A vulnerability pattern in popular Android applications discovered by Microsoft allows malicious apps to manipulate files in the app’s home directory through path traversal, potentially leading to arbitrary code execution and token theft.
Politically motivated hacker groups target Sweden with over 2000 simultaneous attacks, highlighting cybersecurity vulnerabilities.
Dropbox Sign, formerly known as HelloSign, experienced a security breach that compromised customer data, including email addresses, usernames, phone numbers, hashed passwords, and API keys.
Ransomware actors exploit zero-day vulnerabilities in MOVEit software, leading to a surge in breaches across various sectors.
Cobalt’s report highlights a 21% increase in findings per pentest engagement year-over-year, emphasizing the critical need for talent acquisition, caution in AI integration, and the proactive use of pentesting.
LockBit, Black Basta, and Play were the most active ransomware groups in Q1 2024, with Black Basta experiencing a significant 41% increase in activity.
