Cybersecurity Blog

CISA Starts CVE “Vulnrichment” Program

The US Cybersecurity and Infrastructure Agency (CISA) has announced the creation of “Vulnrichment,” a new project that ...

Google Fixes Fifth Chrome Zero-Day Exploited in Attacks This Year

The high-severity issue tracked as CVE-2024-4671 is a “user after free” vulnerability in the Visuals component that ...

Cybercriminals are Getting Faster at Exploiting Vulnerabilities

Cybercriminals are exploiting new vulnerabilities at an increasingly rapid pace, with attacks starting on average just ...

SocGholish Sets Sights on Victim Peers

The SocGholish malware is targeting enterprises through fake browser update prompts, compromising legitimate websites to ...

Researchers Uncover ‘LLMjacking’ Scheme Targeting Cloud-Hosted AI Models

Cybersecurity researchers have discovered a novel attack that employs stolen cloud credentials to target cloud-hosted ...

New TunnelVision Attack Allows Hijacking of VPN Traffic via DHCP Manipulation

Researchers have detailed a Virtual Private Network (VPN) bypass technique dubbed TunnelVision that allows threat actors ...

How Workforce Reductions Affect Cybersecurity Postures

The Cobalt State of Pentesting Report highlights the challenges faced by the cybersecurity industry in balancing the use ...

Kremlin-Backed APT28 Targets Polish Institutions in Large-Scale Malware Campaign

Polish government institutions have been targeted as part of a large-scale malware campaign orchestrated by a ...

1 211 212 213 214 215 216 217 218 219 220 221 661