A proof-of-concept (PoC) exploit has been released for a now-patched security flaw impacting Windows Lightweight Directory Access...
Critical Deadline: Update Old .NET Domains Before January 7, 2025 to Avoid Service Disruption
3 min read
Microsoft has announced that it's making an "unexpected change" to the way .NET installers and archives are...
Apple to Pay Siri Users $20 Per Device in Settlement Over Accidental Siri Privacy Violations
2 min read
Apple has agreed to pay $95 million to settle a proposed class action lawsuit that accused the...
Details have emerged about three now-patched security vulnerabilities in Dynamics 365 and Power Apps Web API that...
In the past year, cross-domain attacks have gained prominence as an emerging tactic among adversaries. These operations...
Cybersecurity researchers have discovered a malicious package on the npm package registry that masquerades as a library...
German prosecutors have charged three Russian-German nationals for acting as secret service agents for Russia.
The individuals, named...
Threat hunters have disclosed a new "widespread timing-based vulnerability class" that leverages a double-click sequence to facilitate...
Iranian and Russian Entities Sanctioned for Election Interference Using AI and Cyber Tactics
3 min read
The U.S. Treasury Department's Office of Foreign Assets Control (OFAC) on Tuesday leveled sanctions against two entities...
The United States Treasury Department said it suffered a "major cybersecurity incident" that allowed suspected Chinese threat...
The U.S. Department of Justice (DoJ) has issued a final rule carrying out Executive Order (EO) 14117,...
Misconfigured Kubernetes RBAC in Azure Airflow Could Expose Entire Cluster to Exploitation
4 min read
Cybersecurity researchers have uncovered three security weaknesses in Microsoft's Azure Data Factory Apache Airflow integration that, if...
The United States Department of Health and Human Services' (HHS) Office for Civil Rights (OCR) has proposed...
News has been making headlines over the weekend of the extensive attack campaign targeting browser extensions and...
A new attack campaign has targeted known Chrome browser extensions, leading to at least 16 extensions being...
A high-severity flaw impacting select Four-Faith routers has come under active exploitation in the wild, according to...
North Korean threat actors behind the ongoing Contagious Interview campaign have been observed dropping a new JavaScript...
The threat actor known as Cloud Atlas has been observed using a previously undocumented malware called VBCloud...
Palo Alto Networks has disclosed a high-severity vulnerability impacting PAN-OS software that could cause a denial-of-service (DoS)...
Cybersecurity researchers are warning about a spike in malicious activity that involves roping vulnerable D-Link routers into...
