Proof-of-concept exploit code for critical Ivanti Sentry authentication bypass flaw CVE-2023-38035 has been released. Researchers released a proof-of-concept (PoC) exploit...
Read more →
The North Korea-linked Lazarus group exploits a critical flaw in Zoho ManageEngine ServiceDesk Plus to deliver the QuiteRAT malware. The...
Read more →
An 18-year-old member of the Lapsus$ gang has been convicted of having helped hack multiple high-profile companies. A teenage member of...
Read more →
Researchers warn that more than 3,000 unpatched Openfire servers are exposed to attacks using an exploit for a recent flaw....
Read more →
The U.S. DoJ charged two men with operating the Tornado Cash service and laundering more than $1 Billion in criminal...
Read more →
The U.S. FBI warned that North Korea-linked threat actors may attempt to cash out stolen cryptocurrency worth more than $40...
Read more →
A previously unknown APT group, tracked as Carderbee, was behind a supply chain attack against Hong Kong organizations. Symantec Threat...
Read more →
Four vulnerabilities in the TP-Link Tapo L530E smart bulb and impacting the mobile app used to control them expose users...
Read more →
The Akira ransomware gang targets Cisco VPN products to gain initial access to corporate networks and steal their data. The...
Read more →
US Government and defense contractor Belcan left its super admin credentials open to the public, Cybernews research team reveals. Belcan...
Read more →
The Australian software provider Energy One announced it was hit by a cyberattack last week that affected certain corporate systems...
Read more →
US CISA added critical vulnerability CVE-2023-26359 in Adobe ColdFusion to its Known Exploited Vulnerabilities catalog. US Cybersecurity and Infrastructure Security Agency (CISA)...
Read more →