Multi-Factor Authentication

How Common Oversights Make Homes Prime Targets for Burglary: A Security Perspective

News

How Common Oversights Make Homes Prime Targets for Burglary: A Security Perspective

A police officer has revealed a simple yet often overlooked habit that could prevent homes from becoming...

NHS Vendor Advanced Fined £3M for Security Failures Leading to 2022 Ransomware Attack

Cyber Laws & Regulations

NHS Vendor Advanced Fined £3M for Security Failures Leading to 2022 Ransomware Attack

The UK Information Commissioner’s Office (ICO) has confirmed that NHS software supplier Advanced will pay £3.07 million...

10GB of Stolen Login Credentials Reportedly Leaked by Threat Actor

Data Breach

10GB of Stolen Login Credentials Reportedly Leaked by Threat Actor

A threat actor has allegedly obtained and leaked approximately 10GB of stolen login credentials, posing a significant...

Strengthening Defenses Against Identity-Based Cyber Attacks

News

Strengthening Defenses Against Identity-Based Cyber Attacks

Identity-based attacks remain one of the most pervasive threats in cybersecurity, leveraging stolen or compromised credentials to...

Russian APT28’s “Nearest Neighbor Attack”: Weaponizing Nearby Wi-Fi Networks for Covert Access

APT-News

Russian APT28’s “Nearest Neighbor Attack”: Weaponizing Nearby Wi-Fi Networks for Covert Access

In early 2022, Russian state-sponsored threat actor APT28 (also tracked as GruesomeLarch) deployed a novel attack vector...

0ktapus Phishing Campaign: How MFA Spoofing Compromised 130+ Organizations

APT-News

0ktapus Phishing Campaign: How MFA Spoofing Compromised 130+ Organizations

A sophisticated phishing campaign dubbed “0ktapus” successfully bypassed multi-factor authentication (MFA) protections to compromise over 130 organizations,...

MFA Push Spray Attacks: How Hackers Exploit Multi-Factor Authentication Fatigue

News

MFA Push Spray Attacks: How Hackers Exploit Multi-Factor Authentication Fatigue

Multi-factor authentication (MFA) is a foundational security control, but attackers are increasingly bypassing it using MFA Push...

Cybersecurity Never Takes a Holiday: Protecting Your Business 24/7

News

Cybersecurity Never Takes a Holiday: Protecting Your Business 24/7

As organizations prepare for seasonal breaks, cybercriminals are actively planning attacks. The holiday period often sees a...

ManageEngine ADSelfService Plus Session Hijacking Vulnerability Patched (CVE-2025-1723)

Blue-Team
CVE News

ManageEngine ADSelfService Plus Session Hijacking Vulnerability Patched (CVE-2025-1723)

Zoho Corporation has addressed a medium-severity authentication vulnerability (CVE-2025-1723) in ManageEngine ADSelfService Plus versions 6510 and earlier....

NCSC.nl Warns of Cl0p Ransomware Campaigns Targeting File Transfer Systems

Exploitation
Threat Intelligence

NCSC.nl Warns of Cl0p Ransomware Campaigns Targeting File Transfer Systems

The Nationaal Cyber Security Centrum (NCSC) of the Netherlands has issued a warning regarding a series of cyberattacks...

Preventing Ransomware Attacks: Basic Security Measures That Make a Difference

Blue-Team
Red-Team

Preventing Ransomware Attacks: Basic Security Measures That Make a Difference

Ransomware attacks continue to be a significant threat to organizations worldwide, but many of these incidents can...

Securing Remote and Mobile Devices in 2024: Essential Tips for End Users

Blue-Team
Red-Team

Securing Remote and Mobile Devices in 2024: Essential Tips for End Users

In today’s increasingly remote and mobile workforce, securing end-user devices has become a critical challenge for organizations....

Dealing with the SolarWinds Orion Compromise: Immediate Actions for Organizations

APT-News
Data Breach

Dealing with the SolarWinds Orion Compromise: Immediate Actions for Organizations

The SolarWinds Orion compromise, disclosed in December 2020, remains one of the most significant cybersecurity incidents in...

NCSC Warns of Cryptojacking: How Malicious Software is Exploiting Devices for Illicit Cryptocurrency Mining

Blue-Team
Exploitation

NCSC Warns of Cryptojacking: How Malicious Software is Exploiting Devices for Illicit Cryptocurrency Mining

The National Cyber Security Centre (NCSC) has issued a warning about the increasing use of malicious software...

CVE-2025-2609 – MagnusSolution MagnusBilling Cross-Site Scripting Vulnerability

Bug Bounties & Responsible Disclosure
Cyber Laws & Regulations
Exploitation
Malware Analysis
Red-Team
SIEM & Detection Engineering

CVE-2025-2609 – MagnusSolution MagnusBilling Cross-Site Scripting Vulnerability

A critical vulnerability, CVE-2025-2609, has been identified in MagnusSolution’s MagnusBilling software, a widely used billing and call...

Multi-Factor Authentication

How Common Oversights Make Homes Prime Targets for Burglary: A Security Perspective

NHS Vendor Advanced Fined £3M for Security Failures Leading to 2022 Ransomware Attack

10GB of Stolen Login Credentials Reportedly Leaked by Threat Actor

Strengthening Defenses Against Identity-Based Cyber Attacks

Russian APT28’s “Nearest Neighbor Attack”: Weaponizing Nearby Wi-Fi Networks for Covert Access

0ktapus Phishing Campaign: How MFA Spoofing Compromised 130+ Organizations

MFA Push Spray Attacks: How Hackers Exploit Multi-Factor Authentication Fatigue

Cybersecurity Never Takes a Holiday: Protecting Your Business 24/7

ManageEngine ADSelfService Plus Session Hijacking Vulnerability Patched (CVE-2025-1723)

NCSC.nl Warns of Cl0p Ransomware Campaigns Targeting File Transfer Systems

Preventing Ransomware Attacks: Basic Security Measures That Make a Difference

Securing Remote and Mobile Devices in 2024: Essential Tips for End Users

CVE-2025-2609 – MagnusSolution MagnusBilling Cross-Site Scripting Vulnerability

You may have missed

CVE-2025-31911: Critical SQL Injection Vulnerability in WordPress Social Share And Social Locker Plugin

Tenda AC10 Router Vulnerability (CVE-2025-3161): Remote Stack-Based Buffer Overflow Exploit

Dell PowerProtect Data Domain Vulnerability (CVE-2025-29987): Root Access Exploit Analysis

Cyberattack Targets Polish Ruling Party Ahead of Presidential Election