Category: IT security News

China-based APT41 Hackers Target Organizations Across Multiple Sectors in Various Countries Reports have surfaced revealing a concerning trend in cyber threats impacting organizations in the global shipping and logistics, media and entertainment, technology, and automotive sectors across Italy, Spain, Taiwan, Thailand, Turkey, and the U.K. The source of these attacks? None other than the prolific…

SolarWinds Security Flaws: A Hot Mess SolarWinds, the household name in IT management software, is back in the spotlight, and not for the right reasons this time. The company just found itself knee-deep in a swamp of critical security flaws that are putting its users’ sensitive information at risk. The vulnerabilities are found in its…

The Indian Crypto Heist: WazirX In the world of cryptocurrencies, the Indian exchange WazirX recently found itself in a bit of a pickle. A cyber attack targeted one of their multi-signature wallets, resulting in the unfortunate loss of a whopping $230 million in digital assets. It’s like a modern-day train robbery, but instead of bandits…

Unveiling HotPage: The Menace Lurking in Adware Disguise In a recent revelation by cybersecurity researchers, a sinister adware module named HotPage has been unmasked. This devious software cunningly presents itself as a tool to block advertisements and safeguard users from malicious websites. However, beneath this facade lies a malicious kernel driver component that serves as…

Bridging the Gap: The Beauty of Security Champion Programs In the dynamic world of cybersecurity, the relationship between Application Security (AppSec) teams and developers can often be perceived as a clash of priorities. AppSec professionals are constantly on high alert, battling an array of vulnerabilities, while developers are primarily focused on swiftly shipping code to…

Travel Industry Faces Rising Threats from Automated Attacks As the travel industry picks up momentum in the post-pandemic era, it is becoming a prime target for automated threats. According to a recent study by Imperva, a Thales company, the sector encountered almost 21% of all bot attack requests in the past year. This statistic sheds…

Cybersecurity Researchers Discover Vulnerabilities in SAP AI Core In a recent investigation, cybersecurity researchers have identified some security flaws in SAP AI Core, a cloud-based platform used for developing and deploying predictive AI workflows. These vulnerabilities could potentially be exploited by cyber attackers to obtain access tokens and sensitive customer data. The findings were uncovered…

Unknown Threat Actors Utilizing Open-Source Tools in Suspected Cyber Espionage Campaign Recently, there have been reports of unknown threat actors using open-source tools as part of a suspected cyber espionage campaign targeting governmental and private sector entities worldwide. Recorded Future’s Insikt Group, a prominent cybersecurity firm, is closely monitoring this activity, referring to the operation…

Meta suspends GenAI in Brazil due to privacy concerns In a recent turn of events, Meta, the parent company of Facebook, announced the suspension of its generative artificial intelligence (GenAI) tools in Brazil. This action comes following the issuance of a preliminary ban by Brazil’s data protection authority, ANPD, which raised concerns regarding Meta’s new…

Cisco Releases Patches to Fix Critical Security Flaw Cisco, a well-known name in the field of IT and networking, has recently issued patches to tackle a severe security vulnerability affecting their Smart Software Manager On-Prem (Cisco SSM On-Prem) software. The flaw, assigned the CVE-2024-20419 tracking number, has been gauged with the maximum CVSS score of…