Category: Information Security

Cyber Espionage IntelBroker Arrest

Leicester Suffers Major Cyber Attack

Authorities in Leicester, a city in Leicestershire, Britain, have reported a serious cyber incident that necessitated the temporary shutdown of the city’s operational systems and critical telephone lines. The disruption to services was first...

VCURMS RAT

Vcurms RAT: New Attack Targets Java Systems

Fortinet’s FortiGuard Labs has unearthed a grave cyber threat dubbed Vcurms RAT, crafted by malefactors who employ email as a command-and-control center and utilize public services such as AWS and GitHub for harboring malicious...

GhostRace

GhostRace: New Attack Bypasses OS Security

A new threat, codenamed GhostRace (CVE-2024-2193), has been identified by research teams from the Vrije Universiteit Amsterdam and IBM Research Europe. This vulnerability compromises the foundational security tools of operating systems and may result...

BIPClip

BIPClip Malware: A New Threat to Crypto Developers

Recently, the Python Package Index (PyPI) repository uncovered seven packages engineered for the theft of BIP39 mnemonic phrases, which are utilized for the restoration of private keys in cryptocurrency wallets. This operation, dubbed BIPClip...

Github Credentials Leaked

Exposed: 12.8 Million Credentials Leaked on GitHub

In 2023, GitHub users inadvertently disclosed approximately 12.8 million credentials and other confidential secrets across more than 3 million public repositories. Cybersecurity experts at GitGuardian, upon investigating this issue, dispatched 1.8 million cautionary emails...

CVE-2024-1403

CVE-2024-1403: The Threat to Progress Software Users

In the realm of cybersecurity, a critical vulnerability has been discovered affecting Progress Software products, specifically the OpenEdge Authentication Gateway and AdminServer. This flaw poses a significant threat to authentication mechanisms, potentially allowing malefactors...

Iran Cyber Threat, US Cyberattack Warning Pegasus spyware Jordan

French Government Websites Crippled in DDoS Attack

Several French governmental organizations have experienced cyberattacks of unprecedented intensity, as reported by the country’s Prime Minister’s office on March 11th. These attacks commenced on the evening of March 10th, and while their exact...

Inception Attack

Meta Quest VR Hack: “Inception Attack” Exposed

A new study by the University of Chicago has uncovered a vulnerability within the Meta Quest VR system that allows malefactors to hijack user devices, pilfer confidential information, and manipulate social interactions using generative...

Salt Typhoon Kansas State University cyberattack

BianLian Exploits TeamCity Flaws for Ransomware

GuidePoint Security, a cybersecurity firm, has uncovered that the BianLian group is exploiting vulnerabilities in the JetBrains TeamCity software to carry out ransomware attacks. Experts have documented a sequence of attacks initiated through the...

CVE-2024-1220

Moxa NPort Bug: Remote Code Execution Possible

Moxa expressed its gratitude to the experts at Positive Technologies for identifying a dangerous vulnerability in the NPort series of wireless industrial converters. Classified as CVE-2024-1220, this vulnerability was rated as high risk with...

CVE-2024-21762

150,000 Devices at Risk: Fortinet Bug Exploited

A critical vulnerability in Fortinet’s security systems has impacted approximately 150,000 devices worldwide. The vulnerability, CVE-2024-21762 (CVSS score: 9.8), is characterized as an out-of-bounds write issue in FortiOS, enabling an unauthenticated attacker to execute...