Vulnerabilities

Microsoft MFA AuthQuake Vulnerability Exposed Unrestricted Brute-Force Attacks Without Detection

Cybersecurity specialists have unearthed a critical flaw within Microsoft’s multi-factor authentication (MFA) framework, enabling attackers to effortlessly circumvent its safeguards and infiltrate a user’s...

admin - December 11, 2024

Vulnerabilities

Researchers Spotlight Prompt Injection Vulnerabilities in DeepSeek and Claude AI

A recently addressed vulnerability in the DeepSeek AI chatbot has come to light, revealing the potential for adversaries to commandeer user accounts through a...

admin - December 9, 2024

Vulnerabilities

Researchers Expose Vulnerabilities in Widely-Used Open-Source Machine Learning Frameworks

In a startling revelation, cybersecurity specialists have identified a myriad of security flaws compromising popular open-source machine learning (ML) platforms, including MLflow, H2O, PyTorch,...

admin - December 6, 2024

Vulnerabilities

Unveiling a Critical Vulnerability in Mitel MiCollab: A Gateway to Unauthorized Access

In a stark revelation, cybersecurity specialists have unveiled a proof-of-concept (PoC) exploit that interweaves a recently resolved critical vulnerability in Mitel MiCollab with an...

admin - December 5, 2024

Vulnerabilities

Alarming Discovery: Backdoor Found in Solana’s Renowned Web3.js npm Library

Cybersecurity experts have unearthed a sophisticated software supply chain infiltration targeting the prominent @solana/web3.js npm library. This nefarious operation involved releasing two tampered iterations...

admin - December 4, 2024

Vulnerabilities

Cisco Issues Alert on Exploitation of Legacy ASA WebVPN Vulnerability

Cisco has updated its advisory to inform users of ongoing exploitation attempts targeting a vulnerability in its Adaptive Security Appliance (ASA) WebVPN—a flaw first...

admin - December 3, 2024

1...789...51 Page 8 of 51

Cyber security news for all

New PondRAT Malware Disguised in Python Packages Targets Software Developers

Discord Unveils DAVE Protocol for Comprehensive Encryption in Audio and Video Communication

GitLab Resolves Critical SAML Authentication Bypass Vulnerability in CE and EE Versions

SpyLoan Malware Embedded in Android Loan Apps Exposes 8 Million Users

Google Halts Risky Android App Sideloading in India, Elevating Fraud Prevention

Watering Hole Attack on Kurdish Platforms Unleashes Harmful APKs and Spyware

Vulnerabilities

Recent Articles

The Hidden Risk of Non-Human Identities: Why Secrets Management Must Evolve

New Malware Campaigns Target Android and iOS Users with Fake Apps

Weekly Cyber Threat Insights: Windows 0-Day, VPN Exploits, AI Abuse, Antivirus Hijacking, and More

New BPFDoor Malware Controller Facilitates Hidden Lateral Movement on Linux Systems

New Vulnerabilities Found in Rack::Static Allow Unauthorized Access and Data Manipulation on Ruby Servers

EDITOR PICKS

The Hidden Risk of Non-Human Identities: Why Secrets Management Must Evolve

New Malware Campaigns Target Android and iOS Users with Fake Apps

Weekly Cyber Threat Insights: Windows 0-Day, VPN Exploits, AI Abuse, Antivirus Hijacking, and More

POPULAR POSTS

A complete OSINT tutorial on finding someone’s personal information

Chaos Computer Club discovered access to 5 million records

Mailto links can pose an unexpected security risk

ABOUT US

POPULAR CATEGORY

FOLLOW US