Update for Apache OFBiz Resolves Critical Vulnerability Causing Remote Code Execution
Sep 06, 2024Ravie LakshmananCybersecurity / Vulnerability An updated patch has rectified a significant security issue in the Apache OFBiz open-source...
been
NIST Cybersecurity Framework (CSF) and CTEM – A Perfect Match
Sep 05, 2024The Hacker NewsThreat Detection / Vulnerability Management In the past ten years, the National Institute of Standards and...
NIST Cybersecurity Framework (CSF) and CTEM – Perfect Synergy
Sep 05, 2024The Hacker NewsThreat Detection / Vulnerability Management A decade has passed since the National Institute of Standards and...
The NIST Cybersecurity Framework (CSF) and CTEM – Enhanced in Conjunction
September 05, 2024The Hacker NewsThreat Detection / Vulnerability Management A full decade has passed since the National Institute of Standards...
Activists Utilize WinRAR Vulnerability in Offensives Against Russia and Belarus
Sep 03, 2024Ravie LakshmananRansomware / Malware An activist faction identified as Head Mare has been connected to digital offensives exclusively...
Activists Utilize WinRAR Weakness in Incursions Against Russia and Belarus
Sep 03, 2024Ravie LakshmananRansomware / Malware A rebel group called Head Mare has been implicated in cyber assaults specifically directed...
Hackers Could Potentially Attain Unrestricted Entry Through New Deficiencies in Microsoft macOS Applications
Researchers have unveiled eight vulnerabilities in Microsoft macOS apps that hackers could exploit to achieve increased privileges or access confidential...
Volt Tempest Hackers Utilize Zero-Day Vulnerability in Versa Director Servers Used by Managed Services Providers and Internet Service Providers
Chinese state-sponsored hacking group, Volt Tempest, has been observed exploiting a zero-day vulnerability present in the Versa Director servers, which...
Unauthorized Coterie Exploit WPS Office Imperfection to Deploy SpyGlace Backdoor
Aug 28, 2024Ravie LakshmananCyber Attack / Vulnerability An aligned with South Korea cyber espionage has been associated with the zero-day...
BlackByte Ransomware Utilizes VMware ESXi Vulnerability in Latest Wave of Attacks
Researchers have detected that the group responsible for the BlackByte ransomware attack has likely been exploiting a recent fixed vulnerability...
Crucial WPML Plugin Vulnerability Exposes WordPress Websites to Remote Code Execution
August 28, 2024Ravie LakshmananWordPress Security / Website Protection An important security vulnerability has been revealed in the WPML WordPress multilingual...
Exploits by Chinese Volt Typhoon Targeting U.S. and Global IT Sectors Due to Versa Director Vulnerability
With a moderate degree of certainty, the hacking group associated with China known as Volt Typhoon has been connected to...
A description of ‘Open Source AI’ is provided
In recent times, the concept of "Open Source AI" has been extensively utilized, however, its specific meaning has remained uncertain...
Significant Weaknesses in Traccar GPS System Make Users Vulnerable to Remote Attacks
Aug 26, 2024Ravie LakshmananSoftware Security / Vulnerability Two security vulnerabilities have surfaced in the open-source Traccar GPS tracking system that...
Over 75% of Technology Leaders Are Concerned About Security Threats to SaaS, Survey Discloses
Software-as-a-Service platforms have always been focal points of cybersecurity risks. A recent investigation reveals that these dangers are still a...
