Latest News: Cybersecurity

A new phishing toolkit created by security researcher mr.d0x enables cybercriminals to exploit Progressive Web Apps (PWAs) to steal login credentials, posing a significant threat to internet users. According to a report from BleepingComputer, the toolkit allows for the creation of PWAs that

The vpnMentor research team is reporting about a recent incident involving the popular Stable Diffusion user interface, ComfyUI, that has sent shockwaves through the AI community, exposing the potential dangers lurking behind seemingly innocuous tools. While ComfyUI itself remains secure, a

Researchers have discovered that malware can exploit Microsoft's new Windows Recall feature to steal sensitive user data. Windows Recall, which is part of Microsoft's new Copilot+ PCs, captures regular screenshots to help users retrieve previously seen content through natural language queries.

A consumer-grade spyware app, pcTattletale, has been discovered to be running on check-in systems at three Wyndham hotels in the United States, according to a TechCrunch report. The spyware captures screenshots of the hotel booking systems, exposing guest names, reservation details, and partial

A critical vulnerability dubbed "Linguistic Lumberjack" has been discovered in Fluent Bit, a widely used logging and metrics tool. This vulnerability could potentially jeopardize major cloud platforms, including Amazon AWS, Google GCP, and Microsoft Azure. According to security researchers at

In a coordinated effort, the FBI, along with international law enforcement agencies, has successfully seized BreachForums, a notorious cybercrime forum known for facilitating the sale and trade of stolen data. BreachForums has been a significant hub for cybercriminals to sell stolen personal

In a startling discovery, scammers have been found exploiting Indian government websites by planting ads that redirect users to online betting platforms. According to a report by TechCrunch, approximately forty-eight domains ending with “gov.in” have been compromised across various Indian states,

An international coalition of law enforcement agencies has turned the tables on the notorious LockBit ransomware gang by reviving and repurposing its seized dark web site. Originally taken down in an operation earlier this year, the site is now being used to tease and announce upcoming revelations

Verizon’s annual Data Breach Investigation Report (DBIR) revealed a troubling boom in vulnerability exploitation throughout 2023. Instances of vulnerabilities being exploited surged by over 3x (180%) from the previous year. It also uncovered a troubling increase in the use of ransomware and

A critical bug in Palo Alto Networks' PAN-OS software, specifically affecting its GlobalProtect feature, has set the cybersecurity world on alert. Identified as CVE-2024-3400, this zero-day flaw was first spotted by Volexity on April 10, and it can be used by attackers to execute arbitrary code