Month: November 2024

Researchers Warn of Privilege Escalation Risks in Google’s Vertex AI ML Platform

• Blog

Researchers Warn of Privilege Escalation Risks in Google’s Vertex AI ML Platform

November 21, 2024

Cybersecurity researchers have disclosed two security flaws in Google’s Vertex machine learning (ML) platform that, if successfully...

Commit -m "Read More"

Phishing Attacks Exploit Microsoft Visio Files and SharePoint

• Blog

Phishing Attacks Exploit Microsoft Visio Files and SharePoint

November 21, 2024

Threat actors are exploiting Microsoft Visio files and SharePoint to launch two-step phishing attacks, according to researchers...

Commit -m "Read More"

Iranian Hackers Deploy WezRat Malware in Attacks Targeting Israeli Organizations

• Blog

Iranian Hackers Deploy WezRat Malware in Attacks Targeting Israeli Organizations

November 21, 2024

Cybersecurity researchers have shed light on a new remote access trojan and information stealer used by Iranian...

Commit -m "Read More"

Warning: DEEPDATA Malware Exploiting Unpatched Fortinet Flaw to Steal VPN Credentials

• Blog

Warning: DEEPDATA Malware Exploiting Unpatched Fortinet Flaw to Steal VPN Credentials

November 21, 2024

A threat actor known as BrazenBamboo has exploited an unresolved security flaw in Fortinet’s FortiClient for Windows...

Commit -m "Read More"

PAN-OS Firewall Vulnerability Under Active Exploitation – IoCs and Patch Released

• Blog

PAN-OS Firewall Vulnerability Under Active Exploitation – IoCs and Patch Released

November 21, 2024

Palo Alto Networks has released new indicators of compromise (IoCs) a day after the network security vendor...

Commit -m "Read More"

Urgent: Critical WordPress Plugin Vulnerability Exposes Over 4 Million Sites

• Blog

Urgent: Critical WordPress Plugin Vulnerability Exposes Over 4 Million Sites

November 21, 2024

A critical authentication bypass vulnerability has been disclosed in the Really Simple Security (formerly Really Simple SSL)...

Commit -m "Read More"

NSO Group Exploited WhatsApp to Install Pegasus Spyware Even After Meta’s Lawsuit

• Blog

NSO Group Exploited WhatsApp to Install Pegasus Spyware Even After Meta’s Lawsuit

November 21, 2024

Legal documents released as part of an ongoing legal tussle between Meta’s WhatsApp and NSO Group have...

Commit -m "Read More"

Fake Discount Sites Exploit Black Friday to Hijack Shopper Information

• Blog

Fake Discount Sites Exploit Black Friday to Hijack Shopper Information

November 21, 2024

A new phishing campaign is targeting e-commerce shoppers in Europe and the United States with bogus pages...

Commit -m "Read More"

Beyond Compliance: The Advantage of Year-Round Network Pen Testing

• Blog

Beyond Compliance: The Advantage of Year-Round Network Pen Testing

November 21, 2024

IT leaders know the drill—regulators and cyber insurers demand regular network penetration testing to keep the bad...

Commit -m "Read More"

Gmail’s New Shielded Email Feature Lets Users Create Aliases for Email Privacy

• Blog

Gmail’s New Shielded Email Feature Lets Users Create Aliases for Email Privacy

November 21, 2024

Google appears to be readying a new feature called Shielded Email that allows users to create email...

Commit -m "Read More"