Nov 07, 2024Ravie LakshmananVulnerability / Cloud Security Cybersecurity researchers have discovered a malicious package on the Python Package Index (PyPI)…
Nov 07, 2024Ravie LakshmananThreat Intelligence / Cyber Espionage The China-aligned threat actor known as MirrorFace has been observed targeting a…
An ongoing phishing campaign is employing copyright infringement-related themes to trick victims into downloading a newer version of the Rhadamanthys…
Multiple critical vulnerabilities have been identified in HPE Aruba Access Points, potentially allowing attackers to execute remote code and compromise…
Tactics, techniques, and procedures (TTPs) form the foundation of modern defense strategies. Unlike indicators of compromise (IOCs), TTPs are more…
AI and APIs have a symbiotic relationship. APIs power AI by providing the necessary data and functionality, while AI enhances…
Cisco has disclosed multiple vulnerabilities impacting its Identity Services Engine (ISE) software. These vulnerabilities could allow authenticated, remote attackers to…
Cisco has fixed a critical command injection vulnerability (CVE-2024-20418) affecting its Ultra-Reliable Wireless Backhaul (URWB) Access Points that can be…
Cybercriminals have started leveraging DocuSign’s API to send fraudulent invoices that appear shockingly authentic. Unlike traditional phishing schemes that rely…
Zywave announced an enhancement to its Cyber Quoting solution with the addition of embedded benchmarking. Brokers can now leverage industry…
INTERPOL: Operation Synergia II disrupted +22,000 malicious IPs Pierluigi Paganini November 06, 2024 A global law enforcement operation called Operation…
Hackers increasingly target remote workers by exploiting vulnerabilities arising from the shift to telecommuting. They use tactics like “voice phishing”…