Daily CyberSecurity • Page 476 of 735 • Zero-hour alerts. Unmatched analysis.

SolarMarker Impersonates Indeed to Spread Malware

Do Son June 16, 2024

Recently, eSentire’s Threat Response Unit (TRU) has uncovered a new campaign by the SolarMarker threat group, which...

New Cryptojacking Campaign Targets Exposed Docker APIs

Do Son June 16, 2024

Datadog Security Labs has published a comprehensive analysis of a new cryptojacking campaign that specifically targets publicly...

ASUS Issues Critical Security Update for Router Vulnerability CVE-2024-3080 (CVSS 9.8)

Do Son June 16, 2024

ASUS has released an urgent firmware update to address a critical security vulnerability affecting seven of its...

CVE-2024-26229: Windows Elevation of Privilege Flaw Weaponized, PoC Exploit on GitHub CVE-2024-26229 exploit

CVE-2024-26229: Windows Elevation of Privilege Flaw Weaponized, PoC Exploit on GitHub

Do Son June 14, 2024

Security researchers are raising the alarm as proof-of-concept (PoC) exploit code targeting a recently patched high-severity vulnerability...

Scam Alert: Fake Olympic Ticketing Websites Target Sports Fans

Do Son June 14, 2024

Cybersecurity firm Proofpoint has uncovered a widespread scam targeting eager Olympic fans. Hundreds of fraudulent websites have...

AMD Processors Vulnerable to Serious SPI Lock Bypass Flaw (CVE-2022-23829) CVE-2022-23829 - CVE-2024-21924

AMD Processors Vulnerable to Serious SPI Lock Bypass Flaw (CVE-2022-23829)

Do Son June 13, 2024

A high-severity vulnerability, identified as CVE-2022-23829 (CVSS 8.2), has been discovered in various AMD processors, potentially impacting...

New Phishing Technique Exploits Progressive Web Apps for Credible Attacks PWA Phishing

New Phishing Technique Exploits Progressive Web Apps for Credible Attacks

Do Son June 13, 2024

A new phishing technique exploiting Progressive Web Apps (PWAs) has been brought to light by cybersecurity researcher...

North Korean Hackers Exploit Old Office Flaw to Deploy Keylogger North Korean state-sponsored group

North Korean Hackers Exploit Old Office Flaw to Deploy Keylogger

Do Son June 13, 2024

AhnLab Security Emergency response Center (ASEC) has disclosed a new cyberespionage campaign attributed to the North Korean...

BadSpace Backdoor: New Malware Threat Infecting High-Ranking Websites

Do Son June 13, 2024

In a recent discovery, cybersecurity researchers have unveiled a sophisticated new backdoor, dubbed “BadSpace,” that poses a...

Java-Based STR RAT Returns: Keylogging and Credential Theft on the Rise STR RAT malware

Java-Based STR RAT Returns: Keylogging and Credential Theft on the Rise

Do Son June 13, 2024

A recent analysis by security researcher Jacob Malimban at Cofense has revealed a resurgence in activity from...

Brazil’s Cybersecurity Landscape: A Fusion of Global and Local Threats Brazil Cybersecurity

Brazil’s Cybersecurity Landscape: A Fusion of Global and Local Threats

Do Son June 13, 2024

In a new and comprehensive report, Google’s Threat Analysis Group (TAG) and Mandiant’s frontline intelligence team have...

“This isn’t just a data breach—it’s a textbook of architectural failures”: Sergei Gasilov on the Snowflake cloud platform hack real_a7f7ae8e-34d8-463b-b87e-c54f597ebbf2

real_a7f7ae8e-34d8-463b-b87e-c54f597ebbf2

“This isn’t just a data breach—it’s a textbook of architectural failures”: Sergei Gasilov on the Snowflake cloud platform hack

Dan Agbo June 13, 2024

Software Staff Engineer at international fintech company One Inc. explains how attackers managed to steal data from...

CVE-2024-32896: Google Patches Actively Exploited Zero-Day Vulnerability in Pixel Devices

Do Son June 12, 2024

Google has released a critical security update for Pixel devices, addressing a zero-day vulnerability (CVE-2024-32896) that has...

CVE-2024-37051: Critical JetBrains Flaw Exposes GitHub Tokens in IntelliJ IDEs, PoC Published CVE-2024-37051 exploit

CVE-2024-37051: Critical JetBrains Flaw Exposes GitHub Tokens in IntelliJ IDEs, PoC Published

Do Son June 12, 2024

A security researcher has published details and proof-of-concept (PoC) exploit code for a critical vulnerability (CVE-2024-37051) that...

Beware the Windows Search Scam: Clever Phishing Campaign Exploits User Trust

Do Son June 12, 2024

A new, sophisticated malware campaign is targeting Windows users, leveraging the operating system’s built-in search functionality to...

CVE-2024-35213: Critical Vulnerability Discovered in BlackBerry QNX SDP

Do Son June 12, 2024

BlackBerry has issued a critical security advisory for its QNX Software Development Platform (SDP), urging users to...

Smishing Triad Targets Pakistan with Large-Scale Banking Scam

Do Son June 12, 2024

Cybersecurity firm Resecurity has disclosed a sophisticated smishing campaign targeting customers of major Pakistani mobile carriers. The...

Adobe Patches Critical Flaws in Multiple Products, Urging Users to Update CVE-2024-30299

Adobe Patches Critical Flaws in Multiple Products, Urging Users to Update

Do Son June 12, 2024

Adobe has released crucial security updates to address multiple critical vulnerabilities across several of its widely-used software...

Bondnet Threat Actor Still Active, Using Bots as C2 Servers

Do Son June 12, 2024

AhnLab Security Emergency response Center (ASEC) has published a report detailing a significant shift in the tactics...

CVE-2024-26169: Windows Zero-Day Vulnerability Abused by Black Basta Ransomware

Do Son June 12, 2024

In a recent investigation, Symantec’s Threat Hunter Team has identified evidence suggesting that the Black Basta ransomware...

Critical Alert 2 Active Exploits Detected Today