Apple Emergency Update for New Zero-Day Used to Hack iPhones
Apple has discovered a Zero-day vulnerability affecting iOS and iPadOS versions earlier than 17.0.3, which could allow threat actors to elevate their privileges. The CVE…
Category: CyberSecurityNews
Open-Source Botnet That Obtain SSH Shell Access
The digital age offers opportunities but also increases the importance of cybersecurity as threats grow in complexity and sophistication, making preparedness a top priority. Open-source…
Threat Actors Deployed Python Packages to Steal System Data
In the open-source ecosystem, shadows shift as collaboration succeeds, attracting both novices and skilled threat actors. A rising threat has been evolving and sharpening its…
Wireshark 4.0.10 Released: What’s New!
Wireshark has been the most widely used open-source Network protocol analyzing tool for several purposes, including troubleshooting, analysis, development, and education. On their previous release…
Qualcomm Sys Hackers Actively Exploit 3 new Zero-Days
Three new zero days have been reported to Qualcomm, which were CVE-2023-33106, CVE-2023-33107, and CVE-2023-33063. These vulnerabilities were discovered as part of Google Project Zero…
EvilProxy Attacking Microsoft 365 accounts in the Indeed.com
A recent phishing campaign, identified by Menlo Labs, has been actively targeting executives in senior roles across multiple industries, with a primary focus on Banking…
Sony Breached Via MOVEit Zero-Day Vulnerability
Sony Interactive Entertainment (SIE) discloses a cybersecurity breach caused by the exploitation of a zero-day vulnerability in Progress Software’s MOVEit Transfer platform. Nearly 6791 current and…
Malicious npm Package from a Twin Developers Deliver r77 Rootkit
A malicious supply chain attack affecting the popular npm platform, often used for Node.js projects, has been identified. This attack employs a tactic known as…
Microsoft Teams, Edge Zero-Days Vulnerabilities Leads to RCE
Microsoft has addressed two zero-day vulnerabilities in two Open-Source Software security vulnerabilities, which include Microsoft Edge, Microsoft Teams for Desktop, Skype for Desktop, and Webp…
Exim SMTP Zero-day Flaw Let Attackers Execute Remote Code
Six new zero-day vulnerabilities in Exim Message Transfer Agent have been reported as part of the Zero-Day initiative. These vulnerabilities were discovered in June 2022…
French Cybercriminal Pleads Guilty for Hacking Corporate Data
In a significant development in the realm of cybercrime, a 22-year-old French citizen, Sebastien Raoult, also known as Sezyo Kaizen, has pleaded guilty to conspiracy…
Apache NiFi RCE Vulnerability – Attackers Exfiltrate Sensitive Data
The widely used data integration tool Apache NiFi has been discovered to be susceptible to a critical security flaw tracked as CVE-2023-34468 that might allow remote code execution.…