Legacy Login in Microsoft Entra ID Exploited to Breach Cloud Accounts
A flaw in Microsoft Entra ID’s legacy login allowed attackers to bypass MFA, targeting admin accounts across finance, healthcare, and tech sectors. Cybersecurity firm Guardz…
Latest Cybersecurity News — Page 2011
View all →
LockBit hacked: What does the leaked data show?
The affiliate panel of the infamous LockBit Ransomware-as-a-Service (RaaS) group has been hacked and defaced, showing a link to a MySQL database dump ostensibly containing…
Initial Access Brokers Target Brazil Execs via NF-e Spam and Legit RMM Trials
May 09, 2025Ravie LakshmananMalware / Email Security Cybersecurity researchers are warning of a new campaign that’s targeting Portuguese-speaking users in Brazil with trial versions of…
Apple to play modest role after datacentre heat breakthrough in Denmark
Danish engineers are drawing up plans to connect an Apple datacentre to a district heating network in Denmark that will use its waste energy to…
Hacktivist Groups Hit India After Pahalgam Attack
First came the bullets, then came the bots. In the wake of India’s April 22 terror attack in Pahalgam and the retaliatory military strikes under…
Apache ActiveMQ Vulnerability Allows Attackers to Induce DoS Condition
Critical vulnerability in Apache ActiveMQ (CVE-2024-XXXX) exposes brokers to denial-of-service (DoS) attacks by allowing malicious actors to exhaust system memory through specially crafted OpenWire commands.…
Hackers Exploit Windows Remote Management to Evade Detection in AD Networks
A new wave of cyberattacks is targeting Active Directory (AD) environments by abusing Windows Remote Management (WinRM), a legitimate administrative tool, to move laterally and…
QR Codes and Cybersecurity: The Overlooked Risk in the Convenience Era
QR codes have quietly become a part of everyday business workflows. From authentication to employee onboarding, marketing, and resource sharing, they’re now embedded in countless…
What your browser knows about you, from contacts to card numbers
Chrome and Safari are the most popular browser apps, accounting for 90% of the mobile browsers market share, according to Surfshark. They also collect the…
Russia-linked ColdRiver used LostKeys malware in recent attacks
Russia-linked ColdRiver used LostKeys malware in recent attacks Pierluigi Paganini May 09, 2025 Since early 2025, Russia-linked ColdRiver has used LostKeys malware to steal files…
Indian woman’s ‘extremely creepy’ online job hunt sparks concern about cyber harassment
The “extremely creepy” experience of a female online job applicant in India has underscored growing cases of cyber harassment on the labour market despite strong…
Hackers Exploit Host Header Injection to Breach Web Applications
Cybersecurity researchers have reported a significant rise in web breaches triggered by a lesser-known technique: Host Header Injection. This sophisticated attack vector has enabled hackers…