Cybersecurity Blog
The Changing Dynamics of Ransomware as Law Enforcement Strikes
Despite law enforcement actions disrupting major ransomware operations, the long-term impact remains uncertain as groups ...
Researchers Discover Over 20 Supply Chain Vulnerabilities in MLOps Platforms
Inherent vulnerabilities stem from the underlying formats and processes of the technology, allowing attackers to exploit ...
Pidgin Users Beware! Malicious Plugin Discovered with Keylogger
The plugin, which was added to Pidgin’s third-party plugins list on July 6th, was flagged by a user, 0xFFFC0000, on ...
Researchers Discover Several Potential Attack Vectors in Bicycles With Shimano Di2 Wireless Gear-Shifting System
Researchers found a vulnerability in the Shimano Di2 system’s proprietary protocol, making it susceptible to a replay ...
Tech Support Scam Found Hijacking Microsoft Search Queries Through Google Ads
Two deceptive campaigns were identified recently using Google ads and Microsoft’s infrastructure. The first scam ...
Critical SSTI Flaw in WPML Plugin Exposes Millions of WordPress Sites to RCE Attacks
This vulnerability allows authorized users to inject and execute malicious code through the plugin’s shortcode ...
Centreon Issues Critical Security Update to Fix SQL Injection Vulnerabilities That Threaten IT Monitoring
These vulnerabilities, known as CVE-2024-32501, CVE-2024-33852, CVE-2024-33853, CVE-2024-33854, CVE-2024-5725, and ...
Microsoft Fixes ASCII Smuggling Flaw That Enabled Data Theft from Microsoft 365 Copilot
Details have emerged about a now-patched vulnerability in Microsoft 365 Copilot that could enable the theft of sensitive ...