Cybersecurity News

Security researchers at ESET have uncovered a critical vulnerability (CVE-2024-7344) in UEFI Secure Boot, a fundamental security mechanism designed to protect systems during startup. This severe security flaw enables attackers to deploy malicious bootloaders even when Secure Boot protection is active, potentially compromising system integrity at its most basic level. Understanding the Technical Impact The … Read more

Security researchers at SpearTip have uncovered a sophisticated large-scale brute force attack campaign targeting Microsoft 365 users, achieving an unprecedented 9.7% success rate in account compromises. The attack leverages the high-performance FastHTTP library written in Go to launch rapid-fire attacks against Azure Active Directory Graph API, representing a significant evolution in threat actors’ capabilities. Technical … Read more

Cybersecurity researchers at Cyfirma have uncovered a sophisticated malware campaign orchestrated by the notorious APT group DoNot Team (also known as APT-C-35 and Viceroy Tiger). The campaign features two malicious Android applications – Tanzeem and Tanzeem Update – which demonstrate nearly identical functionality with slight variations in their user interface design. Advanced Malware Masquerading as … Read more

Cisco has released an urgent security update addressing a critical vulnerability in its Meeting Management software, rated with a near-maximum CVSS score of 9.9. The severe security flaw enables potential attackers with basic system access to elevate their privileges to administrator level, posing significant risks to enterprise infrastructure security. Critical Vulnerability Analysis: CVE-2025-20156 The high-severity … Read more

Microsoft has released its most comprehensive security update in seven years, addressing over 160 vulnerabilities across its product lineup. This January 2024 patch Tuesday marks a significant milestone, with the number of fixes more than doubling the typical January release volume, according to analysis by Trend Micro Zero Day Initiative. Critical Zero-Day Vulnerabilities Under Active … Read more

Security researchers at Infoblox have uncovered a sophisticated cybersecurity threat involving approximately 13,000 compromised MikroTik devices forming a massive botnet. The network leverages misconfigured DNS Sender Policy Framework (SPF) settings to bypass security controls and facilitate malware distribution, affecting more than 20,000 domains. Sophisticated Attack Vector and Malware Distribution Chain The malicious network’s activities were … Read more

Google Cloud’s cybersecurity researchers, in collaboration with independent security experts, have uncovered multiple critical vulnerabilities in Rsync, a widely-deployed file synchronization tool. The most severe finding is a heap buffer overflow vulnerability that enables malicious actors to execute arbitrary code on compromised servers remotely, posing a significant threat to organizational security. Widespread Impact and Infrastructure … Read more

Cybersecurity researchers have identified widespread exploitation of a critical vulnerability (CVE-2024-50603) affecting Aviatrix Controller, a prominent cloud infrastructure management solution. The vulnerability, which allows unauthenticated remote command execution, poses a significant threat to enterprise networks and cloud infrastructures worldwide. Understanding the Critical Vulnerability Security researcher Jakub Korepta discovered this severe security flaw, which received the … Read more

Microsoft’s security research team has identified a critical vulnerability (CVE-2024-44243) in macOS that enables attackers to bypass the System Integrity Protection (SIP) mechanism, potentially allowing unauthorized kernel driver installations without physical access to the device. This discovery highlights significant implications for macOS system security and user data protection. Understanding System Integrity Protection and Its Critical … Read more

Check Point researchers have identified a new ransomware operation called FunkSec that represents an alarming trend in the cybercrime landscape: the integration of artificial intelligence in malware development. The group has targeted over 80 organizations in December 2023 alone, combining hacktivist messaging with sophisticated criminal operations. AI-Enhanced Malware Development and Technical Infrastructure The group’s primary … Read more