October 16, 2024

ScarCruft, a North Korean threat actor, has been associated with exploiting a zero-day vulnerability in Windows to infect devices with RokRAT malware.

October 16, 2024

The Sidewinder APT group, known to be sponsored by India, has broadened its attack scope, targeting multiple entities across Asia, Africa, the Middle East, and Europe.

October 16, 2024

GitHub has rectified a critical vulnerability in its Enterprise Server that was capable of providing unauthorized access to the affected instances.

October 15, 2024

China's National Computer Virus Emergency Response Center (CVERC) has accused the U.S. and its allies of inventing the Volt Typhoon cyber threat to hide their own cyber espionage activities.

October 14, 2024

A trio of zero-day vulnerabilities in Ivanti's Cloud Service Appliance (CSA) has been leveraged by a highly skilled cyberattacker to breach a target network and carry out malicious activities.

October 14, 2024

The U.S. Cybersecurity and Infrastructure Security Agency (CISA) has recently included new vulnerabilities in its Known Exploited Vulnerabilities (KEV) catalog.

October 13, 2024

Iran's state-sponsored hacking group, APT34, also known as OilRig, has been ramping up its cyberattacks against government and critical infrastructure entities in the United Arab Emirates and the Gulf region.

October 13, 2024

APT29, a cyber espionage group associated with Russia, is actively exploiting vulnerabilities in Zimbra and JetBrains TeamCity servers.

October 11, 2024

The U.S. Cybersecurity and Infrastructure Security Agency (CISA) has observed unidentified threat actors using unencrypted persistent cookies managed by the F5 BIG-IP Local Traffic Manager (LTM) module for network reconnaissance.

October 10, 2024

Ransomware groups are taking advantage of a critical security vulnerability that enables them to execute remote code (RCE) on susceptible Veeam Backup & Replication (VBR) servers.