Stay up-to-date with the latest cybersecurity news and developments in the cybersecurity landscape. Be the first to know about the latest threats, current innovations, and major trends in the cyber universe. Check our Cyber News section for the freshest information.
In a significant cybersecurity development, Microsoft has recently patched a critical vulnerability in its Windows SmartScreen feature. This flaw, identified as CVE-2024-38213, allowed attackers to bypass the Mark of the Web (MotW) warnings, potentially exposing users to malicious content. The vulnerability, which was being actively exploited as a zero-day threat, highlights the ongoing challenges in … Read more
A newly discovered vulnerability named SinkClose (CVE-2023-31315) has sent shockwaves through the cybersecurity community, potentially affecting millions of AMD processors. This critical flaw, which has remained undetected for nearly two decades, poses a significant threat to a wide range of AMD EPYC, Ryzen, and Threadripper processors. Understanding the SinkClose Vulnerability SinkClose allows attackers with kernel-level … Read more
In a significant development in the fight against cybercrime, US authorities have brought charges against Denis Zolotarev, a Latvian national linked to the Russian-speaking ransomware group Karakurt. The 33-year-old suspect faces allegations of money laundering, wire fraud, and extortion, marking a crucial step in dismantling international cybercriminal networks. The Arrest and Extradition Zolotarev, who resided … Read more
In a controversial move that highlights the tension between government transparency and cybersecurity, the city of Columbus, Ohio, has filed a lawsuit against cybersecurity specialist David Leroy Ross. The legal action stems from Ross’s public disclosure of sensitive information leaked during a recent ransomware attack, challenging the city’s initial claims about the breach’s severity. The … Read more
A recent investigation by Palo Alto Networks has uncovered a significant cybersecurity threat affecting numerous high-profile open-source projects, including those managed by tech giants Google, Microsoft, AWS, and Red Hat. The issue revolves around the inadvertent exposure of GitHub authentication tokens through CI/CD workflow artifacts, potentially granting malicious actors unauthorized access to private repositories, source … Read more
The cybersecurity landscape in the WordPress ecosystem has been rocked by a recent escalation in the conflict between WordPress, Automattic (owner of WordPress.com and WooCommerce), and major hosting provider WP Engine. This dispute has significant implications for website security and user access to critical updates. The Core of the Conflict WordPress developers have taken the … Read more
A significant cybersecurity incident has unfolded on the social media platform X (formerly Twitter), with hackers compromising hundreds of accounts to promote a dubious cryptocurrency token. The attack, which began on September 18, 2024, has targeted high-profile accounts with millions of followers, raising concerns about social media security and the potential for widespread manipulation. The … Read more
In a significant breakthrough for cybersecurity authorities, two suspects have been apprehended in Miami in connection with a staggering $230 million cryptocurrency theft. This case highlights the evolving landscape of digital asset crimes and the critical importance of robust security measures in the crypto world. The Suspects and Their Alleged Crimes The U.S. Department of … Read more
Cybersecurity experts have uncovered a sophisticated attack on a Taiwanese university, where threat actors deployed a previously unknown backdoor named Msupedge. The attackers exploited a recently patched remote code execution (RCE) vulnerability in PHP, identified as CVE-2024-4577, to compromise Windows systems within the educational institution. Understanding the PHP Vulnerability The CVE-2024-4577 vulnerability, disclosed in early … Read more
Cybersecurity experts at Bi.Zone have identified a concerning trend in the first quarter of 2024: a significant increase in attacks on Russian companies using modified commercial malware. This surge comes despite developers’ attempts to restrict their software’s use against organizations in CIS countries. The Growing Threat of Adapted Commercial Malware According to the analysis, 73% … Read more
