A persistent threat actor known as Larva-26002 is actively targeting poorly secured Microsoft SQL servers to … Threat Actors Continuously Attacking MS-SQL Servers to Deploy ICE Cloud ScannerRead more
CanisterWorm Gets Destructive as TeamPCP Deploys Iran-Focused Kubernetes Wiper
A threat actor known as TeamPCP has escalated its operations by deploying a destructive Kubernetes wiper … CanisterWorm Gets Destructive as TeamPCP Deploys Iran-Focused Kubernetes WiperRead more
Tycoon2FA Operators Resume Cloud Account Phishing After Infrastructure Disruption
Operators behind the Tycoon2FA phishing-as-a-service platform have resumed large-scale attacks targeting cloud accounts despite a recent … Tycoon2FA Operators Resume Cloud Account Phishing After Infrastructure DisruptionRead more
Chrome Security Update Fixes 8 Vulnerabilities Allowing Remote Code Execution
Google Chrome has released an urgent security update addressing eight high-severity vulnerabilities that could allow attackers … Chrome Security Update Fixes 8 Vulnerabilities Allowing Remote Code ExecutionRead more
Roundcube Webmail Security Updates Patch Multiple Critical Vulnerabilities
Roundcube Webmail has released version 1.6.14, addressing multiple critical vulnerabilities affecting the 1.6.x branch. The update … Roundcube Webmail Security Updates Patch Multiple Critical VulnerabilitiesRead more
NIST Releases Quick-Start Guide on Cybersecurity, Risk, and Workforce Management
The National Institute of Standards and Technology has released a new strategic document, NIST SP 1308, … NIST Releases Quick-Start Guide on Cybersecurity, Risk, and Workforce ManagementRead more
New ALP-001 Data Leak Site Linked to Active Initial Access Broker
A new Tor-based data leak platform named ALP-001 has surfaced on the dark web, signaling a … New ALP-001 Data Leak Site Linked to Active Initial Access BrokerRead more
Libyan Oil Refinery Hit in Long-Running AsyncRAT Espionage Campaign
A coordinated espionage campaign targeted a Libyan oil refinery, a telecommunications organization, and a state institution … Libyan Oil Refinery Hit in Long-Running AsyncRAT Espionage CampaignRead more
Critical NetScaler ADC and Gateway Vulnerabilities Enable Remote Attacks
Cloud Software Group has released urgent patches for NetScaler ADC and NetScaler Gateway, addressing two major … Critical NetScaler ADC and Gateway Vulnerabilities Enable Remote AttacksRead more
Critical QNAP QVR Pro Vulnerability Allows Remote Attackers System Access
QNAP Systems has released a critical security advisory for a severe vulnerability in its QVR Pro … Critical QNAP QVR Pro Vulnerability Allows Remote Attackers System AccessRead more