Author: Mash

AquaSec, a security research team, recently released a report outlining significant security vulnerabilities within Microsoft's PowerShell Gallery (PSGallery), a repository [...]

The creators of Raccoon Stealer malware, known for stealing information, have resurfaced after a 6-month break on hacker forums. They're [...]

The custom invite service, Discord.io, temporarily closed due to a breach exposing data of 760,000 members. While not an official [...]

The Rhysida ransomware group gained attention through healthcare attacks, prompting government agencies and cybersecurity firms to take notice. US HHS [...]

'BitForge' zero-day vulnerabilities in widespread cryptographic protocols (GG-18, GG-20, Lindell 17) impacted major crypto wallets like Coinbase, ZenGo, Binance. Attackers [...]

Researchers from the Technical University of Berlin have developed a method to jailbreak Tesla's infotainment systems in recent car models. [...]

In June 2023, Microsoft introduced the Azure Active Directory Cross-Tenant Synchronization (CTS) feature, allowing administrators to synchronize users and groups [...]

Soon, the list of LOLBAS files, which comprises legitimate binaries and scripts in Windows that can be exploited for malicious [...]

A new strain of malware, believed to be orchestrated by Chinese state-sponsored hackers, has emerged, targeting industrial organizations. This sophisticated [...]

CISA has reported the use of new malware named Submarine to backdoor Barracuda ESG appliances on federal agencies' networks. The [...]

Microsoft has addressed a known problem that was causing video recording and playback failures in certain apps on both Windows [...]

More than 900,000 MikroTik RouterOS routers face a critical risk from a 'Super Admin' privilege elevation flaw (CVE-2023-30799). This vulnerability [...]

North Korea's Lazarus hacking group is hacking into Windows Internet Information Service (IIS) web servers to distribute malware. IIS is [...]

Storm-0558 Chinese hackers gained access to the Microsoft consumer signing key, which had broader implications than initially acknowledged. Redmond confirmed [...]

Microsoft is expanding free access to additional cloud logging data worldwide to aid in detecting breached networks and accounts. This [...]

FIN8, a financially motivated cybercrime gang, has been using BlackCat ransomware on networks that were infiltrated with a new version [...]

Google Play is taking action against malware by requiring new developer accounts to provide a valid D-U-N-S number before submitting [...]

PyLoose, a fileless malware, is exploiting cloud workloads for Monero mining by utilizing a simple Python script containing an encoded [...]

Microsoft has taken action to block code signing certificates that have been primarily used by Chinese hackers and developers to [...]

Apple has released security updates for its operating systems and Safari web browser to fix a zero-day vulnerability that was [...]

Researchers in the field of cybersecurity have analyzed a newly discovered ransomware called 'Big Head,' which appears to be propagated [...]

CISA has directed federal agencies to address a high-severity privilege escalation flaw in the Arm Mali GPU kernel driver, listed [...]

Researchers uncovered two file management apps on Google Play, originating from the same publisher and boasting a combined installation count [...]

TeamsPhisher, a tool created by a member of the U.S. Navy's red team, exploits a security vulnerability in Microsoft Teams [...]

Google has spent over a year developing the new Extensions toolbar menu, which now enables users to disable extensions on [...]

Avast, a cybersecurity company, has introduced a complimentary decryption tool to combat the Akira ransomware, offering victims a chance to [...]

Security analysts have uncovered 'EarlyRAT,' an undocumented remote access trojan (RAT) utilized by Andariel, a sub-group of the Lazarus North [...]

Microsoft has resolved a known problem in Windows 11 and Windows Server systems where File Explorer freezes after checking a [...]

A new Android malware campaign, known as Anatsa or TeaBot, has been spreading since March 2023, targeting banking customers in [...]

Super Mario 3: Forever, a free-to-play remake of the classic Nintendo game, is used by hackers to install malware into [...]

LastPass password manager users have faced persistent login issues since early May, when they were instructed to reset their authenticator [...]

Deep Instinct's Threat Research Lab has detected a new strain of a JavaScript-based dropper delivering Bumblebee and IcedID malware. The [...]

Despite Microsoft Teams' client-side protections that block file delivery from external tenant accounts, security researchers from Jumpsec discovered a method [...]

Fortinet has acknowledged that a critical vulnerability in its FortiOS SSL VPN, which was recently patched, may have already been [...]

Progress Software has issued a warning to its customers about critical SQL injection vulnerabilities in its MOVEit Transfer managed file [...]

Cisco has addressed a high-severity vulnerability in its Cisco Secure Client software, previously known as AnyConnect Secure Mobility Client. The [...]

North Korean hacker group Kimsuky, also known as APT43, has been engaged in spear-phishing campaigns to gather intelligence from think [...]

A threat actor named Spyboy is advertising a tool called "Terminator" on a Russian-speaking hacking forum, claiming that it can [...]

The critical vulnerability for the Jetpack plugin has been addressed by WordPress in the new security patch. The plugin has [...]

QBot malware has been spotted to abuse a DLL hijacking vulnerability in the Windows 10 WordPad to infect targeted devices. [...]