cybersecurity

Mobile App Pentesting: A Critical Need in Cybersecurity

News

Mobile App Pentesting: A Critical Need in Cybersecurity

Mobile applications have become central to daily operations, from banking transactions to enterprise communications. However, this reliance...

Internal and External Penetration Testing: A Comprehensive Approach to Enterprise Security

News

Internal and External Penetration Testing: A Comprehensive Approach to Enterprise Security

Internal and external penetration testing (pentesting) are critical components for evaluating an organization’s security posture. These simulated...

Red Team Simulations and Physical Pentesting: Strengthening Organizational Resilience

Red-Team

Red Team Simulations and Physical Pentesting: Strengthening Organizational Resilience

In an era of evolving cyber threats, organizations are adopting realistic methods to test their defenses. Red...

Industrial Control System (ICS/SCADA) Security: Why Penetration Testing is Critical for Critical Infrastructure

News

Industrial Control System (ICS/SCADA) Security: Why Penetration Testing is Critical for Critical Infrastructure

Industrial Control Systems (ICS) and SCADA networks form the backbone of modern critical infrastructure, from power plants...

How to Disable Fake System Notifications on macOS: A Security Professional’s Guide

News

How to Disable Fake System Notifications on macOS: A Security Professional’s Guide

Cybercriminals are exploiting macOS’s push notification system to distribute fake alerts mimicking legitimate system warnings. These malicious...

Boost PowerShell Productivity with GitHub Copilot: Installation and Use Cases

News

Boost PowerShell Productivity with GitHub Copilot: Installation and Use Cases

Artificial Intelligence is transforming PowerShell scripting by introducing GitHub Copilot, a powerful tool powered by OpenAI’s GPT-4....

How to Fix Azure AD Error “AADSTS700054”: Enabling ID Token Response for Applications

News

How to Fix Azure AD Error “AADSTS700054”: Enabling ID Token Response for Applications

When integrating applications with Microsoft Azure, administrators may encounter the error “AADSTS700054: response_type ‘id_token’ is not enabled...

MFA Push Spray Attacks: How Hackers Exploit Multi-Factor Authentication Fatigue

News

MFA Push Spray Attacks: How Hackers Exploit Multi-Factor Authentication Fatigue

Multi-factor authentication (MFA) is a foundational security control, but attackers are increasingly bypassing it using MFA Push...

ASCII Smuggling: The Invisible Threat Targeting Enterprise AI Systems

News

ASCII Smuggling: The Invisible Threat Targeting Enterprise AI Systems

Large Language Models (LLMs) are increasingly integrated into enterprise workflows, but a new attack vector—ASCII smuggling—exploits Unicode’s...

New Phishing Tactic Exploits Firebase to Steal Credentials

Threat Intelligence

New Phishing Tactic Exploits Firebase to Steal Credentials

Check Point Research has uncovered a sophisticated phishing campaign leveraging Google Firebase to host fraudulent pages mimicking...

HotPage Adware Exploits Microsoft-Signed Driver to Target Chinese Gamers

News

HotPage Adware Exploits Microsoft-Signed Driver to Target Chinese Gamers

ESET researchers have uncovered a sophisticated adware campaign called HotPage, which abuses a vulnerable Microsoft-signed driver to...

GoldenJackal APT Breaches Air-Gapped Government Systems in Sophisticated Cyberespionage Campaign

APT-News

GoldenJackal APT Breaches Air-Gapped Government Systems in Sophisticated Cyberespionage Campaign

ESET Research has uncovered a series of cyberespionage campaigns conducted by the advanced persistent threat (APT) group...

Telekopye Cybercriminals Now Target Booking.com and Airbnb Users in Sophisticated Hotel Scams

APT-News

Telekopye Cybercriminals Now Target Booking.com and Airbnb Users in Sophisticated Hotel Scams

ESET researchers have uncovered a significant evolution in the operations of the Telekopye cybercriminal network, which has...

ESET APT Activity Report Q2-Q3 2024: Key Trends in State-Sponsored Cyber Threats

APT-News

ESET APT Activity Report Q2-Q3 2024: Key Trends in State-Sponsored Cyber Threats

ESET’s latest APT Activity Report for Q2-Q3 2024 reveals significant developments in state-aligned cyber threats, with China,...

