WordPress Calendar Plugin RCE Flaw Exposes 150,000 Sites for Hacking
A security flaw was discovered in the Modern Events Calendar, a widely used WordPress plugin with over 150,000 active installations. The vulnerability, identified as an…
Category: CyberSecurityNews
New CloudSorcerer APT Group Exploits Cloud Services And GitHub For C2 Servers
The hackers take advantage of Cloud services and GitHub since they are highly popular and can give access to massive amounts of data. Since they…
New OpenSSH Vulnerability CVE-2024-6409 Exposes Systems to RCE Attack
Security researchers have discovered a new vulnerability in OpenSSH, identified as CVE-2024-6409, which could potentially allow remote code execution attacks on affected systems. This vulnerability, which affects OpenSSH versions…
Microsoft Bans Android Devices for China Employees, Mandates iPhones
Microsoft employees in China will be required to use iPhones, as the company plans to block Android devices from accessing its corporate resources. This decision,…
Researchers Decrypted DoNex Ransomware & It’s Rebranded Versions
Researchers discovered a flaw in the DoNex ransomware’s encryption scheme, allowing them to create a decryptor for DoNex and its predecessors (Muse, fake LockBit 3.0,…
1.4 GB of NSA Data Leaked Online Including Phone Numbers, Email Addresss
Researchers from Cyber Press, who reported a massive Twitter data leak today, found another data leak online. This time, cybercriminals exposed a file with 1.4 GB of…
Kimsuky Hackers Attacking Organizations Using EXE And DOCX Files
Hackers often use EXE and DOCX file formats is due to they are among the most commonly used types of files that can be easily…
Information Stealing Malware Distributed as AT tools & Chrome Extensions
The first half of 2024 has seen a significant rise in information-stealing malware disguised as AI tools and Chrome extensions. This trend highlights cyber criminals’…
Massive 9.4GB Twitter Data Leaked Online
Researchers at Cyber Press discovered a 9.4GB leaked Twitter user data containing nearly 200 million user data records. This leak, sourced from a Twitter database…
MongoDB Compass Code Injection Flaw Exposes Systems to Hacking
A critical security vulnerability in MongoDB Compass, identified as CVE-2024-6376, has been discovered, potentially exposing systems to code injection attacks. The flaw, which affects versions…
Beware of Fake regreSSHion Exploit Attacking Security Researchers
An alarming new threat has emerged targeting cybersecurity researchers. An archive containing malicious code is being distributed on the social network X, masquerading as an…
Hackers Actively Exploiting Microsoft SmartScreen Vulnerability
Hackers attack Microsoft SmartScreen as it’s a cloud-based, anti-phishing, and anti-malware component that determines whether a website is potentially malicious, protecting users from downloading harmful…