Information Security News|Cyber Security|Hacking Tutorial

Corporate Data Privacy: Who’s Responsibility is it?

On: December 19, 2022

Have you ever wondered what happens to your personal information once you click on that “Agree” button when your mobile device wants to pull the latest software update from theRead More →

Biggest electricity, water, and gas company in Colombia Empresas Públicas de Medellín (EPM) suffers ransomware attack

On: December 16, 2022

In: Incidents

EPM is one of the main public suppliers of electricity, water, and gas in Colombia, and it serves 123 towns. It also provides other services. The municipality of Medellin inRead More →

Exploit code for remotely executing code on victim device exploiting Foxit PDF Reader Vulnerability

On: December 16, 2022

In: Data Security

Researchers from HackSys Inc. have provided further information on a security issue in the code execution of Foxit PDF Reader. On vulnerable installations of Foxit PDF Reader 11.2.1.53537, remote attackersRead More →

Australian telecom company TPG hacked as threat actor got access to a server that hosts the email accounts of 15,000 clients

On: December 15, 2022

In: Incidents

This week, an announcement was made by TPG Telecom in Australia stating that an unidentified threat actor had acquired unauthorized access to a server that hosts the email accounts ofRead More →

8 social media influencers arrested for using Twitter & Discord to manipulate exchange-traded stocks and making $114 million

On: December 15, 2022

In: Data Security

The Securities and Exchange Commission (SEC) has just announced that it will be filing charges against eight individuals in connection with a $100 million securities fraud scheme. In this scheme,Read More →

CISA recommends to patch these two Veeam flaws that can be exploited by a remote attacker who is not authenticated to execute arbitrary code

On: December 14, 2022

In: Vulnerabilities

On Tuesday, CISA updated its catalog with five new vulnerabilities, including those that affect products made by Veeam, Fortinet, Microsoft, and Citrix. The previously existing list has been expanded toRead More →

Critical vulnerabilities affecting VMware Workspace ONE Access and Identity Manager

On: December 14, 2022

In: Vulnerabilities

VMware has patched two security flaws in VMware Workspace ONE Access and Identity Manager as of today: Authenticated Remote Code Execution Vulnerability in VMware Workspace ONE Access and Identity Manager,Read More →

Critical zero-day vulnerability (CVE-2022-27518) in Citrix ADC & Gateway exploited by state-sponsored hackers to access business networks

On: December 13, 2022

In: Vulnerabilities

Following the release of an emergency patch by Fortinet to address significant security flaws in the FortiOS SSL-VPN product. Citrix has just just issued yet another critical security update forRead More →

Deadline for Better Encryption on Payment Systems Pushed Back Two Years

PCI Security Standards Council (PCI SSC) releases PCI Secure Software Standard v1.2

On: December 13, 2022

In: Data Security

By offering industry-driven, adaptable, and efficient data security standards and programs that assist businesses in identifying, mitigating, and preventing cyberattacks and breaches, the PCI Security Standards Council (PCI SSC) isRead More →

Arbitrary code execution flaw impacts Spring Boot Admin

On: December 12, 2022

In: Vulnerabilities

You will be able to construct Spring-powered, production-ready apps and services with the very minimal amount of hassle with the assistance of Spring Boot. An administrative user interface that isRead More →

Corporate Data Privacy: Who’s Responsibility is it?

Biggest electricity, water, and gas company in Colombia Empresas Públicas de Medellín (EPM) suffers ransomware attack

Exploit code for remotely executing code on victim device exploiting Foxit PDF Reader Vulnerability

Australian telecom company TPG hacked as threat actor got access to a server that hosts the email accounts of 15,000 clients

8 social media influencers arrested for using Twitter & Discord to manipulate exchange-traded stocks and making $114 million

CISA recommends to patch these two Veeam flaws that can be exploited by a remote attacker who is not authenticated to execute arbitrary code

Critical vulnerabilities affecting VMware Workspace ONE Access and Identity Manager

Critical zero-day vulnerability (CVE-2022-27518) in Citrix ADC & Gateway exploited by state-sponsored hackers to access business networks

PCI Security Standards Council (PCI SSC) releases PCI Secure Software Standard v1.2

Arbitrary code execution flaw impacts Spring Boot Admin

TunnelCrack: Two serious vulnerabilities in VPNs discovered, had been dormant since 1996

How to easily hack TP-Link Archer AX21 Wi-Fi router

US Govt wants new label on secure IoT devices or wants to discourage use of Chinese IoT gadgets

24,649,096,027 (24.65 billion) account usernames and passwords have been leaked by cyber criminals till now in 2022

How Chinese APT hackers stole Lockheed Martin F-35 fighter plane to develop its own J-20 stealth fighter aircraft [VIDEO]

FortiGate Firewalls Zero-Day Chaos: How Hackers Are Gaining Control of Firewalls Worldwide – Is Your Network at Risk?

How Hackers Can Hijack Your Device Without You Knowing – MediaTek’s RCE Flaw Explained

Hacking Active Directory: Learn How LDAPNightmare Flaw Shuts Down AD Services

PAN-OS DoS Flaw: Is Your Network at Risk? Learn How to Secure It Now!

Don’t Get Hacked! Sophos Firewall Vulnerabilities Explained

WinRAR and ZIP File Exploits: This ZIP File Hack Could Let Malware Bypass Your Antivirus

5 Techniques Hackers Use to Jailbreak ChatGPT, Gemini, and Copilot AI systems

This Hacker Toolkit Can Breach Any Air-Gapped System – Here’s How It Works

Hacking Pagers to Explosions: Israel’s Covert Cyber-Physical Sabotage Operation Against Hezbollah!

Five Techniques for Bypassing Microsoft SmartScreen and Smart App Control (SAC) to Run Malware in Windows

How Millions of Phishing Emails were Sent from Trusted Domains: EchoSpoofing Explained

How to implement Principle of Least Privilege(Cloud Security) in AWS, Azure, and GCP cloud

The 11 Essential Falco Cloud Security Rules for Securing Containerized Applications at No Cost

Hack-Proof Your Cloud: The Step-by-Step Continuous Threat Exposure Management CTEM Strategy for AWS & AZURE

Web-Based PLC Malware: A New Technique to Hack Industrial Control Systems

Top 2 Malicious Python Packages You Must Avoid! Zebo-0.1.0 & Cometlogger-0.1

This Hacker Toolkit Can Breach Any Air-Gapped System – Here’s How It Works

Hackers’ Guide to Rogue VM Deployment: Lessons from the MITRE hack

Eternal Malware: CVE-2024-3400 Rootkits Persist Through Palo Alto Firewalls Updates and Resets

Major Python Infrastructure Breach – Over 170K Users Compromised. How Safe Is Your Code?

Cyber Security Channel

US Govt wants new label on secure IoT devices or wants to discourage use of Chinese IoT gadgets

24,649,096,027 (24.65 billion) account usernames and passwords have been leaked by cyber criminals till now in 2022

How Chinese APT hackers stole Lockheed Martin F-35 fighter plane to develop its own J-20 stealth fighter aircraft [VIDEO]