In a decisive ruling, a U.S. court has ordered NSO Group to give WhatsApp the code for its controversial Pegasus spyware.
U.S. Court Demands NSO Group Hand Over Pegasus Spyware Code to WhatsApp
read more
Data Breaches
Global Crackdown on Cybercrime: US Indicts Iranian National and Germany Targets Darknet Market
International cybercrime faces intensified scrutiny as the U.S. indicts an Iranian national and Germany dismantles a major Darknet marketplace.
GitHub Fortifies Public Repos with Push Protection
GitHub introduces default push protection for public repositories, stepping up its game in cybersecurity defense against sensitive data exposure.
New Migo Malware Targeting Redis Servers
A new sophisticated malware, Migo, hits Redis servers, demonstrating advanced techniques to mine cryptocurrency on Linux hosts undetected.
Ramp Up Your Cybersecurity: Safeguarding Tax Pros from Phishing Scams
Tax professionals face an upsurge of phishing schemes amid the tax season. Learn valuable tips to bolster defenses and combat cyber threats.
APT28 Threat Alert: Ubiquiti Routers Targeted by MooBot Botnet
The APT28 group, also known as Fancy Bear, uses MooBot to hijack routers, prompting a joint advisory for heightened cybersecurity.
Critical LiteSpeed Cache Vulnerability Affects Millions of WordPress Sites
A critical XSS vulnerability in the LiteSpeed Cache plugin for WordPress impacts over 4 million sites, stressing the importance of up-to-date security measures.
Critical SeedProd WordPress Plugin Vulnerability Alert
A high severity vulnerability in the SeedProd WordPress plugin has put over 900,000 sites at risk. Users are urged to immediately update to the newest version for security.
North Korea Ups Ante in Cyber Warfare Using AI
A UN panel reports that North Korea’s use of AI in cyberattacks funds their missile programs. The surge in sophisticated scams poses global threats.
LockBit Ransomware Takedown and the Ongoing Battle Against Cyber Threats
The recent crackdown on LockBit ransomware marks a significant turn in the fight against cyber threats, highlighting the importance of multinational cooperation and the relentless evolution of digital dangers.
Russian Ministry Hit by North Korean Malware
A sophisticated cyberespionage campaign has been revealed within Russia’s Ministry, involving DPRK-linked malware Konni RAT.
Microsoft Enhances Cybersecurity for U.S. Federal Agencies with Free Advanced Audit Logs
Microsoft’s latest security measure provides free advanced audit logging to all U.S. federal agencies, strengthening the nation’s cyber defense post-China-linked cyber espionage activities.
Dormant Python Package Turns Malicious: The Case of django-log-tracker
A Python package, django-log-tracker, reactivated with a malware payload after two years, signaling supply chain risks.
Apple Patches Vulnerability in Shortcuts App
Apple Patches Vulnerability in Shortcuts App In a world increasingly defined by smartphones and automation, a recently patched vulnerability in Apple's Shortcuts app has thrown the spotlight on the critical importance of cybersecurity vigilance. Apple, swiftly...
SSH-Snake: The Stealthy Cyber Threat Hunting SSH Keys
SSH-Snake, a new cyber threat, is targeting SSH keys to infiltrate networks. Learn how it operates undetected and adapts to evade capture.
Crackdown on LockBit Ransomware Signals Global Enforcement Momentum
In a significant blow to the LockBit ransomware syndicate, international law enforcement agencies rally to dismantle its operations and infrastructure.
Turla Group Unveils Menacing TinyTurla-NG Backdoor
The Russian-backed Turla group introduces TinyTurla-NG backdoor, elevating cyber threats to a new level as they target Polish NGOs.
U.S. Government Dismantles Russian APT28-Operated Botnet
The U.S. government takes decisive action against a Russian espionage group’s botnet, protecting national cybersecurity.
Urgent Cybersecurity Alerts: New Vulnerabilities and Ransomware Threats
Significant vulnerabilities in enterprise software have highlighted the urgent cybersecurity risks and spread of ransomware attacks. Government agencies push for increased vigilance.
U.S. Government Struggles with Fresh Cybersecurity Breaches
Recent breaches in the U.S. government highlight ongoing vulnerabilities as cyber defenses are put to the test.
Bumblebee Malware Returns to Threaten U.S. Businesses
U.S. businesses now face a resurgence of Bumblebee malware with new phishing campaigns. Discover its impacts and the call for strengthened cyber defense.
Microsoft Warns of a Critical Vulnerability in Exchange Server
Microsoft issues a warning about a new vulnerability in its Exchange Server; critical patch released.
Command-Not-Found Exploit on Ubuntu
An exploit found in Ubuntu’s command-not-found utility could mislead users into installing malicious packages through typographical errors, posing a significant security threat.
Fortifying FinServ Against Cyber Threats: Strategies and Solutions
Explore the multifaceted cybersecurity strategies FinServ institutions are adopting to protect against sophisticated threats and maintain customer trust.
CISA Advisory Highlights Crucial Roundcube Email Vulnerability
CISA issues an alert about a severe vulnerability in Roundcube email, urging immediate patching to prevent XSS attacks. Learn about the urgent push for security upgrades.
