Category: Information Security
Microsoft has issued a warning to users about a critical vulnerability in its Office suite that permits unauthorized malefactors to execute malicious code. The vulnerability, uncovered by Check Point, has been designated CVE-2024-21413. It...
The Canadian oil transportation network, Trans-Northern Pipelines, has issued a security threat that has caused a stir and concern across the industry: the ransomware group ALPHV, also known as BlackCat, announced the breach of...
As part of its routine security update on Patch Tuesday, Microsoft rectified a vulnerability in SmartScreen that was actively exploited by hackers to disseminate the remote access trojan DarkMe. Let us delve deeper into...
Researchers at Aqua Security have uncovered a critical flaw that enables malefactors to compromise systems running Linux. This vulnerability pertains to the exploitation of the “command-not-found” utility integrated within the Ubuntu distribution, which assists...
The Cisco Talos research team uncovered a vast espionage campaign targeted at a non-profit charitable organization in Saudi Arabia. Commencing in March 2021, the campaign employed a previously unknown custom backdoor named Zardoor, which...
In the latest Patch Tuesday update released by Microsoft in February 2024, a total of 73 vulnerabilities in the company’s software were addressed, including two zero-day vulnerabilities that were actively being exploited by malefactors,...
A 17-year-old researcher discovered that through the Juniper customer support portal, information about devices and support contracts for numerous clients could be accessed. The data leak has been ongoing since September 2023. Esteemed cybersecurity...
Experts at Zscaler ThreatLabz have identified significant modifications in the functionality of the malicious software PikaBot. The new version, labeled 1.18.32, is currently undergoing a development and testing phase, during which the developers have...
In November 2023, the Indian conglomerate Infosys, a global titan in software provision, precipitated a widespread data breach that implicated Bank of America’s clientele. An official statement released on November 3rd revealed that the...
Cybersecurity specialists have identified a vulnerability in the implementation of the Rhysida ransomware, which allowed the decryption keys to be recovered and the data locked by the malware to be decrypted. This discovery was...
Hackers are exploiting a Server-Side Request Forgery (SSRF) vulnerability in Ivanti Connect Secure (ICS), Policy Secure (IPS), and ZTA products to deploy a new backdoor named DSLog on vulnerable devices. The flaw, identified as...
In Romania, a minimum of 25 hospitals have faced severe operational challenges due to a vast ransomware assault, which has debilitated the local healthcare management system. The Hipocrate Information System (HIS), employed by Romanian...