CVE Prioritizer: Open-source tool to prioritize vulnerability patching
CVE Prioritizer is an open-source tool designed to assist in prioritizing the patching of vulnerabilities. It integrates data from CVSS, EPSS, and CISA’s KEV catalog…
Latest Cybersecurity News — Page 4342
View all →
Alleged RBI Data Breach Claims Emerge On Dark Web
The Reserve Bank of India has allegedly been targeted in a cyberattack, linked to threat actor ZALCYBER. Although the RBI data breach reportedly occurred in…
Comisiones Obreras Data Breach: Sensitive Info Leaked Online
A database containing 21,988 complete credentials, encompassing login details and passwords, allegedly tied to Comisiones Obreras (CC. OO.), has been exposed on a hacking forum.…
Telstra trials way to keep eftpos, critical voice services working during outages – Cloud – Telco/ISP
Telstra is trialling a way to keep critical services like eftpos and Services Australia numbers working in the event of a major network outage, by…
SolarWinds addressed critical RCEs in Access Rights Manager
SolarWinds addressed critical RCEs in Access Rights Manager (ARM) Pierluigi Paganini February 19, 2024 SolarWinds addressed three critical vulnerabilities in its Access Rights Manager (ARM)…
The Danger Lurking Just Below Ukraine’s Surface
Oleksandr Kryvtsov had enough. The owner of an agricultural company in Hrakove, near Kharkiv, Kryvtsov found his land littered with land mines. That region of…
First Ever iOS Trojan Steals Facial Recognition Data
A novel, very sophisticated mobile Trojan dubbed GoldPickaxe.iOS that targets iOS users exclusively was discovered to collect facial recognition data, intercept SMS, and gather identity documents. The…
How to defend against credential stuffing attacks
Protecting against credential stuffing attacks requires a multi-layered approach to security. Here are some effective strategies to defend against such threats: Implement Multi-Factor Authentication (MFA):…
Balancing “super app” ambitions with privacy
When Elon Musk’s ambitions to transform X into an “everything app” were divulged last year, he joined several companies known to be exploring or actively…
Russian-Linked Hackers Breach 80+ Organizations via Roundcube Flaws
Feb 19, 2024NewsroomCyber Espionage / Vulnerability Threat actors operating with interests aligned to Belarus and Russia have been linked to a new cyber espionage campaign…
Cyberattack On ETISALAT Claimed By LockBit Ransomware
ETISALAT, the state-owned Emirates Telecommunications Group Company PJSC in the UAE, is reportedly grappling with a ransomware assault attributed to the infamous LockBit ransomware faction.…
SolarWinds patches three critical bugs – Security
SolarWinds has patched five remote code execution (RCE) vulnerabilities in its Access Rights Manager software, three of which are rated critical. The bugs were discovered…