General Security News
-
Major Cybersecurity Agencies Collaborate to Unveil 2022's Most Exploited Vulnerabilities
A four-year-old critical security flaw impacting Fortinet FortiOS SSL has emerged as one of the most routinely and frequently exploited...
-
Malicious Apps Use Sneaky Versioning Technique to Bypass Google Play Store Scanners
Threat actors are leveraging a technique called versioning to evade Google Play Store's malware detections and target Android users. "Campaigns...
-
Ongoing Attacks: Over 600+ Citrix Servers Compromised to Install Web Shells
A critical remote code execution (RCE) vulnerability identified as CVE-2023-3519 has been the subject of several attacks, which have already...
-
Researchers Uncovered a New Flaw in ChatGPT to Turn Them Evil
LLMs are commonly trained on vast internet text data, often containing offensive content. To mitigate this, developers use “alignment” methods via...
-
Users of Facebook for Business are the Target of a New Phishing Attack
An unreported phishing campaign that disseminated a Python version of the NodeStealer has been found. NodeStealer gave threat actors the ability...
-
Microsoft Exposes Russian Hackers' Sneaky Phishing Tactics via Microsoft Teams Chats
Microsoft on Wednesday disclosed that it identified a set of highly targeted social engineering attacks mounted by a Russian nation-state threat...
-
Researchers Discover Bypass for Recently Patched Critical Ivanti EPMM Vulnerability
Cybersecurity researchers have discovered a bypass for a recently fixed actively exploited vulnerability in some versions of Ivanti Endpoint...
-
Russian Cyber Adversary BlueCharlie Alters Infrastructure in Response to Disclosures
A Russia-nexus adversary has been linked to 94 new domains starting March 2023, suggesting that the group is actively modifying its infrastructure...
-
Burp Suite 2023.8 Released – What’s New!
The updated Burp suite scanner has new add-on features and bug fixes that enhance the scanning process’s overall performance. Burp Suite is an...
-
Weaponized Excel, OneNote, or PDF Attachments Deliver New WikiLoader Malware
The Italian organizations, including tax agencies, were targeted by a new malware downloader delivering banking Trojan. The new loader malware is...
-
Ransomware Attacks Frequently Target Organizations with 51-200 Employees
High-profile ransomware attacks on corporations like Kaseya, Colonial Pipeline, and MOVEit may lead to the misconception that only large...
-
Iranian Company Cloudzy Accused of Aiding Cybercriminals and Nation-State Hackers
Services offered by an obscure Iranian company known as Cloudzy are being leveraged by multiple threat actors, including cybercrime groups and...