cybersecurity

Public Exploit Details Emerge for Critical Cisco IOS XE Vulnerability (CVE-2025-20188)

CVE News

Public Exploit Details Emerge for Critical Cisco IOS XE Vulnerability (CVE-2025-20188)

Technical details surrounding CVE-2025-20188, a maximum-severity arbitrary file upload vulnerability affecting Cisco IOS XE Wireless LAN Controller...

Germany Identifies Conti and TrickBot Leader: A Deep Dive into the Cybercrime Operation

APT-News

Germany Identifies Conti and TrickBot Leader: A Deep Dive into the Cybercrime Operation

The Federal Criminal Police Office of Germany (BKA) has publicly identified Vitaly Nikolaevich Kovalev, a 36-year-old Russian...

The Legal and Technical Implications of Forcing Google to Share Search Data

Cyber Laws & Regulations

The Legal and Technical Implications of Forcing Google to Share Search Data

The ongoing antitrust case against Google has reached a critical juncture, with Judge Amit Mehta expected to...

Microsoft Authenticator Password Autofill Deprecation: Migration and Security Implications

News

Microsoft Authenticator Password Autofill Deprecation: Migration and Security Implications

Microsoft has begun notifying users of its Authenticator app that the password autofill feature will be discontinued...

ConnectWise ScreenConnect Breach: Nation-State Attack Analysis and Mitigation

APT-News

ConnectWise ScreenConnect Breach: Nation-State Attack Analysis and Mitigation

ConnectWise, a leading IT management software provider, confirmed a cyberattack targeting its ScreenConnect remote access tool in...

Google Apps Script Exploited in Sophisticated Phishing Campaigns

Threat Intelligence

Google Apps Script Exploited in Sophisticated Phishing Campaigns

Threat actors are increasingly abusing Google Apps Script to host phishing pages, leveraging the platform’s trusted reputation...

Apple Safari Fullscreen BitM Attack: Exploitation and Mitigation

CVE News

Apple Safari Fullscreen BitM Attack: Exploitation and Mitigation

A newly identified weakness in Apple’s Safari browser enables attackers to execute fullscreen browser-in-the-middle (BitM) attacks, potentially...

US Sanctions Philippines-Based Firm Behind $200M Cyber Scam Infrastructure

Threat Intelligence

US Sanctions Philippines-Based Firm Behind $200M Cyber Scam Infrastructure

The U.S. Treasury Department has imposed sanctions on Funnull Technology, a Philippines-based company accused of facilitating cyber...

Attack Surface Mapping: How Adversaries Outpace Defenders and How to Respond

Blue-Team

Attack Surface Mapping: How Adversaries Outpace Defenders and How to Respond

Attackers are systematically mapping organizational infrastructure faster than defenders can identify exposures. According to Censys, 80% of...

Victoria’s Secret Cybersecurity Incident: Analysis and Implications for Enterprise Security

Data Breach

Victoria’s Secret Cybersecurity Incident: Analysis and Implications for Enterprise Security

Victoria’s Secret, the global lingerie retailer, took its U.S. website offline on May 28, 2025, following a...

U.S. Strategic Bitcoin Reserve: Policy, Risks, and Security Implications

Threat Intelligence

U.S. Strategic Bitcoin Reserve: Policy, Risks, and Security Implications

The U.S. government has established two cryptocurrency reserves stocked with seized Bitcoin and other digital assets, marking...

PumaBot: A New Go-Based Botnet Targeting IoT Devices via SSH Brute-Forcing

Red-Team

PumaBot: A New Go-Based Botnet Targeting IoT Devices via SSH Brute-Forcing

A newly discovered botnet named **PumaBot** is actively targeting Linux-based IoT devices by brute-forcing SSH credentials to...

ASUS Router Botnet “AyySSHush” Deploys Persistent SSH Backdoors: Technical Analysis

Threat Intelligence

ASUS Router Botnet “AyySSHush” Deploys Persistent SSH Backdoors: Technical Analysis

Over 9,000 ASUS routers have been compromised by the “AyySSHush” botnet, which installs persistent SSH backdoors to...

