Latest News: Cybersecurity

A critical vulnerability dubbed "Linguistic Lumberjack" has been discovered in Fluent Bit, a widely used logging and metrics tool. This vulnerability could potentially jeopardize major cloud platforms, including Amazon AWS, Google GCP, and Microsoft Azure. According to security researchers at

In a coordinated effort, the FBI, along with international law enforcement agencies, has successfully seized BreachForums, a notorious cybercrime forum known for facilitating the sale and trade of stolen data. BreachForums has been a significant hub for cybercriminals to sell stolen personal

In a startling discovery, scammers have been found exploiting Indian government websites by planting ads that redirect users to online betting platforms. According to a report by TechCrunch, approximately forty-eight domains ending with “gov.in” have been compromised across various Indian states,

An international coalition of law enforcement agencies has turned the tables on the notorious LockBit ransomware gang by reviving and repurposing its seized dark web site. Originally taken down in an operation earlier this year, the site is now being used to tease and announce upcoming revelations

Verizon’s annual Data Breach Investigation Report (DBIR) revealed a troubling boom in vulnerability exploitation throughout 2023. Instances of vulnerabilities being exploited surged by over 3x (180%) from the previous year. It also uncovered a troubling increase in the use of ransomware and

A critical bug in Palo Alto Networks' PAN-OS software, specifically affecting its GlobalProtect feature, has set the cybersecurity world on alert. Identified as CVE-2024-3400, this zero-day flaw was first spotted by Volexity on April 10, and it can be used by attackers to execute arbitrary code

Roku has confirmed that a credential-stuffing attack has compromised approximately 576,000 user accounts. This attack follows a similar incident that occurred last month, which affected over 15,000 accounts. The latest round of malicious activity was detected due to Roku’s close monitoring of

Proofpoint researchers have unveiled a sophisticated phishing campaign orchestrated by the notorious hacking group TA547, which uses a malicious PowerShell script that seems to be AI-written. The campaign, which specifically targeted German organizations, attempted to deliver Rhadamanthys malware,

The video game publisher Activision is currently investigating a sophisticated malware campaign designed to steal login credentials from gamers, particularly affecting players of its flagship title, Call of Duty. The malware, which also targets cryptocurrency wallets, has been implicated in the

A recent report by HUMAN's Satori team uncovered 28 free VPN applications available on Google Play that are covertly transforming devices into residential proxies. In other words, it allows malicious threat actors to route third-party traffic through user’s devices without their knowledge or