Hackers Exploit Litespeed Plugin Flaw To Create Rogue Admin Accounts
WordPress plugins make WordPress more useful, but most have flaws that hackers may try to exploit to get unauthorized entry or introduce malicious code. The…
Category: CyberSecurityNews
DocGo Confirms Cyber Attack: Hackers Steal Patients Data
DocGo Inc., a prominent healthcare and ambulance transportation service provider, has confirmed a cybersecurity incident that compromised the integrity of its systems. The breach, which…
Microsoft Unveils Air-Gapped GPT-4 for U.S. Intelligence Agencies
Microsoft has announced the deployment of an air-gapped GPT-4 AI model specifically designed for the US Intelligence Community. This initiative represents a significant milestone in…
Akamai to Acquire API Security Startup Noname for $450 Million
Akamai Technologies, Inc. is set to acquire Noname Security, a top API security vendor, for $450 million, signaling a major move to boost its API…
Oracle Weblogic Server Flaw Allows Attackers Full Control
A new secondary JNDI injection vulnerability was discovered in a recent version of WebLogic, allowing attackers to trigger JNDI injection during another JNDI lookup process,…
Hunters Announces Full Adoption of OCSF and Introduces OCSF-Native Search
Hunters, the pioneer in modern SOC platforms, today announced its full adoption of the Open Cybersecurity Schema Framework (OCSF), coupled with the launch of groundbreaking…
Yoast SEO Plugin XSS Flaw Exposes 5M+ WordPress Website
A critical cross-site scripting (XSS) vulnerability has been discovered in the popular Yoast SEO WordPress plugin, potentially putting over 5 million websites at risk of…
NCA Reveals Identity of LockBit Ransomware Group Leader
The UK’s National Crime Agency (NCA) announced a major breakthrough today in investigating the notorious LockBit ransomware gang. LockBit, a ransomware-as-a-service (RaaS) operation, has been…
HijackLoader Using Weaponized PNG Files To Deliver Multiple Malware
HijackLoader, a modular malware loader observed in 2023, is evolving with new evasion techniques, as it is a variant using a PNG image to deliver…
MITRE Shares Details on Nation-State Hackers’ Intrusion
The MITRE Corporation, a not-for-profit organization that operates research and development centers for the U.S. government, has disclosed that sophisticated nation-state hackers recently compromised one…
Beware! 150+ SSH Accounts With Root Access Advertised On Hacker Forums
In a concerning development for cybersecurity, over 150 SSH accounts with root access are currently being advertised for sale on various hacker forums. These accounts…
Microsoft Defender XDR Expanded to Malicious OAuth Apps
In an update to its security operations suite, Microsoft has announced the expansion of its Defender Extended Detection and Response (XDR) capabilities to include advanced…