December 30, 2024

A cyberattack on the US Treasury Department has been traced back to Chinese state-sponsored threat actors.

December 30, 2024

A post-authentication remote command injection vulnerability, labeled as CVE-2024-12856, in Four-Faith routers is being exploited by cybercriminals to establish reverse shells, a channel that allows them to communicate with the compromised systems.

December 29, 2024

Recent cyberattacks have seen two botnets, known as 'Ficora' and 'Capsaicin', exploiting outdated D-Link routers.

December 27, 2024

Palo Alto Networks has alerted its users about hackers taking advantage of a denial of service (DoS) vulnerability, identified as CVE-2024-3393, to disable its firewall protections.

December 27, 2024

FortiGuard Labs researchers have noticed a sharp increase in activity associated with two botnets, FICORA and CAPSAICIN, both variants of Mirai and Kaiten respectively.

December 27, 2024

Cloud Atlas, also known as Clean Ursa, Inception, Oxygen, and Red October, has been implementing a previously unknown malware, VBCloud, in its cyber attack campaigns.

December 23, 2024

In an unexpected move, Adobe has rolled out security updates to address a critical vulnerability in its ColdFusion software, identified as CVE-2024-53961.

December 23, 2024

WhatsApp has emerged victorious in a lawsuit against NSO Group, an Israeli surveillance firm, in a U.S. court.

December 23, 2024

Apache has launched a crucial security patch to address a severe vulnerability in its Tomcat web server.

December 20, 2024

Sophos has patched three vulnerabilities in its Firewall product that could potentially allow unauthorized remote threat actors to carry out SQL injection, execute remote code, and gain privileged SSH access to devices.