Vulnerability Management

Murky Panda APT Exploits Cloud Trust Relationships in Downstream Attacks

APT-News

Murky Panda APT Exploits Cloud Trust Relationships in Downstream Attacks

A Chinese state-sponsored hacking group tracked as Murky Panda, also known as Silk Typhoon, is systematically exploiting...

OpenAI’s GPT-5 Launch Crisis and the Strategic Pivot to GPT-6

News

OpenAI’s GPT-5 Launch Crisis and the Strategic Pivot to GPT-6

OpenAI CEO Sam Altman has publicly confirmed that development of GPT-6 is already underway, signaling a rapid...

Apple’s 2025 Zero-Day Response: Sophisticated Attacks and Unprecedented Backporting

CVE News

Apple’s 2025 Zero-Day Response: Sophisticated Attacks and Unprecedented Backporting

Apple has released emergency security updates to address a zero-day vulnerability actively exploited in what the company...

Password Manager Browser Extensions Vulnerable to DOM-Based Clickjacking

CVE News

Password Manager Browser Extensions Vulnerable to DOM-Based Clickjacking

A newly disclosed class of vulnerabilities in browser extensions for major password managers exposes tens of millions...

Microsoft 365 and Copilot Outage: A Symptom of Systemic Cloud Reliability Challenges

News

Microsoft 365 and Copilot Outage: A Symptom of Systemic Cloud Reliability Challenges

Microsoft is currently investigating a significant service disruption impacting its Office.com portal and Copilot AI assistant, primarily...

Metropolitan Police Facial Recognition Deployment Faces Legal and Technical Scrutiny

Cyber Laws & Regulations

Metropolitan Police Facial Recognition Deployment Faces Legal and Technical Scrutiny

The Equality and Human Rights Commission (EHRC) has formally declared its position that the Metropolitan Police Service’s...

Microsoft Teams Connectivity Outage: Analysis of a Systemic Error and Enterprise Impact

News

Microsoft Teams Connectivity Outage: Analysis of a Systemic Error and Enterprise Impact

Microsoft is currently addressing a significant known issue causing widespread “couldn’t connect” errors for users attempting to...

Germany’s Legal Challenge to Ad Blockers: Technical and Privacy Implications

Cyber Laws & Regulations

Germany’s Legal Challenge to Ad Blockers: Technical and Privacy Implications

Germany’s Federal Supreme Court (BGH) has reignited a contentious legal debate by reconsidering whether browser-based ad blockers...

Canada’s House of Commons Cyberattack: Technical Analysis and Response

APT-News

Canada’s House of Commons Cyberattack: Technical Analysis and Response

The House of Commons of Canada is investigating a significant data breach following a cyberattack on August...

Microsoft August 2025 Patch Tuesday: Zero-Day in Windows Kerberos Among 107 Flaws

CVE News

Microsoft August 2025 Patch Tuesday: Zero-Day in Windows Kerberos Among 107 Flaws

Microsoft’s August 2025 Patch Tuesday addresses 107 security vulnerabilities, including one actively exploited zero-day in Windows Kerberos....

Over 29,000 Unpatched Exchange Servers at Risk of Domain Compromise via CVE-2025-53786

CVE News

Over 29,000 Unpatched Exchange Servers at Risk of Domain Compromise via CVE-2025-53786

More than 29,000 Microsoft Exchange servers remain vulnerable to CVE-2025-53786, a high-severity flaw (CVSS 8.0) that enables...

Microsoft 365 to Block Insecure FPRPC Protocol by Default: Security Implications and Configuration Guide

Blue-Team

Microsoft 365 to Block Insecure FPRPC Protocol by Default: Security Implications and Configuration Guide

Microsoft has announced a significant security update affecting Microsoft 365 applications on Windows platforms. Starting late August...

Windows 11 22H2 End of Support: Key Dates and Security Implications

News

Windows 11 22H2 End of Support: Key Dates and Security Implications

Microsoft has officially announced the end of servicing for Windows 11 22H2, with critical deadlines approaching for...

