Unseen Threat: AppDomain Manager Injection Technique Causes New Wave of Cyber Attack
A series of cyberattacks that began in July 2024 have revealed a sophisticated use of a lesser-known technique called AppDomain […]
Alert
PEAKLIGHT: A New Dropper Targets Windows Systems Through Malicious Movie Files
Cybersecurity researchers have identified a novel and sophisticated dropper, dubbed “PEAKLIGHT,” which is being deployed in a series of attacks
Chinese Hackers Exploit Cisco Zero-Day Flaw to Hijack Systems
Recently a Chinese threat group has been found exploiting a zero-day vulnerability in Cisco switches, enabling them to gain complete
Hardware Backdoor in MIFARE RFID Cards: A Global Security Risk for Access Control Systems
In a chilling revelation for the security industry, cybersecurity researchers have discovered a hardware backdoor embedded within a specific model
Severe Vulnerability in WordPress LiteSpeed Cache Plugin Puts Sites at Risk of Admin Takeover
A newly discovered vulnerability in the LiteSpeed Cache plugin for WordPress is causing significant concern in the cybersecurity community. The
Microchip Technology Faces Cyberattack: Operations Disrupted Across Multiple Facilities
In a recent development, Microchip Technology Incorporated, a leading American semiconductor manufacturer, has disclosed a cyberattack that has significantly disrupted
Massive Security Flaw in GiveWP WordPress Plugin Endangers Over 100,000 Websites
A critical vulnerability in the widely-used GiveWP donation and fundraising plugin for WordPress has put more than 100,000 websites at
Stealthy Msupedge Backdoor Exploits PHP Vulnerability in Cyberattack on Taiwanese University
In a recent cybersecurity breach, hackers deployed a previously undocumented backdoor named Msupedge in an attack targeting an unnamed university
Oracle NetSuite Sites Exposed to Customer Data Breach Risks
A recent revelation by cybersecurity researchers has placed thousands of Oracle NetSuite e-commerce sites under the spotlight. The issue at
Cyber Extortion Campaign Exploits Public .env Files to Breach Cloud Accounts
A sophisticated cyber extortion campaign has recently come to light, revealing how attackers exploited publicly accessible environment variable files (.env)
Pre-Installed App on Google Pixel Devices Exposes Millions to Security Risks
Since September 2017, millions of Google Pixel devices shipped worldwide have included a pre-installed Android app that could be exploited
SolarWinds Releases Critical Patch for Web Help Desk Software Vulnerability
SolarWinds, a prominent provider of IT management software, has issued a critical security patch to address a severe vulnerability in
Zero-Click Windows TCP/IP RCE: A Critical Vulnerability Demands Urgent Attention
In a significant security development, Microsoft has issued a critical alert urging all Windows users to patch a recently discovered
Microsoft’s August 2024 Patch Tuesday: A Critical Security Update with 90 Vulnerability Fixes, Including 10 Zero-Day Exploits
Microsoft’s latest Patch Tuesday release on August 2024 has sent ripples through the cybersecurity community, delivering crucial fixes for a
GhostWrite Vulnerability: A Critical Threat to T-Head RISC-V CPUs
In a significant development researchers from the CISPA Helmholtz Center for Information Security in Germany have uncovered a critical architectural