August 2, 2024

Enterprise Resource Planning (ERP) software forms the backbone of many businesses, aiding in tasks such as human resources, accounting, shipping, and manufacturing.

July 30, 2024

CISA has instructed Federal Civilian Executive Branch (FCEB) agencies to safeguard their servers from a VMware ESXi authentication bypass vulnerability, CVE-2024-37085, that is being exploited in ransomware attacks.

July 30, 2024

The ransomware group Black Basta has demonstrated its adaptability and resilience in the face of an ever-changing landscape.

July 30, 2024

The Information Commissioner's Office (ICO) in the UK has disclosed that the breach of the Electoral Commission in August 2021 was due to the Commission's failure to mitigate ProxyShell vulnerabilities in its on-premise Microsoft Exchange Server.

July 30, 2024

The cyber threat actor known as SideWinder has initiated a new cyber espionage campaign that is focused on ports and maritime facilities situated in the Indian Ocean and the Mediterranean Sea.

July 29, 2024

TrustedSec, a cybersecurity firm, has unveiled a new red team post-exploitation framework known as 'Specula'.

July 29, 2024

Microsoft has warned that ransomware gangs are actively exploiting a vulnerability in VMware ESXi's authentication system.

July 26, 2024

A significant number of computing systems based on Intel and ARM microprocessors, from multiple vendors, are vulnerable to a secure boot bypass issue dubbed 'PKFail'.

July 26, 2024

Acronis has alerted its customers to a critical security vulnerability in its Cyber Infrastructure that could allow attackers to bypass server authentication using default credentials.

July 26, 2024

The Internet Systems Consortium (ISC) has released updates for BIND, a DNS software suite, to rectify high-severity DoS vulnerabilities.