News

Critical Authentication Bypass and RCE Vulnerabilities in HPE StoreOnce Software

CVE News

Critical Authentication Bypass and RCE Vulnerabilities in HPE StoreOnce Software

Hewlett Packard Enterprise (HPE) has issued an urgent security bulletin warning of eight vulnerabilities in its StoreOnce...

Coinbase Data Breach: Bribed TaskUs Support Agents Leaked Sensitive User Data

Data Breach

Coinbase Data Breach: Bribed TaskUs Support Agents Leaked Sensitive User Data

A recent data breach at Coinbase has been traced to bribed customer support agents employed by outsourcing...

Malicious RubyGems Impersonate Fastlane to Hijack Telegram API Data

Red-Team

Malicious RubyGems Impersonate Fastlane to Hijack Telegram API Data

Two malicious RubyGems packages have been discovered masquerading as popular Fastlane CI/CD plugins, designed to intercept and...

Windows 11 Quick Machine Recovery: Automated Boot Failure Remediation

News

Windows 11 Quick Machine Recovery: Automated Boot Failure Remediation

Microsoft has introduced a new feature in Windows 11 called Quick Machine Recovery (QMR), designed to automatically...

Mozilla’s New Defense Against Cryptocurrency-Draining Firefox Extensions

News

Mozilla’s New Defense Against Cryptocurrency-Draining Firefox Extensions

Mozilla has introduced a new security mechanism designed to detect and block malicious Firefox extensions that target...

Scattered Spider: Beyond the Headlines – Tactics, Targets, and Mitigations

APT-News

Scattered Spider: Beyond the Headlines – Tactics, Targets, and Mitigations

Scattered Spider, a name that has dominated cybersecurity headlines since 2023, represents more than a traditional threat...

Tech Giants and Law Enforcement Clash Over Mobile Phone Theft Epidemic

News

Tech Giants and Law Enforcement Clash Over Mobile Phone Theft Epidemic

The escalating issue of mobile phone theft has sparked a contentious debate between technology companies like Apple...

AI Mandates in the Workplace: How Tech Companies Are Reshaping Jobs

News

AI Mandates in the Workplace: How Tech Companies Are Reshaping Jobs

Major corporations like Shopify, Box, and Duolingo are now requiring employees to use artificial intelligence tools as...

Google Chrome to Remove Trust in Chunghwa Telecom and NetLock Certificates: Technical Impact and Mitigation

News

Google Chrome to Remove Trust in Chunghwa Telecom and NetLock Certificates: Technical Impact and Mitigation

Starting August 1, 2025, Google Chrome will no longer trust TLS certificates issued by Chunghwa Telecom (Taiwan)...

Microsoft and CrowdStrike Launch Cross-Platform Threat Actor Naming Initiative

Threat Intelligence

Microsoft and CrowdStrike Launch Cross-Platform Threat Actor Naming Initiative

Microsoft and CrowdStrike announced a joint initiative to create a unified reference system for tracking nation-state hacking...

Qualcomm Patches Actively Exploited Adreno GPU Zero-Day Vulnerabilities

CVE News

Qualcomm Patches Actively Exploited Adreno GPU Zero-Day Vulnerabilities

Qualcomm has addressed three critical zero-day vulnerabilities in its Adreno Graphics Processing Unit (GPU) driver that were...

The AI Copyright Standoff: Legal Battles, Ethical Concerns, and Technical Implications

Cyber Laws & Regulations

The AI Copyright Standoff: Legal Battles, Ethical Concerns, and Technical Implications

The ongoing debate over artificial intelligence and copyright law has reached a critical juncture, with no clear...

Public Exploit Details Emerge for Critical Cisco IOS XE Vulnerability (CVE-2025-20188)

CVE News

Public Exploit Details Emerge for Critical Cisco IOS XE Vulnerability (CVE-2025-20188)

Technical details surrounding CVE-2025-20188, a maximum-severity arbitrary file upload vulnerability affecting Cisco IOS XE Wireless LAN Controller...