DragonForce Ransomware Exploits SimpleHelp RMM in MSP Supply Chain Attacks

APT-News

DragonForce Ransomware Exploits SimpleHelp RMM in MSP Supply Chain Attacks

The DragonForce ransomware group has compromised over 120 managed service providers (MSPs) by exploiting vulnerabilities in SimpleHelp’s...

Texas Mandates Age Verification for App Store Downloads: Implications for Tech and Security

Cyber Laws & Regulations

Texas Mandates Age Verification for App Store Downloads: Implications for Tech and Security

Texas has enacted a new law requiring Apple and Google to implement age verification for app downloads,...

Prioritizing Exploitable Vulnerabilities: Cutting Through the Noise of CVSS Scores

Blue-Team

Prioritizing Exploitable Vulnerabilities: Cutting Through the Noise of CVSS Scores

Security teams are inundated with vulnerability alerts daily, but not every “critical” CVE warrants an emergency response....

Russian Void Blizzard APT Linked to Dutch Police Breach via Exchange Server Exploit

APT-News

Russian Void Blizzard APT Linked to Dutch Police Breach via Exchange Server Exploit

A newly identified Russian cyberespionage group, tracked as Void Blizzard, has been connected to a September 2024...

Emergency Update Resolves Hyper-V VM Freezes on Windows Server 2022

News

Emergency Update Resolves Hyper-V VM Freezes on Windows Server 2022

Microsoft has released an out-of-band (OOB) update to address a critical issue causing Hyper-V virtual machines (VMs)...

Adidas Data Breach: Third-Party Provider Hack Exposes Customer Contact Data

Data Breach

Adidas Data Breach: Third-Party Provider Hack Exposes Customer Contact Data

German sportswear giant Adidas has confirmed a data breach resulting from a cyberattack on a third-party customer...

Glitch Shutdown: Implications for App Hosting and Security

News

Glitch Shutdown: Implications for App Hosting and Security

Glitch, the popular platform for hosting web applications and collaborative coding, will discontinue its app hosting and...

Posts pagination

Previous 1 … 6 7 8 9 10 11 12 … 42 Next

cybersecurity

Public Exploit Details Emerge for Critical Cisco IOS XE Vulnerability (CVE-2025-20188)

Germany Identifies Conti and TrickBot Leader: A Deep Dive into the Cybercrime Operation

Microsoft Authenticator Password Autofill Deprecation: Migration and Security Implications

ConnectWise ScreenConnect Breach: Nation-State Attack Analysis and Mitigation

Google Apps Script Exploited in Sophisticated Phishing Campaigns

Apple Safari Fullscreen BitM Attack: Exploitation and Mitigation

US Sanctions Philippines-Based Firm Behind $200M Cyber Scam Infrastructure

Attack Surface Mapping: How Adversaries Outpace Defenders and How to Respond

Victoria’s Secret Cybersecurity Incident: Analysis and Implications for Enterprise Security

U.S. Strategic Bitcoin Reserve: Policy, Risks, and Security Implications

PumaBot: A New Go-Based Botnet Targeting IoT Devices via SSH Brute-Forcing

ASUS Router Botnet “AyySSHush” Deploys Persistent SSH Backdoors: Technical Analysis

DragonForce Ransomware Exploits SimpleHelp RMM in MSP Supply Chain Attacks

Texas Mandates Age Verification for App Store Downloads: Implications for Tech and Security

Prioritizing Exploitable Vulnerabilities: Cutting Through the Noise of CVSS Scores

Russian Void Blizzard APT Linked to Dutch Police Breach via Exchange Server Exploit

Adidas Data Breach: Third-Party Provider Hack Exposes Customer Contact Data

You may have missed

U.S. Sanctions Grinex Crypto-Exchange as Garantex Successor in Crackdown on Ransomware Money Laundering

Meta’s Erroneous Instagram Account Bans: Technical Implications for Security Teams

Supreme Court’s Decision on Mississippi Social Media Age Verification Law: Technical and Legal Implications

Microsoft Resolves Critical Windows Server Cluster and VM Stability Issues