Rhysida Ransomware Cracked: Free Decryption Tool Released
Kookmin University and KISA researchers crack Rhysida ransomware, releasing a free decryption tool to combat the cyber threat.
Microsoft Unveils Sudo for Windows 11
Microsoft introduces ‘Sudo for Windows’ feature in Windows 11, enhancing command-line administration and bridging Unix-like capabilities.
Ivanti Warns of New Security Vulnerabilities Affecting Products
Ivanti Warns of New Security Vulnerabilities Affecting Products In the ever-evolving landscape of cyber threats, Ivanti has issued a stark warning about a new wave of vulnerabilities affecting its products. The most recent, known as the Ivanti Auth Bypass Flaw,...
FortiOS SSL VPN Critical Flaw: A Wake-Up Call for Network Security
A critical security flaw in FortiOS SSL VPN, CVE-2024-21762, is actively exploited, prompting an urgent response to fortify network security against advanced threats.
FortiOS SSL VPN Critical Vulnerability Advisory
A severe remote code execution vulnerability in FortiOS SSL VPN, identified as CVE-2024-21762, is currently being exploited without the need for authentication.
Chinese Hackers Infiltrate U.S. Infrastructure
Chinese hackers, known as Volt Typhoon, infiltrated U.S. infrastructure networks, remaining undetected for five years.
JetBrains Issues Critical Security Alert for TeamCity Software
JetBrains alerts users to a critical 9.8-rated vulnerability in TeamCity On-Premises software and releases an update and security patch.
U.S. Tightens Grip on Cybersecurity with Visa Restrictions and Sanctions
The U.S. enacts stringent visa restrictions and sanctions to combat digital espionage and enhance cybersecurity.
Pegasus Spyware Casts a Shadow Over Jordan’s Civil Society
Investigations reveal systematic targeting of journalists and activists in Jordan by NSO Group’s Pegasus spyware, raising human rights concerns.
U.S. Cracks Down on Iranian Cyber Threats with OFAC Sanctions
The U.S. Treasury’s OFAC imposes sanctions on Iranian officials linked to cyber attacks on global infrastructure, signaling a strong stance against cyber threats.
AnyDesk Responds to Security Breach with Swift Remediation Plan
In the wake of a significant security breach, AnyDesk implements a stringent remediation plan alongside CrowdStrike to bolster cybersecurity defenses.
Cybersecurity in Ukraine: Alert on DirtyMoe Malware’s Rising Threat
CERT-UA issues an urgent warning about DirtyMoe malware, highlighting its role in cryptojacking and DDoS attacks amidst the Ukraine conflict.
Former CIA Engineer Sentenced to 40 Years for Historic Data Leak
Ex-CIA software engineer Joshua Schulte receives a hefty 40-year sentence for the monumental Vault 7 data leak to WikiLeaks.
Cloudflare Thwarts Sophisticated Cyber Attack
Cloudflare detects a sophisticated cyber attack on its Atlassian server on Thanksgiving Day, showcasing the ongoing battle in cyberspace.
Unveiling Sophisticated Malware Targeting Ivanti VPNs
Google’s Mandiant uncovers new malware forms targeting Ivanti VPN solutions, highlighting advances in cyber espionage.
CISA Warns of Active Exploitation of Critical iOS and macOS Vulnerability
CISA issues a red alert for a critical vulnerability affecting iOS, iPadOS, and macOS devices, urging rapid mitigation.
Critical glibc Vulnerability Threatens Linux Systems Security
A newly discovered glibc vulnerability in Linux systems could allow attackers to gain root access, highlighting the need for robust cybersecurity.
Brazilian Police and Partners Dismantle Grandoreiro Trojan
The Brazilian Federal Police’s Operation Grandoreiro successfully targeted the operators behind the notorious Grandoreiro banking Trojan, thwarting their cyber schemes.
Juniper Networks Releases Critical Security Updates
Juniper Networks has deployed vital security patches for its Junos OS, addressing a critical vulnerability and reinforcing cybersecurity.
Outlook Vulnerability Exposes Passwords
Researchers have found a major vulnerability in Microsoft Outlook that could lead to password exposure.
NSA’s Purchase of Domestic Internet Data Raises Privacy Alarms
Recent revelations show the NSA purchasing Americans’ internet metadata, sparking significant privacy concerns and calls for transparency.
Cisco Patches Critical Unified Communications Vulnerability
Cisco released crucial patches for a major security flaw in Unified Communications and Contact Center solutions, urging customers to update immediately.
Targeted Cyber Attacks Unleash Modified AllaKore RAT on Mexican Banks and Crypto Platforms
Targeted Cyber Attacks Unleash Modified AllaKore RAT on Mexican Banks and Crypto Platforms In the dynamic landscape of cybersecurity, financial institutions and cryptocurrency platforms now face a sophisticated threat. Modified versions of the AllaKore RAT, first...
HP Enterprise Targeted by Russian Hackers in Cyber Espionage
HP Enterprise has been compromised in a sophisticated cyberattack by APT29, a notorious Russian hacker group, leading to the exfiltration of key email data.
Nudge Security: A Behavioral Approach to Cybersecurity
Exploring how Nudge Security uses behavioral science to enhance digital safety and reshape online habits for better cybersecurity outcomes.