RSync Vulnerabilities Allow Hackers to Take Full Control of Servers – PoC Released
A series of critical security vulnerabilities in the widely-used Rsync file synchronization tool have been uncovered, exposing millions of servers...
Read more →News Archive
View All →
Dalfox: Open-source XSS scanner – Help Net Security
DalFox is an open-source tool for automating the detection of XSS vulnerabilities. With powerful testing capabilities and a wide range...
Read more →
Malicious PyPI Package “automslc” Enables 104K+ Unauthorized Deezer Music Downloads
Feb 26, 2025Ravie LakshmananMalware / Cryptocurrency Cybersecurity researchers have flagged a malicious Python library on the Python Package Index (PyPI)...
Read more →
VMware vSAN Max: What you need to know
When VMware launched vSAN Max in late 2023, it promised storage for VSphere with many of the benefits of hyper-converged...
Read more →
PyPi package with 100K installs pirated music from Deezer for years
A malicious PyPi package named ‘automslc’ has been downloaded over 100,000 times from the Python Package Index since 2019, abusing...
Read more →
Orange Communication Breached – Hackers Allegedly Claim 380,000 Email Records Exposed
Telecommunications provider Orange Communication faces a potential data breach after a threat actor using the pseudonym “Rey” claimed responsibility for leaking 380,000 email records...
Read more →
Ransomware hackers are more interested in data exfiltration than encryption
As ransomware attacks gained popularity, hackers initially focused on encrypting entire databases and demanding ransom in exchange for decryption keys....
Read more →
What cybersecurity pros read for fun
While cybersecurity pros spend much of their time immersed in technical reports, risk assessments, and policy documents, fiction offers a...
Read more →
Android happy to check your nudes before you forward them
Sometimes the updates we install to keep our devices safe do a little bit more than we might suspect at...
Read more →
CERT-UA Warns of UAC-0173 Attacks Deploying DCRat to Compromise Ukrainian Notaries
Feb 26, 2025Ravie LakshmananNetwork Security / Threat Intelligence The Computer Emergency Response Team of Ukraine (CERT-UA) on Tuesday warned of...
Read more →
Scottish police fail to record ethnicity in DNA database
The failure of Scottish policing bodies to record the ethnicity of arrested people it takes DNA samples from means there...
Read more →
Nearly 3,000 Ivanti Connect Secure instances vulnerable to critical flaw
Dive Brief: Approximately 2,850 IP addresses are vulnerable to CVE-2025-22467, a critical stack buffer-overflow vulnerability that affects Ivanti Connect Secure...
Read more →