General Security News
-
![]()
Facebook & Instagram Flaw Let Anyone Bypass Two-factor AuthenticationThe lack of rate-limiting in Instagram was discovered by Gtm Mänôz, a security researcher from Kathmandu, Nepal. This flaw could have allowed an...
-
![]()
Hackers Abused Microsoft's "Verified Publisher" OAuth Apps to Breach Corporate Email AccountsMicrosoft on Tuesday said it took steps to disable fake Microsoft Partner Network (MPN) accounts that were used for creating malicious OAuth...
-
![]()
Additional Supply Chain Vulnerabilities Uncovered in AMI MegaRAC BMC SoftwareTwo more supply chain security flaws have been disclosed in AMI MegaRAC Baseboard Management Controller (BMC) software, nearly two months after...
-
![]()
You Don't Know Where Your Secrets AreDo you know where your secrets are? If not, I can tell you: you are not alone. Hundreds of CISOs, CSOs, and security leaders, whether from small or...
-
![]()
Hackers Exploiting Unpatched Exchange Servers in The WildMicrosoft has been strongly encouraging its customers to keep updating their Exchange servers, in addition to taking steps to ensure that the...
-
![]()
New Research Uncovers Threat Actor Behind Infamous Golden Chickens Malware-as-a-ServiceThe identity of the individual behind the Golden Chickens malware-as-a-service has been uncovered by cybersecurity experts. The perpetrator, known...
-
![]()
QNAP Fixes Critical Vulnerability in NAS Devices with Latest Security UpdatesTaiwanese company QNAP has released updates to remediate a critical security flaw affecting its network-attached storage (NAS) devices that could...
-
![]()
GitHub Breach: Hackers Stole Code-Signing Certificates for GitHub Desktop and AtomGitHub on Monday disclosed that unknown threat actors managed to exfiltrate encrypted code signing certificates pertaining to some versions of...
-
![]()
Titan Stealer: A New Golang-Based Information Stealer Malware EmergesA new Golang-based information stealer malware dubbed Titan Stealer is being advertised by threat actors through their Telegram channel. "The...
-
![]()
FBI Hacks Back Hive Ransomware Gang’s Infrastructure – Website SeizedAs a result of an international law enforcement operation, the sites utilized by the Hive ransomware operation for both payments and data leaks on...
-
![]()
Yandex Denies Hack – Source Code Leaked on Popular Hacking ForumThe source code of Yandex, the largest IT company in Russia and commonly referred to as the Russian Google, was hacked by attackers. On a...
-
![]()
Hackers Abuse Legitimate Remote Monitoring Tools to Steal Banking DataA joint Cybersecurity Advisory (CSA) from the Cybersecurity and Infrastructure Security Agency (CISA), National Security Agency (NSA), and...
Top News
-
![]()
Additional Supply Chain Vulnerabilities Uncovered in AMI MegaRAC BMC SoftwareTwo more supply chain security flaws have been disclosed in AMI MegaRAC Baseboard Management Controller (BMC) software, nearly two months after...
-
![]()
You Don't Know Where Your Secrets AreDo you know where your secrets are? If not, I can tell you: you are not alone. Hundreds of CISOs, CSOs, and security leaders, whether from small or...
-
![]()
Hackers Abused Microsoft's "Verified Publisher" OAuth Apps to Breach Corporate Email AccountsMicrosoft on Tuesday said it took steps to disable fake Microsoft Partner Network (MPN) accounts that were used for creating malicious OAuth...
-
![]()
Facebook & Instagram Flaw Let Anyone Bypass Two-factor AuthenticationThe lack of rate-limiting in Instagram was discovered by Gtm Mänôz, a security researcher from Kathmandu, Nepal. This flaw could have allowed an...