TA450 Hackers Uses Embedded Links in PDF Attachments
In a concerning development in cyber warfare, the Iran-aligned threat actor known as TA450, also recognized by aliases such as MuddyWater, Mango Sandstorm, and Static…
Category: CyberSecurityNews
Metasploit Framework 6.4 Released: What’s New
The latest release from Metasploit, Framework 6.4, is a testament to this ongoing battle. It brings a host of new features and improvements to the…
Linux Admins Beware! Fake PuTTY Client Rhadamanthys Stealer
PuTTY is among the most popular targets of hackers due to several reasons. Firstly, it is used for remote access to servers and systems at…
Rank Math SEO Plugin Flaw Exposes 2M+ Website to Cyber Attack
A significant vulnerability has been identified in the Rank Math SEO plugin for WordPress. This flaw, cataloged under CVE-2023-32600, exposes over two million websites to…
U.S. and UK Impose Sanctions on APT 31 Chinese Hackers
In a significant move to counter cyber threats, the United States and the United Kingdom have imposed sanctions on a group of China-linked hackers accused…
Critical OpenVPN Flaw Let Attackers Escalate Privilege
OpenVPN has released their new version 2.6.10 in which there have been several bug fixes and improvements specifically to the Windows Platform of the VPN…
2 Firefox Zero-Days Exploited At Pwn2Own : Patch Now
Mozilla addresses two zero-day vulnerabilities that were recently exploited at the Pwn2Own Vancouver 2024 hacking contest in the Firefox web browser. The Pwn2Own Vancouver 2024…
Best Practices for Email Security Headers
Email hacking and fraud have become common these days. Cybercriminals can easily break into and take control of mail accounts if they are not protected.…
Hackers Transform Raspberry Pi Into A Hacking Tool
GEOBOX is specialized software designed for Raspberry Pi devices that have been observed on the Dark Web being marketed as the next major development in…
Beware of Ramadan & Eid Fitr Online Scams Steal Financial Data
As the holy month of Ramadan approaches, bringing a surge in online shopping and charitable giving, cybercriminals are ramping up their efforts to exploit the…
XSS Vulnerability in Google Subdomain Let Hackers Hijacks the User Sessions
Security researcher Henry N. Caga has identified a significant cross-site scripting (XSS) vulnerability within a Google sub-domain that allows hackers to perform various attacks, including…
MobSF Pen-Testing Tool Input Validation Flaw Leads to SSRF
The Mobile Security Framework (MobSF), a widely used pen-testing, malware analysis, and security assessment framework, has been found to contain a critical input validation flaw…