Security Intelligence

Chinese state-sponsored cyber actors target semiconductor manufacturers with Cobalt Strike

Hackers believed to be sponsored by the Chinese government, were observed targeting semiconductor manufacturers based...

Security Intelligence

Top misconfigurations of 2022 revealed by the NSA and CISA

The NSA and CISA have released the following list of the ten most common misconfigurations observed by the agencies’...

Security Intelligence

Hackers attempt to breach Azure cloud assets via compromised SQL servers

Security researchers at Microsoft have observed hackers attempting a new technique to breach Azure cloud assets.

Security Intelligence

Critical zero-day vulnerability found in Exim Mail Transfer Agent software

Security researchers have discovered a critical zero-day vulnerability in Exim Mail Transfer Agent (MTA) software.

Security Intelligence

Maker of MOVEit Transfer App announces new maximum severity vulnerability in FTP server software

Progress Software, the maker of the infamous MOVEit Transfer App, announced that it had discovered a critical...

Security Intelligence

Phony Bitwarden password manager sites hosting ZenRAT malware

Researchers observed a threat actor using phony websites imitating Bitwarden to trick users into downloading a new...

Security Intelligence

Critical libwebp library vulnerability: Not just a Chrome problem

Two weeks after designating Chrome vulnerability CVE-2023-4863, Google has assigned a new high-severity CVE,...

Security Intelligence

Ukrainian military targeted with drone manual themed phishing emails

Security researchers have uncovered a new phishing campaign against the Ukrainian military that leverages Microsoft...

Security Intelligence

Apple releases emergency updates to address actively exploited zero-day vulnerabilities

On September 21, Apple released emergency updates to address three actively exploited zero-day vulnerabilities.

Security Intelligence

Unnamed hackers compromise International Criminal Court

The International Criminal Court (ICC) advised that it had detected anomalous activity affecting its networks.

Security Intelligence

Mozilla patches Firefox and Thunderbird vulnerabilities exploited in the wild

On September 12, Mozilla released emergency patches to address a zero-day vulnerability affecting its Firefox browser...

Security Intelligence

Apple releases emergency patch to fix zero-day vulnerability exploited by Pegasus Spyware

Apple released an emergency patch to address two zero-day vulnerabilities in the operating systems of its popular iPad,...