Hackers Using AV/EDR Tool “EDRSandBlast” To Bypass Endpoints
AV, anti-malware, and EDR are tools that are primarily used to detect and prevent cyber-attacks. While the AV/EDR bypass tools...
Read more →News Archive
View All →
Sophisticated Phishing Attack Targeting Ukraine Military Sectors
The Ukrainian Cyber Emergency Response Team discovered a targeted phishing campaign launched by UAC-0215 against critical Ukrainian infrastructure, including government...
Read more →
Critical Flaws in Ollama AI Framework Could Enable DoS, Model Theft, and Poisoning
Nov 04, 2024Ravie LakshmananVulnerability / Cyber Threat Cybersecurity researchers have disclosed six security flaws in the Ollama artificial intelligence (AI)...
Read more →
Critical QNAP Zero-day Flaw in QuRouter Patched, Update Now!
QNAP Systems, Inc., a leading provider of network-attached storage (NAS) and networking solutions, has released a critical security update for...
Read more →
Massive Midnight Blizzard Phishing Attack Using Weaponized RDP Files
Researchers warn of ongoing spear-phishing attacks by Russian threat actor Midnight Blizzard targeting individuals in various sectors. The attacks involve...
Read more →
Scammers Use DocuSign API to Evade Spam Filters with Phishing Invoices
Scammers are exploiting DocuSign’s APIs to send realistic fake invoices, primarily targeting security software like Norton. This phishing technique bypasses...
Read more →
A Call For Cybersecurity Awareness Month All Year Round
On the last day of Cybersecurity Awareness Month (CAM), Oct. 31, Cybersecurity Ventures released “Hackerpocalypse: The Human Risk”, on its Cybercrime Magazine...
Read more →
Millions of Synology NAS devices vulnerable to zero-click attacks (CVE-2024-10443)
Synology has released fixes for an unauthenticated “zero-click” remote code execution flaw (CVE-2024-10443, aka RISK:STATION) affecting its popular DiskStation and...
Read more →
TechUK calls for government support to help UK datacentre market reach growth potential
The datacentre sector could become one of the fastest-growing industries in the UK, but doing so will require greater collaboration...
Read more →
MediaTek Smartphone Chipsets Vulnerabilities Let Attackers Escalate Privileges
Recent security bulletins have disclosed high-severity vulnerabilities in MediaTek smartphone chipsets, which could enable attackers to escalate privileges and gain...
Read more →
Evasive Panda Attacking Cloud Services To Steal Data Using New Toolkit
The Evasive Panda group deployed a new C# framework named CloudScout to target a Taiwanese government entity in early 2023,...
Read more →
Monitoring Distributed Microservices
As data and usage grow, apps adopt distributed microservices with load balancers for scalability. Monitoring error rates, resource use, and...
Read more →