July 24, 2024

Cybercriminals are exploiting a vulnerability in Microsoft Defender SmartScreen, CVE-2024-21412, in an ongoing global infostealing campaign.

July 24, 2024

Chinese APT group Daggerfly, also known as Evasive Panda or Bronze Highland, has updated its malware toolkit with a new malware family and an enhanced version of the Macma macOS backdoor.

July 24, 2024

The U.S. Cybersecurity and Infrastructure Security Agency (CISA) has expanded its Known Exploited Vulnerabilities (KEV) list with the addition of two more security flaws that have evidence of active exploitation.

July 23, 2024

The Ukrainian Computer Emergency Response Team (CERT-UA) has issued a warning regarding a spear-phishing campaign aimed at a Ukrainian scientific research institution.

July 21, 2024

The U.S. Cybersecurity and Infrastructure Security Agency (CISA) has added new vulnerabilities to its Known Exploited Vulnerabilities (KEV) catalog.

July 19, 2024

Cisco has addressed a critical security flaw, identified as CVE-2024-20401, in its Security Email Gateway (SEG).

July 18, 2024

Cisco has issued a fix for a high-risk vulnerability, designated as CVE-2024-20419, that allows threat actors to modify any user or admin password.

July 18, 2024

SolarWinds recently addressed eight critical vulnerabilities in its Access Rights Manager (ARM) software.

July 18, 2024

A new cyber threat actor, known as TAG-100, has been discovered using open-source tools as part of a suspected global cyber espionage campaign.

July 17, 2024

Cisco has addressed a critical vulnerability in its Cisco Smart Software Manager On-Prem (SSM On-Prem) license servers that allowed attackers to alter the passwords of any user, including those of administrators.