Apple has issued emergency updates to address two critical zero-day vulnerabilities in macOS Sequoia, CVE-2024-44308 and CVE-2024-44309, which may have been actively exploited and affect a range of Apple devices.
Ransomware attackers are increasingly exploiting holidays and weekends to target organizations, taking advantage of reduced security staffing and resulting in a significant rise in incidents across various sectors.
Five critical Local Privilege Escalation vulnerabilities in the needrestart utility and libmodule-scandeps-perl package, discovered by Qualys, allow unprivileged users to gain root access on Ubuntu servers without user interaction.
Quishing, a novel cyber threat that uses fraudulent QR codes in emails to bypass phishing security measures, poses significant risks as attackers increasingly target employees with deceptive links to phishing sites.
Key U.S. cybersecurity agencies, including NIST and NVD, are significantly underfunded and understaffed, jeopardizing national security and economic stability.
Liminal Panda, an advanced persistent threat group linked to China, has been conducting cyber espionage against telecommunications providers in Southeast Asia and Africa since 2020, utilizing sophisticated tools and techniques to collect sensitive data.
