Telegram Exposes Real Users IP Addresses, Bypassing Proxies on Android and iOS in 1-click
A stealthy flaw in Telegram’s mobile clients that lets attackers unmask users’ real IP addresses with a single click, even those hiding behind proxies. Dubbed…
Category: CyberSecurityNews
Hackers Infiltrated n8n’s Community Node Ecosystem With a Weaponized npm Package
Attackers have successfully infiltrated n8n’s community node ecosystem using a malicious npm package disguised as a legitimate Google Ads integration tool. The attack reveals a…
Critical Apache Struts 2 Vulnerability Allow Attackers to Steal Sensitive Data
A critical XML external entity (XXE) injection vulnerability has been discovered in Apache Struts 2, potentially exposing millions of applications to data theft and server…
InvisibleJS Emerges as Stealthy JavaScript Obfuscator Using Zero-Width Characters
InvisibleJS, a new open-source tool that conceals JavaScript code using invisible zero-width Unicode characters, raises alarms about potential misuse in malware campaigns. InvisibleJS, hosted on…
Google Integrating Gemini With Gmail With New features
Google announced Monday it’s integrating its Gemini AI model into Gmail, introducing features that transform the email service into a proactive personal assistant for its…
YARA-X 1.11.0 Released With a New Hash Function Warnings
VirusTotal has released YARA-X version 1.11.0, introducing an important new feature designed to improve rule reliability and reduce false negatives in malware detection. The latest…
Threat actors Allegedly Claim Discord Dataset Containing 78,541,207 Files
Threat actor HawkSec claims to be auctioning a Discord dataset comprising 78,541,207 files. The collection, organized into messages, voice sessions, actions, and servers, stems from…
Web3 Developer Environments Targeted by Social Engineering Campaign Leveraging Fake Interview Software
The cybersecurity landscape is experiencing a major shift in how attackers operate. Threat actors have moved away from traditional hunting methods like phishing emails and…
India Continues to Be the Top Target for Mobile Attacks with 38% Increase in Threats
India faces an unprecedented surge in mobile malware attacks, with a staggering 38% increase in threats compared to the previous year, according to the latest…
10 Best Data Protection Tools
Data protection tools safeguard sensitive information against unauthorized access, breaches, and loss, helping organizations meet regulatory demands and ensure business continuity. Core solutions include DLP…
Critical React Router Vulnerability Let Attackers Access or Modify Server Files
Security researchers have identified critical vulnerabilities in React Router that allow attackers to access or modify server files via directory traversal. The flaws affect multiple…
Critical Zlib Vulnerability Let Attackers Trigger Buffer Overflow by Invoking untgz
A severe global buffer overflow vulnerability has been discovered in the zlib untgz utility version 1.3.1.2. Allowing attackers to corrupt memory and potentially execute malicious…