General Security News
-
Zero-Day Attacks Exploited Critical Vulnerability in Citrix ADC and Gateway
Citrix is alerting users of a critical security flaw in NetScaler Application Delivery Controller (ADC) and Gateway that it said is being actively...
-
Pakistani Entities Targeted in Sophisticated Attack Deploying ShadowPad Malware
An unidentified threat actor compromised an application used by multiple entities in Pakistan to deliver ShadowPad, a successor to the PlugX...
-
WormGPT – A ChatGPT Themed Hacking Tool Used to Launch Cyber Attack
WormGPT, a black-hat-based tool has been recently launched by cybercriminals and has the potential to conduct various social engineering as well...
-
Owner of BreachForums Pleads Guilty to Cybercrime and Child Pornography Charges
Conor Brian Fitzpatrick, the owner of the now-defunct BreachForums website, has pleaded guilty to charges related to his operation of the...
-
Cybercriminals Exploiting WooCommerce Payments Plugin Flaw to Hijack Websites
Threat actors are actively exploiting a recently disclosed critical security flaw in the WooCommerce Payments WordPress plugin as part of a massive...
-
JumpCloud Blames 'Sophisticated Nation-State' Actor for Security Breach
A little over a week after JumpCloud reset API keys of customers impacted by a security incident, the company said the intrusion was the work of a...
-
Dark Web Secrets: Mystery Behind the Anonymous World
Dark Web Secrets: Have you ever wondered about the mysterious parts of the internet? Welcome to the dark web. This uncharted digital territory,...
-
Lazarus APT Group Hijack Windows IIS Servers to Distribute Malware
Threat actors always search for vulnerable devices and networks to gain illicit access and perform malicious activities to accomplish their goals....
-
CERT-UA Uncovers Gamaredon's Rapid Data Exfiltration Tactics Following Initial Compromise
The Russia-linked threat actor known as Gamaredon has been observed conducting data exfiltration activities within an hour of the initial...
-
WormGPT: New AI Tool Allows Cybercriminals to Launch Sophisticated Cyber Attacks
With generative artificial intelligence (AI) becoming all the rage these days, it's perhaps not surprising that the technology has been repurposed...
-
Microsoft Bug Allowed Hackers to Breach Over Two Dozen Organizations via Forged Azure AD Tokens
Microsoft on Friday said a validation error in its source code allowed for Azure Active Directory (Azure AD) tokens to be forged by a malicious...
-
Wireshark 4.0.7 Released – What’s New!
Wireshark, One of the world’s most popular network packet analyzers, released Wireshark 4.0.7 with bug fixes, updated protocol support, and...