August 5, 2024

Google has patched a critical zero-day vulnerability, CVE-2024-36971, in the Android kernel that was being exploited in targeted attacks.

August 5, 2024

A significant security bypass vulnerability, identified as CVE-2024-6242, has been revealed in Rockwell Automation ControlLogix 1756 devices.

August 4, 2024

Volexity, a cybersecurity firm, has revealed that a Chinese APT group known as StormBamboo (also referred to as Evasive Panda, Daggerfly, and StormCloud) has successfully breached an undisclosed ISP.

August 2, 2024

APT41, a state-sponsored Chinese threat actor, has reportedly infiltrated a Taiwanese research institute affiliated with the government.

August 2, 2024

Enterprise Resource Planning (ERP) software forms the backbone of many businesses, aiding in tasks such as human resources, accounting, shipping, and manufacturing.

July 30, 2024

CISA has instructed Federal Civilian Executive Branch (FCEB) agencies to safeguard their servers from a VMware ESXi authentication bypass vulnerability, CVE-2024-37085, that is being exploited in ransomware attacks.

July 30, 2024

The ransomware group Black Basta has demonstrated its adaptability and resilience in the face of an ever-changing landscape.

July 30, 2024

The Information Commissioner's Office (ICO) in the UK has disclosed that the breach of the Electoral Commission in August 2021 was due to the Commission's failure to mitigate ProxyShell vulnerabilities in its on-premise Microsoft Exchange Server.

July 30, 2024

The cyber threat actor known as SideWinder has initiated a new cyber espionage campaign that is focused on ports and maritime facilities situated in the Indian Ocean and the Mediterranean Sea.

July 29, 2024

TrustedSec, a cybersecurity firm, has unveiled a new red team post-exploitation framework known as 'Specula'.