Cybersecurity Blog

New Mandrake Spyware Found in Google Play Store Apps After Two Years

A new iteration of a sophisticated Android spyware called Mandrake has been discovered in five applications that were ...

Microsoft Warns of Ransomware Gangs Abusing VMware ESXi Authentication Bypass in Attacks

Ransomware operators like Black Basta and Akira have already used this vulnerability in attacks, with Storm-0506 ...

Hotjar, Business Insider Vulnerabilities Expose OAuth Data Risks

Critical vulnerabilities within Hotjar and Business Insider have been uncovered by security researchers, posing risks ...

Attackers Bypassed Google’s Email Verification to Create Workspace Accounts, Access Third-Party Services

The issue, which began in late June, affected a few thousand Workspace accounts that were created without domain ...

Microsoft 365 Users Targeted by Phishers Abusing Microsoft Forms

The phishing campaigns involve sending fake emails that appear to be from Microsoft, leading recipients to malicious ...

Malware Campaign Lures Users With Fake W2 Form

A malicious campaign targeting users searching for W2 forms began on June 21, 2024, with a JavaScript file dropping a ...

RaspAP Flaw Let Hackers Escalate Privileges with Raspberry Pi Devices

The flaw, identified as CVE-2024-41637, affects RaspAP versions before 3.1.5 and has a severity score of 9.9. The ...

New SideWinder Cyber Attacks Target Maritime Facilities in Multiple Countries

The nation-state threat actor known as SideWinder has been attributed to a new cyber espionage campaign targeting ports ...

1 102 103 104 105 106 107 108 109 110 111 112 667