February 5, 2024

The Mispadu banking Trojan, first observed in 2019, has been updated to exploit a previously patched Windows SmartScreen security bypass flaw, targeting users in Mexico.

February 3, 2024

Mastodon, a decentralized social networking platform, has patched a critical vulnerability, identified as CVE-2024-23832, that could allow attackers to impersonate and seize control of any user's account.

February 2, 2024

From April 2022 to November 2023, Russian state-sponsored hackers, identified as APT28, have been conducting NTLM v2 hash relay attacks on high-value organizations worldwide.

February 1, 2024

For the first time in its history, the Cybersecurity and Infrastructure Security Agency (CISA) has mandated federal agencies to disconnect all instances of Ivanti Connect Secure and Ivanti Policy Secure products within a 48-hour window.

February 1, 2024

A new variant of the advanced FritzFrog botnet has been exploiting the Log4Shell vulnerability to infiltrate internal network assets that organizations often neglect to patch.

February 1, 2024

Apple has introduced the first security update for its recently launched Vision Pro virtual reality headset.

January 31, 2024

A set of four vulnerabilities in container engine components, known as 'Leaky Vessels,' has been revealed by researchers.

January 31, 2024

A proof-of-concept exploit for a local privilege elevation flaw that affects a minimum of seven Android original equipment manufacturers (OEMs) has been made publicly accessible on GitHub.

January 31, 2024

The Cybersecurity and Infrastructure Security Agency (CISA) has warned of an actively exploited kernel security flaw affecting a range of Apple devices.

January 31, 2024

Qualys researchers have discovered a critical vulnerability in Linux’s GNU C Library (glibc), which could potentially enable attackers to gain full root access to a system.