Security researchers discover a misconfiguration in Oracle NetSuite’s SuiteCommerce platform, allowing unauthorized access to sensitive customer data on thousands of e-commerce sites.
ESET Research reveals a mobile phishing technique using PWAs to target clients of OTP Bank and TBC Bank in the Czech Republic, Hungary, and Georgia.
Blind Eagle, also known as APT-C-36, is a persistent threat actor targeting entities and individuals in Latin American nations since at least 2018, demonstrating adaptability in operational goals and employing various remote access trojans and techniques for cyber espionage and financial credential theft campaigns.
Recent cyber-attacks on the Presidential campaigns of Donald Trump and Vice President Kamala Harris were confirmed to be orchestrated by Iranian actors, including APT42, as part of a larger effort to undermine confidence in US democratic institutions and influence US foreign policy.
Threat groups actively exploiting CVE-2024-23897 in Jenkins, leading to ransomware attacks on companies like Brontoo Technology Solutions in India.
Attackers exploit command execution privilege within a pod to access sensitive information in AKS clusters.
