Ivanti has disclosed details of a critical remote code execution flaw impacting Standalone Sentry, urging customers to apply the fixes immediately to stay protected against potential cyber threats. Tracked as CVE-2023-41724,… Read More »Ivanti Releases Urgent Fix for Critical Sentry RCE Vulnerability
A novel denial-of-service (DoS) attack vector has been found to target application-layer protocols based on User Datagram Protocol (UDP), putting hundreds of thousands of hosts likely at risk. Called Loop DoS… Read More »New ‘Loop DoS’ Attack Impacts Hundreds of Thousands of Systems
Multiple threat actors are exploiting the recently disclosed security flaws in JetBrains TeamCity software to deploy ransomware, cryptocurrency miners, Cobalt Strike beacons, and a Golang-based remote access trojan called Spark… Read More »TeamCity Flaw Leads to Surge in Ransomware, Cryptomining, and RAT Attacks
Did you know that 79% of organizations are already leveraging Generative AI technologies? Much like the internet defined the 90s and the cloud revolutionized the 2010s, we are now in… Read More »Generative AI Security – Secure Your Business in a World Powered by LLMs
Cybersecurity researchers have discovered an updated variant of a stealer and malware loader called BunnyLoader that modularizes its various functions as well as allow it to evade detection. “BunnyLoader is dynamically developing… Read More »New BunnyLoader Malware Variant Surfaces with Modular Attack Features
The Cyber Police of Ukraine has arrested three individuals on suspicion of hijacking more than 100 million emails and Instagram accounts from users across the world. The suspects, aged between 20 and… Read More »Ukraine Arrests Trio for Hijacking Over 100 Million Email and Instagram Accounts
The U.S. Environmental Protection Agency (EPA) said it’s forming a new “Water Sector Cybersecurity Task Force” to devise methods to counter the threats faced by the water sector in the… Read More »U.S. EPA Forms Task Force to Protect Water Systems from Cyberattacks
Application programming interfaces (APIs) are the connective tissue behind digital modernization, helping applications and databases exchange data more effectively. The State of API Security in 2024 Report from Imperva, a Thales company,… Read More »APIs Drive the Majority of Internet Traffic and Cybercriminals are Taking Advantage
Large language models (LLMs) powering artificial intelligence (AI) tools today could be exploited to develop self-augmenting malware capable of bypassing YARA rules. “Generative AI can be used to evade string-based… Read More »From Deepfakes to Malware: AI’s Expanding Role in Cyber Attacks
A new variant of a data wiping malware called AcidRain has been detected in the wild that’s specifically designed for targeting Linux x86 devices. The malware, dubbed AcidPour, is compiled… Read More »Suspected Russian Data-Wiping ‘AcidPour’ Malware Targeting Linux x86 Devices