The Cybersecurity and Infrastructure Security Agency (CISA) has issued a critical alert regarding the active exploitation of a long-standing vulnerability in PHPMailer, a widely used […]
macOS SMBClient Flaw Enables Remote Code Execution and Kernel Crashes
A critical vulnerability has been discovered in Apple’s macOS SMBClient, exposing millions of users to the risk of remote code execution (RCE) and potentially catastrophic […]
Chinese wegen US-Spionageverdacht in Mailand festgenommen
Ein Chinese wurde wegen Cyberbetrug und Identitätsdiebstahl festgenommen. Brian A Jackson – shutterstock.com Wegen des Verdachts der US-Spionage ist ein Chinese am größten Flughafen Mailands […]
CISA Issues Alert Over Actively Exploited Flaw in Zimbra Collaboration Suite
The Cybersecurity and Infrastructure Security Agency (CISA) has issued a critical alert regarding an actively exploited vulnerability in Synacor’s Zimbra Collaboration Suite (ZCS), urging organizations […]
End of life for Microsoft Office puts malicious macros in the security spotlight
The upcoming end of life for Windows 10 has IT teams busy. From planning on migrations, to testing Windows 11 24H2, many of us are […]
Critical Vulnerabilities in KIA Infotainment Let Attackers Inject Code with PNG Files
A recent security analysis has uncovered critical vulnerabilities in the infotainment systems of KIA vehicles, raising alarm across the automotive cybersecurity community. These flaws allow attackers to […]
How talent-strapped CISOs can tap former federal government cyber pros
Since January, thousands of federal government jobs have vanished through a combination of firings, layoffs and resignations. The cuts, a part of the zealous Department […]
CISA Adds Four Critical Vulnerabilities to KEV Catalog Due to Active Exploitation
The U.S. Cybersecurity and Infrastructure Security Agency (CISA) on Monday added four security flaws to its Known Exploited Vulnerabilities (KEV) catalog, citing evidence of active […]
TAG-140 Targets Indian Government Via ‘ClickFix-Style’ Lure
The threat actors trick victims into opening a malicious script, leading to the execution of the BroaderAspect .NET loader. ​The original article found on darkreading […]
Discovery of compromised Shellter security tool raises disclosure debate
CISOs whose staff use the commercial Shellter Elite antivirus evasion software to detect vulnerabilities need to immediately update to the latest version after the recent […]