Stealthy Msupedge Backdoor Exploits PHP Vulnerability in Cyberattack on Taiwanese University
In a recent cybersecurity breach, hackers deployed a previously undocumented backdoor named Msupedge in an attack targeting an unnamed university […]
Alert
Oracle NetSuite Sites Exposed to Customer Data Breach Risks
A recent revelation by cybersecurity researchers has placed thousands of Oracle NetSuite e-commerce sites under the spotlight. The issue at
Cyber Extortion Campaign Exploits Public .env Files to Breach Cloud Accounts
A sophisticated cyber extortion campaign has recently come to light, revealing how attackers exploited publicly accessible environment variable files (.env)
Pre-Installed App on Google Pixel Devices Exposes Millions to Security Risks
Since September 2017, millions of Google Pixel devices shipped worldwide have included a pre-installed Android app that could be exploited
SolarWinds Releases Critical Patch for Web Help Desk Software Vulnerability
SolarWinds, a prominent provider of IT management software, has issued a critical security patch to address a severe vulnerability in
Zero-Click Windows TCP/IP RCE: A Critical Vulnerability Demands Urgent Attention
In a significant security development, Microsoft has issued a critical alert urging all Windows users to patch a recently discovered
Microsoft’s August 2024 Patch Tuesday: A Critical Security Update with 90 Vulnerability Fixes, Including 10 Zero-Day Exploits
Microsoft’s latest Patch Tuesday release on August 2024 has sent ripples through the cybersecurity community, delivering crucial fixes for a
GhostWrite Vulnerability: A Critical Threat to T-Head RISC-V CPUs
In a significant development researchers from the CISPA Helmholtz Center for Information Security in Germany have uncovered a critical architectural
FreeBSD Urgently Patches High-Severity OpenSSH Vulnerability
The FreeBSD Project, a well-known name in the open-source community, has recently released critical security updates to address a high-severity
EastWind Campaign Targets Russian Entities with PlugY and GrewApacha Backdoors via Malicious LNK Files
In a calculated cyberattack targeting Russian government and IT organizations, a new spear-phishing campaign, codenamed “EastWind,” has surfaced, delivering a
Microsoft Sounds Alarm Over Critical Office Vulnerability Leading to Potential Data Exposure
In a concerning development, Microsoft has issued a warning about a serious zero-day vulnerability in its Office suite, which, if
Critical Cisco Flaw: Exploit Released for Admin Password Hijack Vulnerability
Cisco has issued a stark warning following the release of an exploit code targeting a maximum severity vulnerability in its
0.0.0.0 Day: A Silent Browser Vulnerability Exposing MacOS and Linux to Network Breaches
In a significant revelation for the cybersecurity community, researchers have uncovered a critical browser vulnerability that has existed unnoticed for
Critical Security Flaw (CVE-2024-4885) in WhatsUp Gold Under Active Exploitation
A critical security vulnerability in Progress Software’s WhatsUp Gold network monitoring application is under active exploitation, putting countless systems at
Microsoft 365 Anti-Phishing Feature Bypassed with CSS: A Potential Security Risk
Cybersecurity researchers have identified a method to bypass a critical anti-phishing measure in Microsoft 365 (formerly Office 365), raising concerns