Pentagon Received 50k+ Vulnerability Report Since Nov 2016
The Department of Defense (DoD) Cyber Crime Center (DC3) recently announced a significant milestone in its cybersecurity efforts. The processing of over 50,000 vulnerability reports…
Category: CyberSecurityNews
Hackers Advertising GlorySprout Steal On Popular Hacking Forums
Hackers use stealers to gather sensitive information, for example, login credentials, financial data, or personal details from victims’ devices. These stolen credentials can be employed…
133k+ Vulnerable FortiOS/FortiProxy Instances : Exploitation Starts
A critical security vulnerability has been identified in Fortinet’s FortiOS and FortiProxy, potentially affecting over 133,000 devices worldwide. The flaw, tracked as CVE-2024-21762, is an…
Hackers Use Fingertip Friction Sound To Steal Fingerprints
Researchers have unveiled a new cybersecurity threat that could compromise the integrity of fingerprint authentication systems worldwide. The method, dubbed “PrintListener,” exploits the sound of…
PoC Published for Critical RCE Vulnerability in Fortra FileCatalyst
A proof of Concept (PoC) has been published for a critical Remote Code Execution (RCE) vulnerability identified in Fortra’s FileCatalyst software. This vulnerability, tracked as…
900+ Websites Exposing 100M+ Accounts
New research has revealed that more than 900 websites had a serious misconfiguration, which exposed a massive 125 million user records, including plaintext passwords and…
UK’s NCSC Releases SCADA Security Guidance to the Cloud
The National Cyber Security Centre (NCSC) of the United Kingdom has recently published a comprehensive set of guidelines designed to assist organizations in securely transitioning…
Cisco Completes Acquisition of Splunk for $28 Billion
Cisco has officially completed its acquisition of Splunk for a staggering $28 billion. This strategic acquisition marks a milestone in Cisco’s journey. It promises to…
Is Your SOC/DFIR Team Prepared?
Law enforcement disrupted LockBit ransomware operations in February, seizing infrastructure and their website. Regretfully, the victory appears to have been temporary. The gang’s leading members…
Chinese APT Hackers Earth Krahang Exploits Government Exchange Servers
A new Advanced Persistent Threat (APT) campaign, dubbed Earth Krahang, has emerged with a focus on infiltrating government entities across the globe. This campaign, active…
What is Cloud-Native Application Protection Platform (CNAPP)?
Multi-cloud and hybrid infrastructures are becoming the norm among enterprises nowadays. Around 9 in 10 companies use a multi-cloud strategy, while 8 in 10 adopt…
Critical Zoom Clients Flaw Let Attackers Escalate privileges
A vulnerability classified as improper input validation was found in Zoom Desktop Client for Windows, Zoom VDI Client for Windows, and Zoom Meeting SDK for…