General Security News
-
Air Europa Breached: Customers’ Credit Card Details Exposed
On Tuesday, Air Europa, a Spanish airline, experienced a security breach where cybercriminals gained unauthorized access to the credit card...
-
Researchers Uncover Ongoing Attacks Targeting Asian Governments and Telecom Giants
High-profile government and telecom entities in Asia have been targeted as part of an ongoing campaign since 2021 that's designed to deploy basic...
-
Two High-Risk Security Flaws Discovered in Curl Library - New Patches Released
Patches have been released for two security flaws impacting the Curl data transfer library, the most severe of which could potentially result in...
-
Over 17,000 WordPress Sites Compromised by Balada Injector in September 2023
More than 17,000 WordPress websites have been compromised in the month of September 2023 with malware known as Balada Injector, nearly twice the...
-
3 Zero-days and 100+ vulnerabilities Fixed in Microsoft Security Update
Microsoft has published its October security patches in which over 100 vulnerabilities were fixed in multiple Microsoft products, including...
-
Shufflecake – Hidden Linux Filesystems to Store Sensitive Data
Protecting personal data is a growing concern, with local storage as the last line of defense. Even here, precautions are needed against...
-
D-Link Wi-Fi Range Extender Vulnerability Let Attackers Inject Remote Code
A command injection vulnerability has been discovered in the D-Link DAP-X1860 range extender, allowing threat actors to execute remote code on...
-
Microsoft Releases October 2023 Patches for 103 Flaws, Including 2 Active Exploits
Microsoft has released its Patch Tuesday updates for October 2023, addressing a total of 103 flaws in its software, two of which have come under...
-
Microsoft Warns of Nation-State Hackers Exploiting Critical Atlassian Confluence Vulnerability
Microsoft has linked the exploitation of a recently disclosed critical flaw in Atlassian Confluence Data Center and Server to a nation-state actor...
-
HTTP/2 Rapid Reset Zero-Day Vulnerability Exploited to Launch Record DDoS Attacks
Amazon Web Services (AWS), Cloudflare, and Google on Tuesday said they took steps to mitigate record-breaking distributed denial-of-service (DDoS)...
-
MacOS “DirtyNIB” Vulnerability: Let Attackers Execute Malicious Code
A new zero-day vulnerability has been discovered in Apple’s macOS systems, which allows threat actors to execute code on behalf of a legitimate...
-
Maintainers of a Popular Open Source Tool Warns of Critical Curl Vulnerability
Two new vulnerabilities have been discovered in the widely used Curl tool. These two vulnerabilities are identified as CVE-2023-38545 and...