The GhostSocks malware, a variant of Ghost ransomware, exploits long-standing vulnerabilities in various sectors globally, utilizing SOCKS5 for evasion and operating under a Malware-as-a-Service model.
The average time to remediate software security vulnerabilities has surged to 252 days, largely due to reliance on third-party code, leaving 50% of organizations with critical security debt.
A significant ransomware attack by the group DragonForce has breached a major real estate and construction company in Riyadh, Saudi Arabia, resulting in the theft of over 6 terabytes of sensitive data and highlighting vulnerabilities in the Kingdom’s critical infrastructure.
As WordPress powers over 43% of websites, implementing robust security measures is essential to defend against various cyber threats, including malware, DDoS attacks, SQL injection, and phishing.
A sophisticated malware campaign named Winos 4.0 has been discovered, targeting organizations in Taiwan by impersonating the National Taxation Bureau in phishing emails to deliver malicious files.
Web applications face various cyber threats, including SQL injection, XSS, and DDoS attacks, necessitating the implementation of robust security measures like Web Application Firewalls and regular monitoring.
In 2024, state-sponsored APT attacks and hacktivism targeting critical infrastructure have surged, particularly in Europe and the Asia-Pacific, driven by ongoing global conflicts and collaboration between state and non-state actors.
A recent report reveals that 99% of organizations faced API-related security issues over the past year, with significant vulnerabilities stemming from misconfigurations, sensitive data exposure, and authentication failures.
DISA Global Solutions reported a significant data breach that compromised the personally identifiable information of approximately 3,332,750 individuals, raising serious concerns about data security and privacy.
Have I Been Pwned has integrated a massive dataset of 1.5 terabytes containing 23 billion entries, including 493 million unique website and email address pairs, highlighting the escalating threat of infostealer malware and its impact on global cybersecurity.
