The U.S. Cybersecurity and Infrastructure Security Agency (CISA) has added a security flaw impacting the Microsoft Sharepoint Server to its Known Exploited Vulnerabilities (KEV) catalog based on evidence of active exploitation in… Read More »CISA Warns: Hackers Actively Attacking Microsoft SharePoint Vulnerability
A now-patched security flaw in the Microsoft Edge web browser could have been abused to install arbitrary extensions on users’ systems and carry out malicious actions. “This flaw could have… Read More »Microsoft Edge Bug Could Have Allowed Attackers to Silently Install Malicious Extensions
Cybersecurity researchers are warning that threat actors are actively exploiting a “disputed” and unpatched vulnerability in an open-source artificial intelligence (AI) platform called Anyscale Ray to hijack computing power for… Read More »Critical Unpatched Ray AI Platform Vulnerability Exploited for Cryptocurrency Mining
As SaaS applications dominate the business landscape, organizations need optimized network speed and robust security measures. Many of them have been turning to SASE, a product category that offers cloud-based… Read More »SASE Solutions Fall Short Without Enterprise Browser Extensions, New Report Reveals
A new phishing campaign has been observed leveraging a novel loader malware to deliver an information stealer and keylogger called Agent Tesla. Trustwave SpiderLabs said it identified a phishing email bearing… Read More »Alert: New Phishing Attack Delivers Keylogger Disguised as Bank Payment Notice
Two China-linked advanced persistent threat (APT) groups have been observed targeting entities and member countries affiliated with the Association of Southeast Asian Nations (ASEAN) as part of a cyber espionage… Read More »Two Chinese APT Groups Ramp Up Cyber Espionage Against ASEAN Countries
Threat hunters have identified a suspicious package in the NuGet package manager that’s likely designed to target developers working with tools made by a Chinese firm that specializes in industrial- and digital… Read More »Malicious NuGet Package Linked to Industrial Espionage Targets Developers
Minecraft, with over 500 million registered users and 166 million monthly players, faces significant risks from distributed denial-of-service (DDoS) attacks, threatening server functionality, player experience, and the game’s reputation. Despite… Read More »Crafting Shields: Defending Minecraft Servers Against DDoS Attacks
The U.S. Department of Justice (DoJ) on Monday unsealed indictments against seven Chinese nationals for their involvement in a hacking group that targeted U.S. and foreign critics, journalists, businesses, and… Read More »U.S. Charges 7 Chinese Nationals in Major 14-Year Cyber Espionage Operation
The U.S. Cybersecurity and Infrastructure Security Agency (CISA) on Monday placed three security flaws to its Known Exploited Vulnerabilities (KEV) catalog, citing evidence of active exploitation. The vulnerabilities added are as follows… Read More »CISA Alerts on Active Exploitation of Flaws in Fortinet, Ivanti, and Nice Products