LockBit's developer charged for enabling global ransomware attacks netting $500M; U.S. leads extradition effort.
CVE-2024-53677: Critical 9.5 CVSS Apache Struts flaw enables remote code execution; patch now in version 6.4.0.
Lazarus Group's CookiePlus malware targets nuclear engineers, showcasing DPRK's evolving arsenal and $1.34B in 2024 crypto ...
Phishers exploit HubSpot Free Forms to target 20,000 European users, compromising Azure accounts and bypassing security ...
The developers of Rspack have revealed that two of their npm packages, @rspack/core and @rspack/cli, were compromised in a ...
The security vendor said CVE-2024-12727 impacts about 0.05% of devices, whereas CVE-2024-12728 affects approximately 0.5% of ...
Fortinet EMS flaw (CVE-2023-48788, CVSS 9.3) exploited globally, dropping remote access tools and stealing credentials.
The Russia-linked APT29 threat actor has been observed repurposing a legitimate red teaming attack methodology as part of ...
Default passwords on Juniper SSR devices exploited by Mirai botnet malware for DDoS attacks. Update credentials and audit ...
CISA lists CVE-2024-12356, a critical BeyondTrust flaw, as actively exploited. Update on-prem systems to patch ...
UAC-0125 uses Cloudflare Workers to distribute fake Army+ malware, targeting Ukraine's military for remote access ...
Fortinet patches critical flaws in FortiWLM and FortiManager. CVE-2023-34990 risks sensitive data, while CVE-2024-48889 ...