Cybersecurity News

Chrome’s App-Bound Encryption Cracked: Open-Source Tool Bypasses Security Measure

• Open Source Tool

Chrome’s App-Bound Encryption Cracked: Open-Source Tool Bypasses Security Measure

do son October 27, 2024

A newly released open-source tool has successfully decrypted keys protected by Chrome’s App-Bound Encryption, raising concerns about...

Read More Read more about Chrome’s App-Bound Encryption Cracked: Open-Source Tool Bypasses Security Measure

WhatsUp Gold Users Beware: Critical Authentication Bypass Flaw Exposed – CVE-2024-7763 (CVSS 9.8)

• Vulnerability

WhatsUp Gold Users Beware: Critical Authentication Bypass Flaw Exposed – CVE-2024-7763 (CVSS 9.8)

do son October 27, 2024

Progress Software has disclosed a severe new vulnerability in its popular network monitoring solution, WhatsUp Gold, that...

Read More Read more about WhatsUp Gold Users Beware: Critical Authentication Bypass Flaw Exposed – CVE-2024-7763 (CVSS 9.8)

Shahid Hemmat Hackers: $10M Reward Offered by US

• Cyber Security

Shahid Hemmat Hackers: $10M Reward Offered by US

do son October 27, 2024

The US Department of State has announced a reward of up to $10 million for information leading...

Read More Read more about Shahid Hemmat Hackers: $10M Reward Offered by US

$20 Million Drained and Returned: Government Wallet Under Scrutiny

• Cyber Security

$20 Million Drained and Returned: Government Wallet Under Scrutiny

do son October 27, 2024

Last week, a mysterious attack targeted a cryptocurrency wallet under the control of the US government, resulting...

Read More Read more about $20 Million Drained and Returned: Government Wallet Under Scrutiny

Black Basta Ransomware Group Elevates Social Engineering with Microsoft Teams and Malicious QR Codes

• Cyber Security
• Malware

Black Basta Ransomware Group Elevates Social Engineering with Microsoft Teams and Malicious QR Codes

do son October 27, 2024

The ReliaQuest Threat Research Team uncovered an intensified social engineering campaign tied to the ransomware group Black...

Read More Read more about Black Basta Ransomware Group Elevates Social Engineering with Microsoft Teams and Malicious QR Codes

Healthcare Under Fire: HeptaX Campaign Steals and Manipulates Sensitive Data

• Cyber Security

Healthcare Under Fire: HeptaX Campaign Steals and Manipulates Sensitive Data

do son October 27, 2024

Cyble Research and Intelligence Labs (CRIL) has recently uncovered a covert and sophisticated cyberespionage campaign dubbed “HeptaX,”...

Read More Read more about Healthcare Under Fire: HeptaX Campaign Steals and Manipulates Sensitive Data

Cyber-Espionage Campaign Unveiled: Operation Cobalt Whisper Hits Sensitive Industries

• Cyber Security

Cyber-Espionage Campaign Unveiled: Operation Cobalt Whisper Hits Sensitive Industries

do son October 27, 2024

Quick Heal’s SEQRITE Labs has recently uncovered a significant cyber-espionage campaign dubbed Operation Cobalt Whisper, targeting sensitive...

Read More Read more about Cyber-Espionage Campaign Unveiled: Operation Cobalt Whisper Hits Sensitive Industries

DTLS “ClientHello” Race Condition: A New Threat to WebRTC Security

• Vulnerability

DTLS “ClientHello” Race Condition: A New Threat to WebRTC Security

do son October 27, 2024

Enable Security recently released a report detailing a newly discovered vulnerability in WebRTC, the open-standard technology enabling...

Read More Read more about DTLS “ClientHello” Race Condition: A New Threat to WebRTC Security

CVE-2024-9488 (CVSS 9.8): Authentication Bypass Flaw in wpDiscuz Plugin, Over 80,000 Sites at Risk

• Vulnerability

CVE-2024-9488 (CVSS 9.8): Authentication Bypass Flaw in wpDiscuz Plugin, Over 80,000 Sites at Risk

do son October 26, 2024

A critical authentication bypass vulnerability has been discovered in wpDiscuz, a widely used WordPress plugin with over...

Read More Read more about CVE-2024-9488 (CVSS 9.8): Authentication Bypass Flaw in wpDiscuz Plugin, Over 80,000 Sites at Risk

SolarSys: New Trojan Framework Threatens Brazilian Banking Customers

• Malware

SolarSys: New Trojan Framework Threatens Brazilian Banking Customers

do son October 26, 2024

In a recent report, 360 Security Center revealed a new threat to Brazilian banking customers with the...

Read More Read more about SolarSys: New Trojan Framework Threatens Brazilian Banking Customers

CVE-2024-10327: Okta Verify for iOS Vulnerability Could Allow Unauthorized Access

• Vulnerability

CVE-2024-10327: Okta Verify for iOS Vulnerability Could Allow Unauthorized Access

do son October 25, 2024

A newly disclosed vulnerability in Okta Verify for iOS could allow unauthorized access to user accounts, even...

Read More Read more about CVE-2024-10327: Okta Verify for iOS Vulnerability Could Allow Unauthorized Access

Rekoobe Backdoor and Typosquatting Domains: A Potential Threat to TradingView Users

• Malware

Rekoobe Backdoor and Typosquatting Domains: A Potential Threat to TradingView Users

do son October 25, 2024

In a recent cybersecurity discovery, Hunt.io’s Threat Hunting Platform unveiled a new Rekoobe backdoor, this time found...

Read More Read more about Rekoobe Backdoor and Typosquatting Domains: A Potential Threat to TradingView Users

CVE-2024-47901 (CVSS 10): Critical Security Flaw in Siemens InterMesh

• Vulnerability

CVE-2024-47901 (CVSS 10): Critical Security Flaw in Siemens InterMesh

do son October 24, 2024

Siemens has issued a security advisory addressing multiple vulnerabilities in its InterMesh wireless alarm reporting system. These...

Read More Read more about CVE-2024-47901 (CVSS 10): Critical Security Flaw in Siemens InterMesh

North Korean Cyber Espionage Group Tenacious Pungsan Compromises Open-Source Repositories with Backdoored npm Packages

• Cyber Security
• Malware

North Korean Cyber Espionage Group Tenacious Pungsan Compromises Open-Source Repositories with Backdoored npm Packages

do son October 24, 2024

In a recent report, the Datadog Security Research Team exposed the latest nefarious activities of the Tenacious...

Read More Read more about North Korean Cyber Espionage Group Tenacious Pungsan Compromises Open-Source Repositories with Backdoored npm Packages

CISA Sounds Alarm on Actively Exploited Cisco and Roundcube Vulnerabilities

• Vulnerability

CISA Sounds Alarm on Actively Exploited Cisco and Roundcube Vulnerabilities

do son October 24, 2024

The U.S. Cybersecurity and Infrastructure Security Agency (CISA) has issued an urgent warning about two actively exploited...

Read More Read more about CISA Sounds Alarm on Actively Exploited Cisco and Roundcube Vulnerabilities