attack surface
Riskiest Corporate Attack Surface: Remote Access Infrastructure
Exposed Login Panels Pose Serious Security Risk for Companies
Latest
ransomware
FBI and CISA Warn of Rising Medusa Ransomware Threats
Cybercriminal Group Medusa Targets Critical Infrastructure Sectors A sophisticated cybercriminal group known as Medusa has been targeting many critical infrastructure sectors in the United States.
api
API Hooking Vulnerability Exposed in Obscure#BAT Malware
New Advanced Persistent Threat Utilizes Obfuscated Batch Files and PowerShell Scripts to Deliver Rootkit Researchers have discovered a sophisticated attack chain that uses multiple layers of obfuscated batch files and PowerShell scripts to deliver a persistent rootkit.
IVI Systems
Real-Time Driver Tracking Vulnerability Found in Cars
Researchers Uncover Security Flaws in Aftermarket In-Vehicle Infotainment Systems In a groundbreaking study, cy
cybersecurity
Abu Dhabi Unveils Cybersecurity Guidelines for Healthcare
UAE Strengthens Healthcare Cybersecurity Regulations Amid Rising Attacks
OpenAI
Proof-of-Concept: OpenAI's Operator Agent Used for Phishing
Researchers at Symantec have recently uncovered a troubling vulnerability in OpenAI's Operator agent, a cutting-edge AI tool currently in research preview.
NIST
NIST Sets Standards for Differentially Private Data Protection
NIST's new guidelines build upon their 2017 publication, "Differential Privacy: A Primer for a Digital Age."
APT
Massachusetts Power Hit by Volt Typhoon
In a troubling development for US national security, the electric grid has been compromised in a prolonged attack lasting over 300 days. The attack was conducted by the Voltzite subgroup of the Chinese advanced persistent threat (APT) hacking collective.
apple
Apple Patches WebKit Zero-Day Exploit
iOS Users Targeted in Highly Sophisticated Cyberattack. In a recent security update, Apple disclosed that a "highly sophisticated" attack had been carried out against select iPhone users.
Botnet 'Ballista' Targets TP-Link Routers
Unpatched Vulnerabilities Once Again Exploited in Botnet Campaign. A critical internet of things (IoT) vulnerability, first exploited in the notorious Mirai botnet attack, is being used once again in a new botnet campaign.
Google's Latest Update Lets You Track People
Google has quietly turned its device-recovery tool into a people-tracking platform. While it’s marketed as consensual and helpful, the deeper implications for privacy, coercion, and surveillance creep are serious—and shouldn’t be ignored.
github
Air-Gapped Systems: The Ultimate Network Security Measure
An air-gapped system is a computer or network physically isolated from unsecured networks, including the Internet and local area networks.