PuTTY SSH client flaw allows recovery of cryptographic private keys
A vulnerability tracked as CVE-2024-31497 in PuTTY 0.68 through 0.80 could potentially allow attackers with access to 60 cryptographic signatures...
Read more →News Archive
View All →
Ex-Security Engineer Jailed For Hacking Decentralized Cryptocurrency Exchanges
Ahmed exploited a vulnerability in a decentralized cryptocurrency exchange’s smart contract by injecting fabricated pricing data, which triggered the generation...
Read more →
Tanium Automate reduces manual processes for repeatable tasks
Alongside Tanium Guardian and its partnership with Microsoft Copilot for Security, Tanium Automate serves as another critical component in support...
Read more →
New ransomware group demands Change Healthcare ransom
The Change Healthcare ransomware attack has taken a third cruel twist. A new ransomware group, RansomHub, has listed the organisation...
Read more →
TA558 Hackers Weaponize Images for Wide-Scale Malware Attacks
Apr 16, 2024NewsroomThreat Intelligence / Endpoint Security The threat actor tracked as TA558 has been observed leveraging steganography as an...
Read more →
CISOs not yet convinced to invest in AI
With the use of artificial intelligence (AI) by threat actors limited largely to crafting more effective social engineering and phishing...
Read more →
A renewed espionage campaign targets South Asia with iOS spyware LightSpy
A renewed espionage campaign targets South Asia with iOS spyware LightSpy Pierluigi Paganini April 16, 2024 Researchers warn of a...
Read more →
Pentest People Becomes the First Leeds-based Cybersecurity Company to Achieve NCSC’s Cyber Advisor (Cyber Essentials) Accreditation
Pentest People, the Penetration Testing as a Service (PTaaS®) and cybersecurity experts, today announces it is the first Leeds-based cybersecurity...
Read more →
Connect:fun Attacking Organizations Running FortiClient EMS
A new exploit campaign has emerged, targeting organizations that utilize Fortinet’s FortiClient EMS. Dubbed “Connect:fun” by Forescout Research – Vedere...
Read more →
Global Hack Exposes Personal Data: Implications & Privacy Protection
In a digital age where information is the new currency, the recent global hack has once again highlighted the urgent...
Read more →
Annual Cybersecurity Training Isn’t Working, So What’s The Alternative?
16 Apr Annual Cybersecurity Training Isn’t Working, So What’s The Alternative? Posted at 09:23h in Blogs by Di Freeze This...
Read more →
New open-source project takeover attacks spotted, stymied
The OpenJS Foundation has headed off a “credible takeover attempt” similar to the one that resulted in a backdoor getting...
Read more →