Critical Security Flaw (CVE-2024-4885) in WhatsUp Gold Under Active Exploitation
A critical security vulnerability in Progress Software’s WhatsUp Gold network monitoring application is under active exploitation, putting countless systems at […]
Microsoft 365 Anti-Phishing Feature Bypassed with CSS: A Potential Security Risk
Cybersecurity researchers have identified a method to bypass a critical anti-phishing measure in Microsoft 365 (formerly Office 365), raising concerns
Critical Zero-Day Vulnerability in Apache OFBiz ERP Enables Remote Code Execution
A critical zero-day vulnerability in the Apache OFBiz open-source enterprise resource planning (ERP) system has been identified, posing a significant
Critical Flaws Discovered in Windows Smart App Control and SmartScreen
In a recent development cybersecurity, researchers have identified significant vulnerabilities within Microsoft’s Windows Smart App Control (SAC) and SmartScreen. These
Severe Vulnerability in Rockwell Automation ControlLogix Devices Exposed to Unauthorized Access
A high-severity security bypass vulnerability has been discovered in Rockwell Automation ControlLogix 1756 devices. This flaw, identified as CVE-2024-6242, carries
Magniber Ransomware Surge Hits Home Users Globally with Demanding Ransoms
In a concerning development, a massive Magniber ransomware campaign has been making waves globally, affecting home users’ devices and demanding
Alert: Chinese Hacking Group StormBamboo Breaches ISP to Poison Software Updates
In a significant cybersecurity breach, a Chinese hacking group identified as StormBamboo has compromised an undisclosed internet service provider (ISP),
Unmasking BITSLOTH: The Stealthy Windows Backdoor Exploiting BITS
In a world where digital threats are constantly evolving, staying ahead of cybercriminals is a perpetual challenge. However, there’s a
Hackers Turn Misconfigured Jupyter Notebooks into a Force for Good with Repurposed Minecraft DDoS Tool
Cybersecurity researchers have recently uncovered a method to utilize previously exploited Jupyter Notebooks for a beneficial purpose, harnessing their potential
Over 1 Million Domains Vulnerable to New ‘Sitting Ducks’ Domain Hijacking Technique
The cybersecurity landscape has been shaken by a newly identified threat targeting over a million domains. Known as the Sitting
Google Chrome Introduces App-Bound Encryption to Secure Cookies Against Malware
Google has introduced a new feature to its Chrome browser designed to thwart information-stealing malware. This latest enhancement, known as
DigiCert to Revoke Over 83,000 SSL Certificates Due to Critical Domain Validation Error
In a significant move impacting numerous websites and online services, certificate authority (CA) DigiCert has announced that it will be
Mandrake Spyware Resurfaces in Google Play Store: Over 32,000 Devices Infected
A sophisticated Android spyware known as Mandrake has resurfaced, concealed within five seemingly benign applications available on the Google Play
Major Acronis Vulnerability Exploited in the Wild: Update Your Systems Now
Acronis, a well-known cybersecurity company, has issued an urgent warning about a critical security flaw in its Cyber Infrastructure (ACI)
Stargazer Goblin’s Malware Network: 3,000 Fake GitHub Accounts Uncovered
A new threat actor, dubbed Stargazer Goblin, has orchestrated a sophisticated malware distribution network by creating over 3,000 fake GitHub