Protecting Against Bot-Enabled API Abuse
APIs have become the backbone of modern digital ecosystems, powering everything from mobile apps to e-commerce platforms. However, as APIs...
Read more →News Archive
View All →
SolarWinds Platform XSS Vulnerability Let Attackers Inject Malicious Code
A critical security vulnerability has been recently disclosed by SolarWinds in its Platform product, a major player in IT management...
Read more →
New TLDs Such as .shop, .top and .xyz Leveraged by Phishers
Phishing attacks have surged nearly 40% in the year ending August 2024, with a significant portion of this increase linked...
Read more →
Product showcase: Securing Active Directory passwords with Specops Password Policy
Password policies are a cornerstone of cybersecurity for any organization. A good password policy ensures every end user has a...
Read more →
Europol Dismantles Criminal Messaging Service MATRIX in Major Global Takedown
Europol on Tuesday announced the takedown of an invite-only encrypted messaging service called MATRIX that’s created by criminals for criminal...
Read more →
Oracle Java licensing explained: Addressing complexity, cost and audits
Organisations using Java face a licence fee hike after Oracle’s introduction of subscription pricing for Java SE. Analyst Forrester has previously written...
Read more →
Azercell Cybersecurity Training For Elderly In Azerbaijan
Azercell, the leading mobile operator in Azerbaijan, is offering cybersecurity training to its customers, particularly the elderly. As part of...
Read more →
HR & IT-Related Phishing Emails Are Top-Clicked Among Phishing Email Types
Phishing emails masquerading as HR and IT-related communications are the most likely to be clicked on by employees as unveiled...
Read more →
Cisco Urges Immediate Patch for Decade-Old WebVPN Vulnerability
SUMMARY: Critical Patch Alert: Cisco ASA users must urgently address a 10-year-old WebVPN vulnerability (CVE-2014-2120) that attackers are now actively...
Read more →
HackSynth An Autonomous Penetration Testing Framework For Simulating Cyber-Attacks
The introduction of HackSynth marks a significant advancement in the field of autonomous penetration testing. Developed by researchers at Eotvos...
Read more →
Authorities Take Down Criminal Encrypted Messaging Platform MATRIX
SUMMARY MATRIX Encrypted Platform Shut Down: Authorities dismantled MATRIX, an encrypted messaging service used by criminals. Millions of Messages Intercepted:...
Read more →
PoC exploit for critical WhatsUp Gold RCE vulnerability released (CVE-2024-8785)
Researchers have published a proof-of-concept (PoC) exploit for CVE-2024-8785, a critical remote code execution vulnerability affecting Progress WhatsUp Gold, a...
Read more →