Autoswagger: Open-Source Tool Detects API Authorization Flaws Before Attackers Do

Security Tools & Research

Autoswagger: Open-Source Tool Detects API Authorization Flaws Before Attackers Do

Exposed API documentation has become a prime target for threat actors, providing a clear blueprint of system...

Scattered Spider’s VMware ESXi Attacks: Tactics, Impact, and Defense Strategies

APT-News

Scattered Spider’s VMware ESXi Attacks: Tactics, Impact, and Defense Strategies

The cybercrime group Scattered Spider has intensified attacks targeting VMware ESXi hypervisors across U.S. retail, airline, transportation,...

Microsoft 365 Admin Center Outage: Causes, Impact, and Response

News

Microsoft 365 Admin Center Outage: Causes, Impact, and Response

Microsoft is currently investigating an outage preventing administrators with business or enterprise subscriptions from accessing the Microsoft...

AI Voice Fraud: Sam Altman’s Warning and the Technical Reality

Threat Intelligence

AI Voice Fraud: Sam Altman’s Warning and the Technical Reality

OpenAI CEO Sam Altman’s recent warnings about AI-generated voice fraud highlight a growing threat to financial systems...

Arch Linux Removes Malicious AUR Packages Distributing Chaos RAT

Malware Analysis

Arch Linux Removes Malicious AUR Packages Distributing Chaos RAT

Arch Linux has removed three compromised packages from its Arch User Repository (AUR) after discovering they contained...

Russian Alcohol Retailer WineLab Shuts Down Stores Following Ransomware Attack

APT-News

Russian Alcohol Retailer WineLab Shuts Down Stores Following Ransomware Attack

WineLab, the retail subsidiary of Russia’s largest alcohol producer Novabev Group, has temporarily closed its 2,000+ stores...

WeTransfer Clarifies AI Data Usage Policy Following User Backlash

News

WeTransfer Clarifies AI Data Usage Policy Following User Backlash

WeTransfer, the popular file-sharing service, has clarified that user-uploaded files are not used to train artificial intelligence...

Posts pagination

Previous 1 2 3 4 5 6 7 8 … 18 Next

Vulnerability Management

OpenAI’s GPT-5 Launch Crisis and the Strategic Pivot to GPT-6

Apple’s 2025 Zero-Day Response: Sophisticated Attacks and Unprecedented Backporting

Password Manager Browser Extensions Vulnerable to DOM-Based Clickjacking

Metropolitan Police Facial Recognition Deployment Faces Legal and Technical Scrutiny

Germany’s Legal Challenge to Ad Blockers: Technical and Privacy Implications

Canada’s House of Commons Cyberattack: Technical Analysis and Response

Microsoft August 2025 Patch Tuesday: Zero-Day in Windows Kerberos Among 107 Flaws

Over 29,000 Unpatched Exchange Servers at Risk of Domain Compromise via CVE-2025-53786

Microsoft 365 to Block Insecure FPRPC Protocol by Default: Security Implications and Configuration Guide

Windows 11 22H2 End of Support: Key Dates and Security Implications

Autoswagger: Open-Source Tool Detects API Authorization Flaws Before Attackers Do

Scattered Spider’s VMware ESXi Attacks: Tactics, Impact, and Defense Strategies

AI Voice Fraud: Sam Altman’s Warning and the Technical Reality

Arch Linux Removes Malicious AUR Packages Distributing Chaos RAT

Russian Alcohol Retailer WineLab Shuts Down Stores Following Ransomware Attack

WeTransfer Clarifies AI Data Usage Policy Following User Backlash

You may have missed

Dark Web Data Exposure: Technical Analysis and Response for Security Professionals

Misinformation as a Threat Vector: Lessons from the Brown University Shooting Investigation

Google’s Gmail Address Change: A New Vector for Account Takeover and Social Engineering

The AI Investment Surge in India: A Strategic Analysis for Security Leaders