OpenSSH RCE Flaw Let Attackers Execute Arbitrary Commands
Researchers at Qualys discovered a new Remote Code Execution flaw in the OpenSSH. This flaw exists in OpenSSH’s forward ssh-agent. This flaw allows an attacker…
Category: CyberSecurityNews
Legendary Hacker Kevin Mitnick Died At The Age Of 59
Renowned former hacker Kevin Mitnick unexpectedly passed away on Sunday at the age of 59. After being identified over a year ago, it has been…
P2P Worm Attacking 307,000 Redis Instances on Linux & Windows
P2PInfect is a new P2P worm that is actively targeting the Redis servers on Linux and Windows OS, making it highly scalable and powerful compared…
Hackers Fraudulent Job offers to target university students
Campaigns of Fraudulent Job offers target university students in North America, asking victims to pay a fee in exchange for work. The campaigns began as…
Hackers Could Deactivate Your WhatsApp Account
It has been reported that any individual could potentially deactivate a WhatsApp account by sending an email, and currently, there is no known method to…
HCL BigFix WebUI Flaw Redirect users to External Site
HCL BigFix is an endpoint management platform that has the capability to automate discovery, management, and remediation. It can find and fix vulnerabilities on endpoints,…
Hackers Exploit Zimbra and Roundcube Email Servers
An alarming spear-phishing campaign has been uncovered, specifically aimed at government organizations. This attack preys on the vulnerabilities of Zimbra and Roundcube email servers. It…
New Jailbreak Attacks Uncovered in LLM chatbots like ChatGPT
LLMs have reshaped content generation, making understanding jailbreak attacks and prevention techniques challenging. Surprisingly, there’s a scarcity of public disclosures on countermeasures employed in chatbot…
VirusTotal Data Leak Exposes User’s Sensitive Details
The latest news revealed a popular Google platform to scan malicious documents from Virustotal exposed to data breaches of its registered customers. At the end…
JumpCloud Hacked – Hackers Breached The Systems Via Spear-phishing Attack
A sophisticated nation-state adversary with advanced capabilities attacked Jumpcloud with a spear phishing attack. JumpCloud is a US-based zero-trust directory platform that customers use to…
CISA Urge Gov Agencies to Apply Patch for Windows and Office 0-Days
CISA urged government agencies to apply the patch immediately for Microsoft Office and Windows HTML remote code execution vulnerabilities exploited in the wild. As a…
IT Security Analyst Jailed for Impersonating as a Hacker in Own Company
A 28 years old Former IT security analyst of an Oxford-based company has been sentenced to three years for deceiving the company to extort money.…