Threat Actor Sells Burger King Backup System RCE Vulnerability for $4,000
A threat actor known as #LongNight has reportedly put up for sale remote code execution (RCE) access to Burger King...
Read more →News Archive
View All →
Senators take another swing at vulnerability disclosure policy bill for federal contractors
A bipartisan pair of senators is taking another shot at legislation that would require federal government contractors to follow National...
Read more →
Hacker steals $223 million in Cetus Protocol cryptocurrency heist
The decentralized exchange Cetus Protocol announced that hackers have stolen $223 million in cryptocurrency and is offering a deal to...
Read more →
Hackers Use TikTok Videos to Distribute Vidar and StealC Malware via ClickFix Technique
The malware known as Latrodectus has become the latest to embrace the widely-used social engineering technique called ClickFix as a...
Read more →
Dozens of malicious packages on NPM collect host and network data
60 packages have been discovered in the NPM index that attempt to collect sensitive host and network data and send it...
Read more →
Zero-Trust Policy Bypass Enables Exploitation of Vulnerabilities and Manipulation of NHI Secrets
A new project has exposed a critical attack vector that exploits protocol vulnerabilities to disrupt DNS infrastructure, manipulate Non-Human Identity...
Read more →
Operation Endgame Takes Down DanaBot Malware, Neutralizes 300 Servers
In a major international operation coordinated by Europol and Eurojust, law enforcement agencies and private sector partners have successfully dismantled...
Read more →
Lumma Stealer down for the count
The bustling cybercrime enterprise has been dealt a significant blow in a global operation that relied on the expertise of...
Read more →
Researchers Uncover Infrastructure and TTPs Behind ALCATRAZ Malware
Elastic Security Labs has recently exposed a sophisticated new malware family dubbed DOUBLELOADER, observed in conjunction with the RHADAMANTHYS infostealer....
Read more →
Commvault M365 Threat Could Be Part Of Broader SaaS Campaign
Nation-state threat actors targeting Commvault applications hosted in Microsoft Azure may be part of a broader campaign targeting Software-as-a-Service (SaaS)...
Read more →
GitLab Duo Vulnerability Exploited to Inject Malicious Links and Steal Source Code
A security vulnerability was recently discovered in GitLab Duo, the AI-powered coding assistant integrated into GitLab and based on Anthropic’s...
Read more →
FBI warns of Luna Moth extortion attacks targeting law firms
The FBI warned that an extortion gang known as the Silent Ransom Group has been targeting U.S. law firms over...
Read more →