Daily CyberSecurity • Page 442 of 739 • Zero-hour alerts. Unmatched analysis.

Revival Hijack: A New PyPI Hijacking Technique Threatens Thousands of Packages

Do Son September 4, 2024

The JFrog security research team has uncovered a novel PyPI package hijacking method known as “Revival Hijack,”...

North Korea Targets DeFi and Crypto Companies with Advanced Social Engineering Attacks KongTuke Microsoft Teams Phishing ModeloRAT Initial Access Broker CVE-2024-38193 - Lazarus Group Threat Actors ScreenConnect

KongTuke Microsoft Teams Phishing ModeloRAT Initial Access Broker CVE-2024-38193 - Lazarus Group Threat Actors ScreenConnect

North Korea Targets DeFi and Crypto Companies with Advanced Social Engineering Attacks

Do Son September 4, 2024

The FBI has warned sternly about North Korean state-sponsored hackers employing highly sophisticated social engineering tactics to...

Transport for London Under Cyberattack, Transport Services Remain Unaffected IARPA Research Security Data Abyss Report Telecom threat, Secret Service cybersecurity news - Cyber Espionage Campaign

IARPA Research Security Data Abyss Report Telecom threat, Secret Service cybersecurity news - Cyber Espionage Campaign

Transport for London Under Cyberattack, Transport Services Remain Unaffected

Do Son September 4, 2024

Transport for London (TfL) has disclosed an ongoing cyberattack targeting its systems. The incident has yet to...

Clearview AI Faces Record €30.5 Million Fine for Privacy Breach

Do Son September 4, 2024

The Dutch Data Protection Authority (Dutch DPA) has imposed a fine of €30.5 million on Clearview AI...

CVE-2024-38106: 0-Day Windows Kernel Vulnerability Exploited in the Wild, PoC Published Microsoft MAI-Image-1, In-House AI Microsoft Learn, MCP Server Windows Kernel Vulnerability - CVE-2024-38106 PoC exploit

Microsoft MAI-Image-1, In-House AI Microsoft Learn, MCP Server Windows Kernel Vulnerability - CVE-2024-38106 PoC exploit

CVE-2024-38106: 0-Day Windows Kernel Vulnerability Exploited in the Wild, PoC Published

Do Son September 3, 2024

Recently, security researcher Sergey Kornienko from PixiePoint Security published an analysis and proof-of-concept (PoC) exploit for a...

Emansrepo Stealer: A Multi-Faceted Threat Evolving in Complexity

Do Son September 3, 2024

Cybersecurity researchers at FortiGuard Labs have been tracking the activities of a persistent and adaptable Python-based infostealer...

RomCom Group’s Underground Ransomware Exploits Microsoft Zero-Day Flaw Storm-0978 RomCom group Underground ransomware

RomCom Group’s Underground Ransomware Exploits Microsoft Zero-Day Flaw

Do Son September 3, 2024

FortiGuard Labs found a new ransomware variant, Underground, that has been linked to the Russia-based RomCom group...

CISA Issues Alert: Three Actively Exploited Vulnerabilities Demand Immediate Attention CISA KEV Catalog DarkSword Exploit Draytek Routers VMware vCenter RCE CVE-2024-37079

CISA KEV Catalog DarkSword Exploit Draytek Routers VMware vCenter RCE CVE-2024-37079

CISA Issues Alert: Three Actively Exploited Vulnerabilities Demand Immediate Attention

Do Son September 3, 2024

The Cybersecurity and Infrastructure Security Agency (CISA) has added three critical vulnerabilities to its Known Exploited Vulnerabilities...

Google Patches Actively Exploited Zero-Day in September Android Update Google Lawsuit, Android Data Privacy Android September Security

Google Patches Actively Exploited Zero-Day in September Android Update

Do Son September 3, 2024

Google’s September 2024 Android security patch addresses 36 vulnerabilities, one of which has already been exploited in...

Researcher Identifies ToddyCat-Inspired APT Attack Leveraging ICMP Backdoor and Microsoft Exchange Flaws

Do Son September 3, 2024

Cybersecurity researchers at Kaspersky’s Global Emergency Response Team (GERT) have uncovered a sophisticated attack involving an ICMP...

Travelers Targeted: Booking.com Phishing Scam Unveiled Booking phishing campaign

Travelers Targeted: Booking.com Phishing Scam Unveiled

Do Son September 3, 2024

A new report from OSINTMATTER has detailed a sophisticated phishing campaign targeting Booking.com, a leading online travel...

International Cybercriminal Extradited to Face Charges in $7.5 Million Charity Fraud

Do Son September 3, 2024

Olusegun Samson Adejorin, a Nigerian national, has been extradited from Ghana to the United States. Adejorin faces...

CVE-2024-38811: Code Execution Vulnerability Discovered in VMware Fusion VMware Aria Operations CVE-2026-22719 VMware Fusion - CVE-2024-38811 VMware security, CVE-2025-22247

VMware Aria Operations CVE-2026-22719 VMware Fusion - CVE-2024-38811 VMware security, CVE-2025-22247

CVE-2024-38811: Code Execution Vulnerability Discovered in VMware Fusion

Do Son September 3, 2024

A high-severity security vulnerability (CVE-2024-38811, CVSS 8.8) has been identified in VMware Fusion, a popular virtualization software...

Windows 11 Surpasses Windows 10 as Dominant PC Gaming Platform Windows 11 market share

Windows 11 Surpasses Windows 10 as Dominant PC Gaming Platform

Do Son September 3, 2024

In a notable development in the PC gaming landscape, Windows 11 has officially overtaken its predecessor, Windows...

UK Adolescents Plead Guilty in Multi-Million Pound Banking Fraud Scheme

Do Son September 3, 2024

Three UK adolescents have confessed to operating an online service that facilitated large-scale banking fraud by enabling...

CVE-2024-7261 (CVSS 9.8): Zyxel Patches Critical Vulnerability in Wi-Fi Devices CVE-2024-7261 - Zyxel routers

CVE-2024-7261 (CVSS 9.8): Zyxel Patches Critical Vulnerability in Wi-Fi Devices

Do Son September 2, 2024

Zyxel, a prominent networking equipment manufacturer, has issued a security advisory urging users to promptly update their...

CVE-2024-7593 (CVSS 9.8): Critical Ivanti vTM Flaw Now Weaponized, PoC Exploit Available

Do Son September 2, 2024

A critical authentication bypass vulnerability, tracked as CVE-2024-7593 (CVSS 9.8), in Ivanti’s Virtual Traffic Manager (vTM), is...

D-Link Won’t Fix 4 RCE Vulnerabilities in DIR-846W Router CVE-2024-3080

D-Link Won’t Fix 4 RCE Vulnerabilities in DIR-846W Router

Do Son September 2, 2024

Four severe security flaws have been found in the D-Link DIR-846W router, leaving users potentially exposed to...

CVE-2024-8105: An UEFI Flaw Putting Millions of Devices at Risk CVE-2024-8105 - PKfail

CVE-2024-8105: An UEFI Flaw Putting Millions of Devices at Risk

Do Son September 2, 2024

A significant vulnerability, CVE-2024-8105, dubbed PKfail, has surfaced within the UEFI ecosystem. With a CVSS score of...

An Ongoing Social Engineering Campaign Targets 130+ US Organizations

Do Son September 2, 2024

A new wave of highly targeted cyberattacks is sweeping across the US, and it’s not your average...