January 16, 2024

Google has patched the first Chrome zero-day vulnerability of 2024 that has been actively exploited.

January 16, 2024

Google has patched the first Chrome zero-day vulnerability of 2024 that has been actively exploited.

January 16, 2024

The FBI and CISA issued a warning regarding threat actors utilizing the Androxgh0st malware to construct a botnet focusing on cloud credential theft, and using the stolen credentials to deliver further malicious payloads.

January 16, 2024

VMware has recently addressed a serious security flaw in its Aria Automation platform, which was previously known as vRealize Automation.

January 16, 2024

Atlassian has alerted users to a critical remote code execution (RCE) vulnerability affecting older versions of Confluence Data Center and Confluence Server, including out-of-support releases.

January 16, 2024

Volexity, a threat intelligence company, has discovered two zero-day vulnerabilities in Ivanti's Connect Secure VPN and Policy Secure network access control (NAC) appliances, which have been under mass exploitation since December.

January 15, 2024

Two unpatched vulnerabilities, tracked as CVE-2022-22274 and CVE-2023-0656, have been discovered in SonicWall next-generation firewall (NGFW) series 6 and 7 devices, potentially exposing over 178,000 of these firewalls online to hacking attempts.

January 15, 2024

Trend Micro researchers have discovered a malware campaign that leverages the CVE-2023-36025 vulnerability to deploy a new strain of malware called Phemedrone Stealer.

January 15, 2024

The Balada Injector malware has infected more than 7,100 WordPress sites by exploiting a vulnerability in a plugin called Popup Builder.

January 14, 2024

The cyber attacks that targeted Denmark's energy sector in 2023 were previously linked to the Russia-associated Advanced Persistent Threat (APT) group, Sandworm.