Inside RedLine Stealer’s Backend: How the Infamous MaaS Operation Worked

Malware Analysis

Inside RedLine Stealer’s Backend: How the Infamous MaaS Operation Worked

Following an international law enforcement takedown of the RedLine Stealer malware-as-a-service (MaaS) operation in October 2024, ESET...

RomCom APT Exploits Firefox and Windows Zero-Days in Stealthy Cyberattacks

APT-News

RomCom APT Exploits Firefox and Windows Zero-Days in Stealthy Cyberattacks

Summary for Security Leadership The Russia-aligned RomCom APT group (also tracked as Storm-0978 or UNC2596) has been...

ESET Threat Report H2 2024: Rising Infostealers, Deepfake Scams, and Cryptocurrency Threats

Threat Intelligence

ESET Threat Report H2 2024: Rising Infostealers, Deepfake Scams, and Cryptocurrency Threats

The second half of 2024 has seen significant shifts in the cyberthreat landscape, according to ESET’s latest...

Cybersecurity Never Takes a Holiday: Protecting Your Business 24/7

News

Cybersecurity Never Takes a Holiday: Protecting Your Business 24/7

As organizations prepare for seasonal breaks, cybercriminals are actively planning attacks. The holiday period often sees a...

CVE-2024-7344: Critical UEFI Secure Boot Bypass Vulnerability Exposed

CVE News

CVE-2024-7344: Critical UEFI Secure Boot Bypass Vulnerability Exposed

Summary for CISOs: A critical vulnerability (CVE-2024-7344) in UEFI Secure Boot allows attackers to bypass security checks...

Critical Unrestricted File Upload Vulnerability in PHPGurukul eLearning System (CVE-2025-2687)

CVE News

Critical Unrestricted File Upload Vulnerability in PHPGurukul eLearning System (CVE-2025-2687)

A critical vulnerability (CVE-2025-2687) has been discovered in PHPGurukul eLearning System 1.0, affecting its Image Handler component....

Posts pagination

Previous 1 … 6 7 8 9 10 11 12 Next

cybersecurity

Mobile App Pentesting: A Critical Need in Cybersecurity

Internal and External Penetration Testing: A Comprehensive Approach to Enterprise Security

Red Team Simulations and Physical Pentesting: Strengthening Organizational Resilience

Industrial Control System (ICS/SCADA) Security: Why Penetration Testing is Critical for Critical Infrastructure

How to Disable Fake System Notifications on macOS: A Security Professional’s Guide

Boost PowerShell Productivity with GitHub Copilot: Installation and Use Cases

How to Fix Azure AD Error “AADSTS700054”: Enabling ID Token Response for Applications

MFA Push Spray Attacks: How Hackers Exploit Multi-Factor Authentication Fatigue

ASCII Smuggling: The Invisible Threat Targeting Enterprise AI Systems

New Phishing Tactic Exploits Firebase to Steal Credentials

HotPage Adware Exploits Microsoft-Signed Driver to Target Chinese Gamers

GoldenJackal APT Breaches Air-Gapped Government Systems in Sophisticated Cyberespionage Campaign

Telekopye Cybercriminals Now Target Booking.com and Airbnb Users in Sophisticated Hotel Scams

ESET APT Activity Report Q2-Q3 2024: Key Trends in State-Sponsored Cyber Threats

Inside RedLine Stealer’s Backend: How the Infamous MaaS Operation Worked

RomCom APT Exploits Firefox and Windows Zero-Days in Stealthy Cyberattacks

ESET Threat Report H2 2024: Rising Infostealers, Deepfake Scams, and Cryptocurrency Threats

Cybersecurity Never Takes a Holiday: Protecting Your Business 24/7

CVE-2024-7344: Critical UEFI Secure Boot Bypass Vulnerability Exposed

Critical Unrestricted File Upload Vulnerability in PHPGurukul eLearning System (CVE-2025-2687)

You may have missed

Trump Administration Considers TikTok Deal Allowing Chinese Algorithm Ownership

How Intezer’s AI SOC Balances Automation with Human Expertise

How Security Platformization Improves Threat Response and Operational Efficiency

World Backup Day: Essential Strategies for Enterprise Data Protection