October 29, 2024

Researchers have discovered more than thirty-six security vulnerabilities in several open-source artificial intelligence (AI) and machine learning (ML) models.

October 28, 2024

According to a recent report by Mozilla, OpenAI's advanced language learning model (LLM), GPT-4o, can be manipulated by bad actors using a hex code-based prompt-injection technique.

October 27, 2024

Ransomware groups Fog and Akira are reportedly exploiting SonicWall VPNs to infiltrate corporate networks.

October 26, 2024

Cisco has rolled out new security features to its Adaptive Security Appliance (ASA) and Firepower Threat Defense (FTD) to combat brute-force and password spray attacks.

October 24, 2024

A recently disclosed vulnerability in Fortinet's FortiManager, known as 'FortiJump' and identified as CVE-2024-47575, has been exploited in zero-day attacks since June 2024, impacting over 50 servers.

October 24, 2024

The 'Prometei' botnet, a Russian-language malware, is still active and spreading a cryptojacker and Web shell on machines across several continents.

October 24, 2024

The U.S. Cybersecurity and Infrastructure Security Agency (CISA) has updated its Known Exploited Vulnerabilities (KEV) catalog to include a missing authentication vulnerability in Fortinet FortiManager, identified as CVE-2024-47575.

October 23, 2024

The Lazarus Group, a cybercrime unit linked to North Korea, is reportedly using a sophisticated scheme to defraud cryptocurrency investors worldwide.

October 23, 2024

The U.S. Cybersecurity and Infrastructure Security Agency (CISA) has added a high-severity flaw in Microsoft SharePoint to its Known Exploited Vulnerabilities (KEV) catalog, following evidence of active exploitation.

October 22, 2024

A vulnerability has been identified in Open Policy Agent (OPA) for Windows that could result in the leakage of authentication hashes.