Germany Identifies Conti and TrickBot Leader: A Deep Dive into the Cybercrime Operation

APT-News

Germany Identifies Conti and TrickBot Leader: A Deep Dive into the Cybercrime Operation

The Federal Criminal Police Office of Germany (BKA) has publicly identified Vitaly Nikolaevich Kovalev, a 36-year-old Russian...

The Legal and Technical Implications of Forcing Google to Share Search Data

Cyber Laws & Regulations

The Legal and Technical Implications of Forcing Google to Share Search Data

The ongoing antitrust case against Google has reached a critical juncture, with Judge Amit Mehta expected to...

Microsoft Authenticator Password Autofill Deprecation: Migration and Security Implications

News

Microsoft Authenticator Password Autofill Deprecation: Migration and Security Implications

Microsoft has begun notifying users of its Authenticator app that the password autofill feature will be discontinued...

ConnectWise ScreenConnect Breach: Nation-State Attack Analysis and Mitigation

APT-News

ConnectWise ScreenConnect Breach: Nation-State Attack Analysis and Mitigation

ConnectWise, a leading IT management software provider, confirmed a cyberattack targeting its ScreenConnect remote access tool in...

Google Apps Script Exploited in Sophisticated Phishing Campaigns

Threat Intelligence

Google Apps Script Exploited in Sophisticated Phishing Campaigns

Threat actors are increasingly abusing Google Apps Script to host phishing pages, leveraging the platform’s trusted reputation...

Apple Safari Fullscreen BitM Attack: Exploitation and Mitigation

CVE News

Apple Safari Fullscreen BitM Attack: Exploitation and Mitigation

A newly identified weakness in Apple’s Safari browser enables attackers to execute fullscreen browser-in-the-middle (BitM) attacks, potentially...

US Sanctions Philippines-Based Firm Behind $200M Cyber Scam Infrastructure

Threat Intelligence

US Sanctions Philippines-Based Firm Behind $200M Cyber Scam Infrastructure

The U.S. Treasury Department has imposed sanctions on Funnull Technology, a Philippines-based company accused of facilitating cyber...

Red-Team News

Critical Authentication Bypass and RCE Vulnerabilities in HPE StoreOnce Software

Coinbase Data Breach: Bribed TaskUs Support Agents Leaked Sensitive User Data

Malicious RubyGems Impersonate Fastlane to Hijack Telegram API Data

Windows 11 Quick Machine Recovery: Automated Boot Failure Remediation

Mozilla’s New Defense Against Cryptocurrency-Draining Firefox Extensions

Scattered Spider: Beyond the Headlines – Tactics, Targets, and Mitigations

Tech Giants and Law Enforcement Clash Over Mobile Phone Theft Epidemic

AI Mandates in the Workplace: How Tech Companies Are Reshaping Jobs

Google Chrome to Remove Trust in Chunghwa Telecom and NetLock Certificates: Technical Impact and Mitigation

Microsoft and CrowdStrike Launch Cross-Platform Threat Actor Naming Initiative

Qualcomm Patches Actively Exploited Adreno GPU Zero-Day Vulnerabilities

The AI Copyright Standoff: Legal Battles, Ethical Concerns, and Technical Implications

Public Exploit Details Emerge for Critical Cisco IOS XE Vulnerability (CVE-2025-20188)

Germany Identifies Conti and TrickBot Leader: A Deep Dive into the Cybercrime Operation

Microsoft Authenticator Password Autofill Deprecation: Migration and Security Implications

ConnectWise ScreenConnect Breach: Nation-State Attack Analysis and Mitigation

Google Apps Script Exploited in Sophisticated Phishing Campaigns

Apple Safari Fullscreen BitM Attack: Exploitation and Mitigation

US Sanctions Philippines-Based Firm Behind $200M Cyber Scam Infrastructure

You may have missed

Windows 11 22H2 End of Support: Key Dates and Security Implications

WeTransfer’s AI Training Policy Reversal: A Security and Trust Analysis

The Arctic World Archive: A Cold Storage Solution for Digital Heritage

EE Network Outage: Technical Fault Disrupts Voice Services for Multiple Days