Month: January 2025

15,000+ Four-Faith Routers Exposed to New Exploit Due to Default Credentials

• Blog

15,000+ Four-Faith Routers Exposed to New Exploit Due to Default Credentials

January 6, 2025

A high-severity flaw impacting select Four-Faith industrial routers has come under active exploitation in the wild, according...

Commit -m "Read More"

U.S. Sanctions Chinese Cybersecurity Firm for State-Backed Hacking Campaigns

• Blog

U.S. Sanctions Chinese Cybersecurity Firm for State-Backed Hacking Campaigns

January 6, 2025

The U.S. Treasury Department’s Office of Foreign Assets Control (OFAC) on Friday issued sanctions against a Beijing-based...

Commit -m "Read More"

Misconfigured Kubernetes RBAC in Azure Airflow Could Expose Entire Cluster to Exploitation

• Blog

Misconfigured Kubernetes RBAC in Azure Airflow Could Expose Entire Cluster to Exploitation

January 6, 2025

Cybersecurity researchers have uncovered three security weaknesses in Microsoft’s Azure Data Factory Apache Airflow integration that, if...

Commit -m "Read More"

FTC Warns Immigrants About Rising Social Media Immigration Scams

• Blog

FTC Warns Immigrants About Rising Social Media Immigration Scams

January 6, 2025

The Federal Trade Commission (FTC) has issued an urgent warning about a surge in immigration scams targeting...

Commit -m "Read More"

Malicious Obfuscated NPM Package Disguised as an Ethereum Tool Deploys Quasar RAT

• Blog

Malicious Obfuscated NPM Package Disguised as an Ethereum Tool Deploys Quasar RAT

January 6, 2025

Cybersecurity researchers have discovered a malicious package on the npm package registry that masquerades as a library...

Commit -m "Read More"

AI-Powered Investment Scams Surge: How ‘Nomani’ Steals Money and Data

• Blog

AI-Powered Investment Scams Surge: How ‘Nomani’ Steals Money and Data

January 6, 2025

Cybersecurity researchers are warning about a new breed of investment scam that combines AI-powered video testimonials, social...

Commit -m "Read More"

FortiGuard Labs Links New EC2 Grouper Hackers to AWS Credential Exploits

• Blog

FortiGuard Labs Links New EC2 Grouper Hackers to AWS Credential Exploits

January 6, 2025

Researchers at FortiGuard Labs have identified a prolific attacker group known as “EC2 Grouper” who frequently exploits...

Commit -m "Read More"

Exposed Cloud Server Tracks 800,000 Volkswagen, Audi, and Skoda EVs

• Blog

Exposed Cloud Server Tracks 800,000 Volkswagen, Audi, and Skoda EVs

January 6, 2025

SUMMARY A recent report from the German news outlet Spiegel has revealed a significant security breach impacting...

Commit -m "Read More"

SquareX Researchers Expose OAuth Attack on Chrome Extensions Days Before Major Breach

• Blog

SquareX Researchers Expose OAuth Attack on Chrome Extensions Days Before Major Breach

January 6, 2025

SquareX warns of OAuth attacks targeting Chrome extensions, exposing users to session hijacking and data theft. Secure...

Commit -m "Read More"

16 Chrome Extensions Hacked in Large-Scale Credential Theft Scheme

• Blog

16 Chrome Extensions Hacked in Large-Scale Credential Theft Scheme

January 6, 2025

SUMMARY A sophisticated attack campaign has compromised at least 16 Chrome browser extensions, exposing over 600,000 users...

Commit -m "Read More"