July 16, 2024

CISA has alerted about the active exploitation of a critical GeoServer GeoTools remote code execution vulnerability, identified as CVE-2024-36401.

July 16, 2024

The Void Banshee advanced persistent threat (APT) group has been exploiting a yet-to-be-patched Microsoft zero-day vulnerability, CVE-2024-38112, in a spear-phishing campaign to propagate the Atlantida Stealer malware.

July 15, 2024

Cybersecurity experts have unearthed a new version of the ransomware strain known as HardBit.

July 13, 2024

Cloudflare's 2024 Application Security report reveals an alarming trend: cybercriminals are weaponizing publicly available proof-of-concept (PoC) exploits in as little as 22 minutes after they're released.

July 12, 2024

Censys, a cybersecurity company, has issued a warning that a severe vulnerability exists in over 1.5 million instances of Exim mail transfer agent (MTA).

July 11, 2024

The Akira ransomware group, suspected to be Storm-1567 (also known as Punk Spider and Gold Sahara), has demonstrated the ability to exfiltrate data from victims in just over two hours.

July 11, 2024

Crystalray, a newly discovered cyber threat actor, is leveraging a range of open source software (OSS) tools to boost its operations focused on stealing credentials and cryptomining.

July 11, 2024

A security flaw in PHP, known as CVE-2024-4577, is being exploited by various threat actors to spread remote access trojans, cryptocurrency miners, and initiate distributed denial-of-service (DDoS) botnets.

July 11, 2024

VMware, a company specializing in virtualization, has addressed a critical SQL-injection vulnerability in its Aria Automation solution.

July 10, 2024

GitLab has warned of a critical vulnerability in its Community and Enterprise editions, which allows attackers to run pipeline jobs as any other user.