch Tuesday release, Microsoft addressed 60 vulnerabilities, including 2 zero-day vulnerabilities actively exploited in the wild. The updates cover a range…
Google Search Now Gets Advanced AI-Powered Capabilities
In a groundbreaking announcement today, Google revealed its plans to integrate advanced generative AI capabilities into its flagship Search product. This move promises to transform…