Pandora Malware Attacks Android TVs via firmware updates and pirated video
A new threat to Android devices named android[.]pandora has been identified that compromises the devices when pirated video content is installed or during firmware updates.…
Category: CyberSecurityNews
Cacti XSS Vulnerability Let Attacker Poison Database
A Stored Cross-Site Scripting (Stored XSS) vulnerability was recently discovered in Cacti that allows an authenticated user to poison the data stored in Cacti’s database. Moreover,…
Threat Actors Alter DGA Patterns to Improve C2 Communication
A Domain Generation Algorithm (DGA) creates numerous domain names, serving as meeting points for malware C&C servers. DGAs help malware evade security measures by generating…
Researchers Pre-trained LLM Agents Acting as Human Penetration Testers
LLMs have already shown their exceptional abilities in mimicking human text abilities, but their potential reaches further. They now show promise in planning and open-world…
iPhone Zero-Day Exploited in the Wild to Install Malware
Researchers discovered an actively exploited zero-click vulnerability that was part of an exploit chain aimed at deploying NSO Group’s Pegasus malware. One of the most…
Cisco Identity Services Engine Flaw Let Attacker Trigger DoS Condition
Cisco addressed high-impact vulnerability CVE-2023-20243 in the Cisco Identity Services Engine (ISE), allowing attackers to stop processing Radius packets. This vulnerability, with a base score of…
APT Hackers Exploiting Fortinet & ManageEngine Vulnerability
FortiOS SSL-VPN safeguards against data breaches, while ManageEngine ServiceDesk Plus offers an integrated help desk and asset management for IT resources. At an Aeronautical Sector…
Check Point to Acquire SaaS Vendor Atmosec
Check Point Software Technologies Ltd. (NASDAQ: CHKP), a global leader in cybersecurity solutions, has revealed its strategic move to acquire Atmosec, an innovative Software as…
Samsung Issued Patches for Multiple Critical Security Flaws
Samsung Mobile has issued fixes to address several security flaws discovered in Galaxy phones and tablets. In the September 2023 security patch, 62 bugs were…
Dastardly Web App Security Scanner From Burp Suite
Dastardly is a powerful web vulnerability DAST (Dynamic Application Security Testing) scanner developed to assist organizations in effectively safeguarding their web applications. It is a free,…
AtlasVPN Zero-day vulnerability Leaks the users IP Address
A Critical 0-day vulnerability was discovered in AtlasVPN for Linux, which can disconnect the AtlasVPN and leak the user’s IP address. The AtlasVPN, running a…
Windows’s File History Service Flaw-Attackers Escalate Privileges
A Privilege Escalation was recently discovered, which affects Windows’s File History service and can be used by threat actors to gain escalated privileges on a…