Vulnerabilities

Over 300K Prometheus Instances at Risk: Sensitive Data and API Keys Exposed Online

Cybersecurity experts are raising alarms about a widespread vulnerability affecting thousands of servers utilizing the Prometheus monitoring and alerting toolkit. These exposed systems are...

admin - December 12, 2024

Vulnerabilities

Microsoft MFA AuthQuake Vulnerability Exposed Unrestricted Brute-Force Attacks Without Detection

Cybersecurity specialists have unearthed a critical flaw within Microsoft’s multi-factor authentication (MFA) framework, enabling attackers to effortlessly circumvent its safeguards and infiltrate a user’s...

admin - December 11, 2024

Vulnerabilities

Researchers Spotlight Prompt Injection Vulnerabilities in DeepSeek and Claude AI

A recently addressed vulnerability in the DeepSeek AI chatbot has come to light, revealing the potential for adversaries to commandeer user accounts through a...

admin - December 9, 2024

Vulnerabilities

Researchers Expose Vulnerabilities in Widely-Used Open-Source Machine Learning Frameworks

In a startling revelation, cybersecurity specialists have identified a myriad of security flaws compromising popular open-source machine learning (ML) platforms, including MLflow, H2O, PyTorch,...

admin - December 6, 2024

Vulnerabilities

Unveiling a Critical Vulnerability in Mitel MiCollab: A Gateway to Unauthorized Access

In a stark revelation, cybersecurity specialists have unveiled a proof-of-concept (PoC) exploit that interweaves a recently resolved critical vulnerability in Mitel MiCollab with an...

admin - December 5, 2024

Vulnerabilities

Alarming Discovery: Backdoor Found in Solana’s Renowned Web3.js npm Library

Cybersecurity experts have unearthed a sophisticated software supply chain infiltration targeting the prominent @solana/web3.js npm library. This nefarious operation involved releasing two tampered iterations...

admin - December 4, 2024

1...678...50 Page 7 of 50

Cyber security news for all

New PondRAT Malware Disguised in Python Packages Targets Software Developers

Discord Unveils DAVE Protocol for Comprehensive Encryption in Audio and Video Communication

GitLab Resolves Critical SAML Authentication Bypass Vulnerability in CE and EE Versions

SpyLoan Malware Embedded in Android Loan Apps Exposes 8 Million Users

Google Halts Risky Android App Sideloading in India, Elevating Fraud Prevention

Watering Hole Attack on Kurdish Platforms Unleashes Harmful APKs and Spyware

Vulnerabilities

Recent Articles

Malicious Google Ads Impersonating AI Platforms to Spread Malware

Misconfigured SSL: The Hidden Gateway Expanding Your Organization’s Cyber Attack Surface

North Korean Lazarus Group Uses New Social Engineering Trick to Spread Golang-Based Malware

Russian Group Exploits Windows Vulnerability to Deploy SilentPrism and DarkWisp Backdoors

WordPress ‘mu-Plugins’ Directory Abused to Spread Spam and Maintain Access

EDITOR PICKS

Malicious Google Ads Impersonating AI Platforms to Spread Malware

Misconfigured SSL: The Hidden Gateway Expanding Your Organization’s Cyber Attack Surface

North Korean Lazarus Group Uses New Social Engineering Trick to Spread Golang-Based Malware

POPULAR POSTS

A complete OSINT tutorial on finding someone’s personal information

Chaos Computer Club discovered access to 5 million records

Mailto links can pose an unexpected security risk

ABOUT US

POPULAR CATEGORY

FOLLOW US