Russian RomCom Exploits Zero-Day Flaws in Firefox and Windows
In a sophisticated wave of cyberattacks, a Russia linked threat group RomCom has exploited two zero-day vulnerabilities—one in Mozilla Firefox […]
Hackers Exploit Avast Anti-Rootkit Driver to System Takeover
In a concerning development, cybercriminals are leveraging an old, vulnerable version of Avast’s Anti-Rootkit driver to disable security defenses and
Critical Infrastructure Security: Over 145,000 ICS Systems Exposed Online
New research highlights a major cybersecurity concern: over 145,000 Industrial Control Systems (ICS) are currently exposed to the internet across
Apple Urges Users to Update Devices Amid Active Zero-Day Exploits
Apple has rolled out critical security updates for its ecosystem, covering iOS, iPadOS, macOS, visionOS, and the Safari browser. These
PAN-OS Firewall Vulnerability Actively Exploited: Its Critical
Palo Alto Networks has confirmed active exploitation of a critical zero-day vulnerability in its PAN-OS firewall management interface. This flaw,
Microsoft Patches Exploited Zero-Day Windows Vulnerability Targeting Ukraine
Microsoft has reportedly patched a zero-day vulnerability in Windows, which has been exploited in ongoing cyberattacks targeting Ukrainian organizations. The
Apple’s “Inactivity Reboot” Boosts iPhone Security by Blocking Access to Encrypted Data
Apple has introduced an “inactivity reboot” feature in the recent iOS 18.1 update. This functionality, while yet to be officially
VMware Makes Virtualization Tools Like Workstation and Fusion Free for All
VMware has announced that its popular VMware Fusion and VMware Workstation desktop hypervisors will now be available for free to
CISA Alerts on Critical Vulnerability in Palo Alto Networks Expedition Tool
Cybersecurity and Infrastructure Security Agency (CISA) has reported that a critical vulnerability in Palo Alto Networks’ Expedition tool is being
Cisco Vulnerability Exposes URWB Access Points to Command Injection Attacks
Cisco has recently addressed a serious vulnerability that poses a significant risk to Ultra-Reliable Wireless Backhaul (URWB) access points, which
Google Cloud to Mandate Multi-Factor Authentication by 2025
Google has announced that multi-factor authentication (MFA) will become mandatory for all Google Cloud accounts by the end of 2025.
Google Android Actively Exploited Vulnerability CVE-2024-43093
Google has disclosed a critical security vulnerability in its Android operating system, designated as CVE-2024-43093. This flaw has been confirmed
Microsoft SharePoint Vulnerability Exploited in Widespread Corporate Network Breach
A vulnerability in Microsoft SharePoint, tracked as CVE-2024-38094, has been actively exploited by attackers, leading to significant breaches of corporate
Google Chrome’s Cookie Encryption System Bypassed !
A researcher has unveiled a new tool capable of bypassing Google Chrome’s recently implemented App-Bound encryption system. This tool, named
The New Windows Driver Signature Bypass & Kernel Rootkit
Recently a significant vulnerability within Windows systems that allows attackers to install kernel rootkits on fully patched machines has been