Google Chrome has released an urgent security update addressing eight high-severity vulnerabilities that could allow attackers … Chrome Security Update Fixes 8 Vulnerabilities Allowing Remote Code ExecutionRead more
Roundcube Webmail Security Updates Patch Multiple Critical Vulnerabilities
Roundcube Webmail has released version 1.6.14, addressing multiple critical vulnerabilities affecting the 1.6.x branch. The update … Roundcube Webmail Security Updates Patch Multiple Critical VulnerabilitiesRead more
NIST Releases Quick-Start Guide on Cybersecurity, Risk, and Workforce Management
The National Institute of Standards and Technology has released a new strategic document, NIST SP 1308, … NIST Releases Quick-Start Guide on Cybersecurity, Risk, and Workforce ManagementRead more
New ALP-001 Data Leak Site Linked to Active Initial Access Broker
A new Tor-based data leak platform named ALP-001 has surfaced on the dark web, signaling a … New ALP-001 Data Leak Site Linked to Active Initial Access BrokerRead more
Libyan Oil Refinery Hit in Long-Running AsyncRAT Espionage Campaign
A coordinated espionage campaign targeted a Libyan oil refinery, a telecommunications organization, and a state institution … Libyan Oil Refinery Hit in Long-Running AsyncRAT Espionage CampaignRead more
Critical NetScaler ADC and Gateway Vulnerabilities Enable Remote Attacks
Cloud Software Group has released urgent patches for NetScaler ADC and NetScaler Gateway, addressing two major … Critical NetScaler ADC and Gateway Vulnerabilities Enable Remote AttacksRead more
Critical QNAP QVR Pro Vulnerability Allows Remote Attackers System Access
QNAP Systems has released a critical security advisory for a severe vulnerability in its QVR Pro … Critical QNAP QVR Pro Vulnerability Allows Remote Attackers System AccessRead more
SEO Poisoning Campaign Impersonates 25+ Apps to Deliver AsyncRAT
A long-running SEO poisoning campaign has been targeting Windows users by impersonating popular software downloads and … SEO Poisoning Campaign Impersonates 25+ Apps to Deliver AsyncRATRead more
Tax-Themed Google Ads Deliver BYOVD EDR Killer in Malvertising Campaign
A large-scale malvertising campaign is abusing tax-season urgency to deploy a kernel-mode EDR killer through malicious … Tax-Themed Google Ads Deliver BYOVD EDR Killer in Malvertising CampaignRead more
Mazda Data Breach Exposes Employee and Partner Records
Mazda Motor Corporation has disclosed a security incident involving unauthorized access to an internal warehouse management … Mazda Data Breach Exposes Employee and Partner RecordsRead more