January 6, 2025

Moxa, a company specializing in industrial networking and communication solutions, has alerted its customers about two significant security vulnerabilities affecting several of its device models.

January 6, 2025

The Eagerbee malware framework is seeing new variants being used against government entities and ISPs in the Middle East.

January 3, 2025

The vulnerability CVE-2024-49113, also known as LDAPNightmare, is a Windows Lightweight Directory Access Protocol (LDAP) Denial of Service flaw that was identified by Yuki Chen.

December 30, 2024

A cyberattack on the US Treasury Department has been traced back to Chinese state-sponsored threat actors.

December 30, 2024

A post-authentication remote command injection vulnerability, labeled as CVE-2024-12856, in Four-Faith routers is being exploited by cybercriminals to establish reverse shells, a channel that allows them to communicate with the compromised systems.

December 29, 2024

Recent cyberattacks have seen two botnets, known as 'Ficora' and 'Capsaicin', exploiting outdated D-Link routers.

December 27, 2024

Palo Alto Networks has alerted its users about hackers taking advantage of a denial of service (DoS) vulnerability, identified as CVE-2024-3393, to disable its firewall protections.

December 27, 2024

FortiGuard Labs researchers have noticed a sharp increase in activity associated with two botnets, FICORA and CAPSAICIN, both variants of Mirai and Kaiten respectively.

December 27, 2024

Cloud Atlas, also known as Clean Ursa, Inception, Oxygen, and Red October, has been implementing a previously unknown malware, VBCloud, in its cyber attack campaigns.

December 23, 2024

In an unexpected move, Adobe has rolled out security updates to address a critical vulnerability in its ColdFusion software, identified as CVE-2024-53961.