August 29, 2024

U.S. cybersecurity and intelligence agencies have issued a warning about the activities of an Iranian hacking group known as Pioneer Kitten, also referred to as Fox Kitten, Lemon Sandstorm, Parisite, and UNC757.

August 28, 2024

A zero-day vulnerability in AVTECH IP cameras is being exploited as part of a Mirai botnet campaign, putting industrial control systems and critical infrastructure at risk.

August 28, 2024

Threat actors are continuing to exploit a critical remote code execution (RCE) bug in Atlassian Confluence that was discovered in January.

August 28, 2024

Pioneer Kitten, an Iran-based hacking group, is reportedly infiltrating organizations across multiple sectors in the United States, including defense, education, finance, and healthcare.

August 28, 2024

Fortra has issued a warning about a severe hardcoded password vulnerability in FileCatalyst Workflow, which could potentially allow unauthorized attackers to infiltrate an internal database, pilfer data, and acquire administrative privileges.

August 28, 2024

APT-C-60, a cyber espionage group with ties to South Korea, has been exploiting a critical remote code execution flaw in Kingsoft WPS Office, leading to the deployment of a uniquely designed backdoor called SpyGlace.

August 28, 2024

A large number of open-source large language model (LLM) builder servers and vector databases are unintentionally exposing sensitive data on the internet.

August 28, 2024

The U.S. Cybersecurity and Infrastructure Security Agency (CISA) has added an Apache OFBiz bug, CVE-2024-38856, to its Known Exploited Vulnerabilities catalog.

August 27, 2024

A critical zero-click vulnerability in Windows TCP/IP, tracked as CVE-2024-38063, has been exposed to the public through a proof-of-concept (PoC) exploit.

August 27, 2024

SafeBreach security researcher Alon Leviev has developed a tool, 'Windows Downdate', that is capable of executing downgrade attacks on up-to-date Windows 10, Windows 11, and Windows Server systems.