Latest News: Cybersecurity

Multiple critical vulnerabilities across Cisco products are leaving users vulnerable to attack, according to reports from several sources. Hackers are actively exploiting a critical vulnerability in Cisco's Security Email Gateway (SEG) devices to gain administrative access and add root users. The

Prominent Indian cryptocurrency exchange WazirX suspended withdrawals on Thursday following a security breach that resulted in the loss of $230 million, approximately half its reserves. The breach, which WazirX described as a “force majeure event,” involved the compromise of one of its multisig

Check Point Researchers have discovered that a Windows MSHTML zero-day vulnerability has been exploited in malware attacks for over a year. The flaw, tracked as CVE-2024-38112, allows threat actors to bypass built-in security features and launch malicious scripts, which led to the installation of

Indonesia’s national data center has been compromised by a hacking group demanding an $8 million ransom, disrupting services for over 200 government agencies. The cyberattack involved ransomware and began on June 20, causing significant disruption at both national and regional levels of

A significant vulnerability in Phoenix SecureCore UEFI firmware has been discovered, affecting hundreds of Intel PC and server models. The flaw, identified as CVE-2024-0762 and holding a CVSS score of 7.5, was uncovered by Eclypsium's automated binary analysis system. This high-impact

A 22-year-old British national has been arrested in Spain for allegedly hacking into dozens of US companies, according to a joint operation by Spanish authorities and the FBI. The suspect, who remains unnamed by authorities, was detained at Palma de Mallorca airport while attempting to board a

Pathology services provider Synnovis was targeted in a cyberattack on June 3, leading to widespread disruption across London hospitals. The ransomware attack, attributed to the Russian gang Qilin, has had a severe impact on medical services, forcing the cancellation of over 800 planned operations

A new phishing toolkit created by security researcher mr.d0x enables cybercriminals to exploit Progressive Web Apps (PWAs) to steal login credentials, posing a significant threat to internet users. According to a report from BleepingComputer, the toolkit allows for the creation of PWAs that

The vpnMentor research team is reporting about a recent incident involving the popular Stable Diffusion user interface, ComfyUI, that has sent shockwaves through the AI community, exposing the potential dangers lurking behind seemingly innocuous tools. While ComfyUI itself remains secure, a

Researchers have discovered that malware can exploit Microsoft's new Windows Recall feature to steal sensitive user data. Windows Recall, which is part of Microsoft's new Copilot+ PCs, captures regular screenshots to help users retrieve previously seen content through natural language queries.