Increasing Time to Fix Software Vulnerabilities Poses Risks to Organizations
The average time to remediate software security vulnerabilities has surged to 252 days, largely due to reliance on third-party code, leaving 50% of organizations with critical security debt.
View full story…
DragonForce Ransomware Attack Targets Major Saudi Real Estate Firm
A significant ransomware attack by the group DragonForce has breached a major real estate and construction company in Riyadh, Saudi Arabia, resulting in the theft of over 6 terabytes of sensitive data and highlighting vulnerabilities in the Kingdom’s critical infrastructure.
View full story…
Website Security: Protecting Against Cyber Threats
As WordPress powers over 43% of websites, implementing robust security measures is essential to defend against various cyber threats, including malware, DDoS attacks, SQL injection, and phishing.
View full story…
Winos 4.0 Malware Campaign Targets Taiwanese Organizations Through Phishing Emails
A sophisticated malware campaign named Winos 4.0 has been discovered, targeting organizations in Taiwan by impersonating the National Taxation Bureau in phishing emails to deliver malicious files.
View full story…
Latest Cybernews
Web Application Security: Protecting Against Cyber Threats
Web applications face various cyber threats, including SQL injection, XSS, and DDoS attacks, necessitating the implementation of robust security measures like Web Application Firewalls and regular monitoring.
View full story…
Geopolitical Tensions Drive Surge in Cyberattacks on Critical Infrastructure in 2024
In 2024, state-sponsored APT attacks and hacktivism targeting critical infrastructure have surged, particularly in Europe and the Asia-Pacific, driven by ongoing global conflicts and collaboration between state and non-state actors.
View full story…
API Security Concerns Surge Amid Rapid Growth in API Usage
A recent report reveals that 99% of organizations faced API-related security issues over the past year, with significant vulnerabilities stemming from misconfigurations, sensitive data exposure, and authentication failures.
View full story…
Data Breach at DISA Global Solutions Exposes PII of Over 3 Million Individuals
DISA Global Solutions reported a significant data breach that compromised the personally identifiable information of approximately 3,332,750 individuals, raising serious concerns about data security and privacy.
View full story…
Have I Been Pwned Expands Database with 1.5TB of Compromised Data from ALIEN TXTBASE
Have I Been Pwned has integrated a massive dataset of 1.5 terabytes containing 23 billion entries, including 493 million unique website and email address pairs, highlighting the escalating threat of infostealer malware and its impact on global cybersecurity.
View full story…
Latest Cybernews
Silver Fox APT Targets Healthcare Networks with Sophisticated Malware Campaign
The Chinese-backed Silver Fox APT group has launched a sophisticated malware campaign exploiting vulnerabilities in trojanized Philips DICOM viewers to infiltrate healthcare networks and access sensitive patient data.
View full story…
Ghostwriter Cyber-Attacks Target Ukraine and Belarusian Opposition
A surge in cyber-attacks attributed to the Ghostwriter threat actor, linked to the Belarusian government, has been observed, utilizing weaponized Excel documents and advanced obfuscation techniques to target Ukrainian governmental bodies and opposition groups in Belarus.
View full story…
AI-Generated Synthetic Identities Challenge Biometric Security
AI-generated synthetic identities are increasingly exploiting advanced technologies like deepfakes to bypass biometric security systems, posing significant risks to businesses and financial institutions.
View full story…
Massive Botnet Targets Microsoft 365 Accounts Using Password-Spraying Attacks
A sophisticated botnet operation is exploiting vulnerabilities in Microsoft 365’s authentication process to conduct large-scale password-spraying attacks, primarily affecting organizations in Western countries.
View full story…