May 23, 2024

The Chinese cyber espionage group known as Sharp Panda has broadened its targeting to include governmental organizations in Africa and the Caribbean, according to a report by the Israeli cybersecurity firm Check Point.

May 22, 2024

A new cryptojacking campaign called REF4578, which uses a primary payload known as GHOSTENGINE, has been discovered.

May 22, 2024

An unidentified cyber threat actor has been exploiting known security vulnerabilities in Microsoft Exchange Server to install a keylogger malware.

May 21, 2024

Veeam has alerted its customers to patch a critical security flaw that enables unauthorized attackers to sign into any account via the Veeam Backup Enterprise Manager (VBEM).

May 21, 2024

GitHub has implemented fixes to address a severe vulnerability in the GitHub Enterprise Server (GHES) that could potentially enable an attacker to bypass authentication safeguards.

May 20, 2024

A severe security flaw has been discovered in Fluent Bit, a popular logging and metrics solution used across various operating systems including Windows, Linux, and macOS.

May 20, 2024

A thorough security inspection of QNAP QTS, the operating system for QNAP's NAS devices, has revealed fifteen different vulnerabilities, eleven of which are still unresolved.

May 20, 2024

A proof-of-concept (PoC) exploit for a recently resolved zero-day vulnerability in Google Chrome, known as CVE-2024-4947, has been made public.

May 17, 2024

Microsoft has yet to rectify seven distinct Windows privilege escalation vulnerabilities, which were made public at Pwn2Own 2024 in Vancouver two months ago.

May 17, 2024

The U.S. Cybersecurity and Infrastructure Security Agency (CISA) has incorporated two new vulnerabilities into its Known Exploited Vulnerabilities (KEV) catalog.