Security breach

More than 770 million records available through the Travis CI API: Anyone can extract tokens, secrets, and other credentials associated with services like GitHub, AWS, and Docker Hub

On: June 15, 2022

Software development and testing platform Travis CI confirmed the second incident of exposing its users’ data in less than a year. On this occasion, the compromised records include authentication tokensRead More →

Ransomware attack targeting public schools in New Jersey forces cancellation of final exams

On: June 9, 2022

In: Incidents

Administrators of the Tenafly Public Schools, Bergen County, New Jersey, confirmed that the cybersecurity issue detected Thursday morning is a ransomware infection that blocked access to some computers on itsRead More →

How to hide spoofed malicious domain when users hover above a link in a phishing email in Microsoft Outlook, Word or Excel document?

On: June 3, 2022

In: Technology

A recent report indicates that Microsoft Office applications could be exposed to homograph attacks based on internationalized domain names (IDNs). In a successful attack, a target user scrolling over aRead More →

CVE-2022-26134: Zero-day remote code execution vulnerability affecting Confluence Server and Data Center

On: June 3, 2022

In: Vulnerabilities

Information security specialists at Volexity have discovered a remote code execution (RCE) vulnerability that resides in the latest, fully patched versions of the Atlassian Confluence Server. Tracked as CVE-2022-26134, theRead More →

Warning: New cyber criminal group Karakurt is extorting millions of companies around the world

On: June 2, 2022

In: Data Security

The U.S. Cybersecurity and Infrastructure Security Agency (CISA) has issued a security alert about Karakurt, a cybercriminal extortion group that extracts data from affected organizations and threatens to sell orRead More →

Full names, IDs, email addresses, and phone numbers of hacked Verizon employees: Customers could experience increased SIM swap attacks

On: May 30, 2022

In: Incidents

A report from Motherboard details the detection of a data breach affecting the telephone company Verizon, an incident that would have put at risk the personal records of thousands ofRead More →

Indian HDFC Bank deposits millions in customers’ accounts by mistake. Hacking incident or just a software flaw?

On: May 30, 2022

In: Incidents

Last weekend, HDFC Bank clients received a message showing a non-exact balance in their accounts, making them believe they had received a huge amount of money for free, even topingRead More →

Black Cat ransomware shuts down Austria’s passport and transport departments after encrypting 3,000 computers

On: May 26, 2022

In: Incidents

Black Cat ransomware group claims to have hacked some computer systems in the state of Carinthia, Austria, demanding a ransom of $5 million in cryptocurrency in exchange for resetting theRead More →

How hackers took control of 100 email accounts of employees of RT and other Russian organizations for cyber spying purposes?

On: May 25, 2022

In: Data Security

A recent investigation details how an unidentified hacking group compromised the email accounts of entities linked to the Russian government using four separate phishing operations in early 2022. According toRead More →

Popular Python package ctx Python and PHP library were compromised and injected with a backdoor

On: May 24, 2022

In: Malware

Researchers report that ctx Python, one of the most popular packages of the Python programming language, would have been compromised by threat actors for the injection of a backdoor impossibleRead More →

Security breach

More than 770 million records available through the Travis CI API: Anyone can extract tokens, secrets, and other credentials associated with services like GitHub, AWS, and Docker Hub

Ransomware attack targeting public schools in New Jersey forces cancellation of final exams

How to hide spoofed malicious domain when users hover above a link in a phishing email in Microsoft Outlook, Word or Excel document?

CVE-2022-26134: Zero-day remote code execution vulnerability affecting Confluence Server and Data Center

Warning: New cyber criminal group Karakurt is extorting millions of companies around the world

Full names, IDs, email addresses, and phone numbers of hacked Verizon employees: Customers could experience increased SIM swap attacks

Black Cat ransomware shuts down Austria’s passport and transport departments after encrypting 3,000 computers

How hackers took control of 100 email accounts of employees of RT and other Russian organizations for cyber spying purposes?

Popular Python package ctx Python and PHP library were compromised and injected with a backdoor

TunnelCrack: Two serious vulnerabilities in VPNs discovered, had been dormant since 1996

How to easily hack TP-Link Archer AX21 Wi-Fi router

US Govt wants new label on secure IoT devices or wants to discourage use of Chinese IoT gadgets

24,649,096,027 (24.65 billion) account usernames and passwords have been leaked by cyber criminals till now in 2022

How Chinese APT hackers stole Lockheed Martin F-35 fighter plane to develop its own J-20 stealth fighter aircraft [VIDEO]

Massive NVIDIA GPU Exploit Found. How Hackers Can Take Down 35% of AI Systems in Cloud!

Blast-RADIUS Attack Exploting Critical RADIUS Flaw Could Compromise Your Network

14 Million Servers Vulnerable to Critical OpenSSH Bug: Become Remote Admin with CVE-2024-6387

How Safe is Your TinyProxy? Step-by-Step Guide to Exploiting Tinyproxy’s Zero Day Vulnerability

Eternal Malware: CVE-2024-3400 Rootkits Persist Through Palo Alto Firewalls Updates and Resets

WinRAR and ZIP File Exploits: This ZIP File Hack Could Let Malware Bypass Your Antivirus

5 Techniques Hackers Use to Jailbreak ChatGPT, Gemini, and Copilot AI systems

This Hacker Toolkit Can Breach Any Air-Gapped System – Here’s How It Works

Hacking Pagers to Explosions: Israel’s Covert Cyber-Physical Sabotage Operation Against Hezbollah!

Five Techniques for Bypassing Microsoft SmartScreen and Smart App Control (SAC) to Run Malware in Windows

How Millions of Phishing Emails were Sent from Trusted Domains: EchoSpoofing Explained

How to implement Principle of Least Privilege(Cloud Security) in AWS, Azure, and GCP cloud

The 11 Essential Falco Cloud Security Rules for Securing Containerized Applications at No Cost

Hack-Proof Your Cloud: The Step-by-Step Continuous Threat Exposure Management CTEM Strategy for AWS & AZURE

Web-Based PLC Malware: A New Technique to Hack Industrial Control Systems

This Hacker Toolkit Can Breach Any Air-Gapped System – Here’s How It Works

Hackers’ Guide to Rogue VM Deployment: Lessons from the MITRE hack

Eternal Malware: CVE-2024-3400 Rootkits Persist Through Palo Alto Firewalls Updates and Resets

Major Python Infrastructure Breach – Over 170K Users Compromised. How Safe Is Your Code?

How to exploit Windows Defender Antivirus to infect a device with malware

Cyber Security Channel

US Govt wants new label on secure IoT devices or wants to discourage use of Chinese IoT gadgets

24,649,096,027 (24.65 billion) account usernames and passwords have been leaked by cyber criminals till now in 2022

How Chinese APT hackers stole Lockheed Martin F-35 fighter plane to develop its own J-20 stealth fighter aircraft [VIDEO]