Loading...
Blog
Insights, updates, and deep dives into cybersecurity, cloud technology, and AI innovation.
news
Sep 9, 2024
Crypto Vulnerability Allows Cloning of YubiKey Security Keys
A vulnerability known as "Eucleak" has been discovered in YubiKey security keys, often used for MFA authentication, which allows attackers to clone the keys by exploiting a flaw in a cryptographic library.
1 min
news
Sep 6, 2024
Russian APT29 hackers use iOS, Chrome exploits created by spyware vendors
Russian APT29 hackers, known for their advanced cyberespionage activities, have been exploiting iOS and Chrome vulnerabilities, which were originally developed by commercial spyware vendors. These...
1 min
news
Sep 4, 2024
FBI: RansomHub ransomware breached 210 victims since February
The FBI has disclosed that the Ransomhub ransomware group has successfully breached 210 victims since February 2024, targeting a wide array of sectors and causing severe disruptions. This group encrypts victims' data and demands significant ransom payments in exchange for decryption keys.
1 min
news
Aug 28, 2024
Hardware Backdoor Discovered in RFID Cards Used in Hotels and Offices Worldwide
A significant security vulnerability has been discovered in a widely used RFID system, revealing the presence of a hardware backdoor that could allow attackers to gain unauthorized access to secured facilities and systems.
1 min
news
Aug 16, 2024
0.0.0.0 Day: 18-Year-Old Browser Vulnerability Impacts MacOS and Linux Device
A critical security flaw, known as "0.0.0.0 Day," has been discovered in popular web browsers including Chrome, Firefox, and Safari, impacting MacOS and Linux systems. This vulnerability, which has been present for 18 years, allows malicious websites to exploit the 0.0.0.0 IP address to access local services and execute arbitrary code on a user's device.
2 min
news
Aug 13, 2024
AI-generated emails make up 40% of BEC lures, security firm says
A recent study by cybersecurity firm Ironscales reveals that 40% of business email compromise (BEC) lures are now generated using artificial intelligence (AI), highlighting a significant shift in phishing tactics.
1 min
news
Aug 9, 2024
Company Paid Record-Breaking $75 Million to Ransomware Group: Report
A company has reportedly paid a record-breaking $75 million ransom to the Dark Angels ransomware group, as disclosed in Zscaler's ThreatLabz 2024 Ransomware Report. This ransom, paid in early 2024, is nearly double the highest previously known payment.
3 min
news
Aug 5, 2024
Cloudflare Tunnels Abused for Malware Delivery
Cybersecurity researchers have discovered that threat actors are exploiting Cloudflare's tunnel service, TryCloudflare, to deliver malware. This service, designed to create secure, private connections, is being misused to conceal command-and-control (C&C) infrastructures, evading traditional security measures.
2 min
news
Aug 1, 2024
Researchers Reveal ConfusedFunction Vulnerability in Google Cloud Platform
Researchers have discovered a significant privilege escalation vulnerability in Google Cloud Platform's Cloud Functions, known as "ConfusedFunction." This flaw allows attackers to misuse the Default Cloud Build Service Account to access sensitive Google services such as Cloud Build, storage, and various registries.
2 min