Apple patches CVE-2024-44131, a TCC bypass vulnerability enabling malicious apps to access sensitive data via symlink ...

Attackers exploit Hunk Companion vulnerability (CVE-2024-11972) to install flawed plugins, enabling RCE attacks on 10,000+ ...

PowerOFF dismantles 27 DDoS stresser services, arrests administrators, and exposes CDN/WAF misconfiguration risks.

Secret Blizzard hijacks Amadey bots and Russian backdoors to deploy Kazuar malware in Ukraine, obscuring its presence and ...

SaaS budgets are wasted, costing $1,000–$3,500 per employee. Reclaim costs, boost ROI, and plan for 2025 effectively.

Cybersecurity researchers have flagged a "critical" security vulnerability in Microsoft's multi-factor authentication (MFA) ...

Chinese hacker charged for exploiting Sophos firewalls via CVE-2020-12271; U.S. sanctions cybersecurity firm Sichuan Silence.

Critical Cleo software flaw exploited en masse; update Harmony, VLTrader, LexiCom to prevent ransomware attacks.

EagleMsgSpy, a Chinese surveillance tool by Wuhan Chinasoft Token, exploits mobile devices for data collection.

China-based threat actors target Southeast Asia organizations with advanced tools like PlugX and reverse proxies.

Automated pentesting ensures frequent, cost-effective, and thorough security assessments to outpace evolving cyber threats.

Microsoft closed out its Patch Tuesday updates for 2024 with fixes for a total of 72 security flaws spanning its software portfolio, including one that it said has been exploited in the wild.