Stay up-to-date with the latest cybersecurity news and developments in the cybersecurity landscape. Be the first to know about the latest threats, current innovations, and major trends in the cyber universe. Check our Cyber News section for the freshest information.
In a significant cybersecurity case, 27-year-old Russian citizen Georgy Kavzharadze has been sentenced to 40 months in prison by a U.S. court for his involvement in selling over 300,000 stolen account credentials on the now-defunct hacking marketplace, Slilpp. This case highlights the ongoing battle against cybercrime and the international efforts to combat digital fraud. The … Read more
In a significant move to bolster cybersecurity, Microsoft has released its August Patch Tuesday updates, addressing nearly 90 vulnerabilities across its product line. This comprehensive security update is particularly noteworthy as it tackles six zero-day vulnerabilities that were actively exploited by threat actors. Critical Vulnerabilities and Zero-Day Exploits The August security release includes patches for … Read more
A shocking discovery by French cybersecurity firm Quarkslab has revealed a critical backdoor in millions of smart cards produced by Shanghai Fudan Microelectronics Group, China’s leading chip manufacturer. This vulnerability allows for instant cloning of RFID cards based on NXP’s MIFARE Classic chips, which are extensively used in public transportation, office buildings, hotels, financial institutions, … Read more
In a significant cybersecurity development, Microsoft has recently patched a critical vulnerability in its Windows SmartScreen feature. This flaw, identified as CVE-2024-38213, allowed attackers to bypass the Mark of the Web (MotW) warnings, potentially exposing users to malicious content. The vulnerability, which was being actively exploited as a zero-day threat, highlights the ongoing challenges in … Read more
A newly discovered vulnerability named SinkClose (CVE-2023-31315) has sent shockwaves through the cybersecurity community, potentially affecting millions of AMD processors. This critical flaw, which has remained undetected for nearly two decades, poses a significant threat to a wide range of AMD EPYC, Ryzen, and Threadripper processors. Understanding the SinkClose Vulnerability SinkClose allows attackers with kernel-level … Read more
In a significant development in the fight against cybercrime, US authorities have brought charges against Denis Zolotarev, a Latvian national linked to the Russian-speaking ransomware group Karakurt. The 33-year-old suspect faces allegations of money laundering, wire fraud, and extortion, marking a crucial step in dismantling international cybercriminal networks. The Arrest and Extradition Zolotarev, who resided … Read more
In a controversial move that highlights the tension between government transparency and cybersecurity, the city of Columbus, Ohio, has filed a lawsuit against cybersecurity specialist David Leroy Ross. The legal action stems from Ross’s public disclosure of sensitive information leaked during a recent ransomware attack, challenging the city’s initial claims about the breach’s severity. The … Read more
A recent investigation by Palo Alto Networks has uncovered a significant cybersecurity threat affecting numerous high-profile open-source projects, including those managed by tech giants Google, Microsoft, AWS, and Red Hat. The issue revolves around the inadvertent exposure of GitHub authentication tokens through CI/CD workflow artifacts, potentially granting malicious actors unauthorized access to private repositories, source … Read more
The cybersecurity landscape in the WordPress ecosystem has been rocked by a recent escalation in the conflict between WordPress, Automattic (owner of WordPress.com and WooCommerce), and major hosting provider WP Engine. This dispute has significant implications for website security and user access to critical updates. The Core of the Conflict WordPress developers have taken the … Read more
A significant cybersecurity incident has unfolded on the social media platform X (formerly Twitter), with hackers compromising hundreds of accounts to promote a dubious cryptocurrency token. The attack, which began on September 18, 2024, has targeted high-profile accounts with millions of followers, raising concerns about social media security and the potential for widespread manipulation. The … Read more
