A significant security vulnerability in Craft CMS, one of the most widely used PHP-based content management systems, has been uncovered, allowing unauthenticated remote code execution (RCE) under default configurations. The
All posts by admin
Authorities Arrested LockBit Ransomware Developer & Team Core Member
U.S. authorities have unveiled charges against Rostislav Panev, a dual Russian-Israeli national, for his alleged role as a key developer of the notorious LockBit ransomware group. Panev, 51, was arrested
US Ban on TP-Link Routers More About Politics Than Exploitation Risk
While a number of threat groups have used TP-Link bugs to infiltrate networks, a proposed ban of the company’s popular routers is more about geopolitics than actual cybersecurity — and
Malicious Apps On Amazon Appstore Records Screen & Intercept OTP’s
Recently, researchers have discovered a relatively harmless app called “BMI CalculationVsn” on the Amazon App Store, masquerading as a normal health tool to steal data. This application performs malicious actions
NetWalker Ransomware Operator Sentenced For Hacking Hundreds Of Organizations
A Romanian man, Daniel Christian Hulea, 30, was sentenced to 20 years in prison for his role in the NetWalker ransomware attacks, a sophisticated cybercrime operation that targeted hundreds of
Krispy Kreme Hack Claimed by Play Ransomware – Threatens to Release Data
The beloved doughnut chain Krispy Kreme has fallen victim to a significant cybersecurity incident, with the notorious Play ransomware group claiming responsibility for the attack. The attackers have threatened to
Raccoon Infostealer Admin Arrested for Hacking Computers
Mark Sokolovsky, a 28-year-old Ukrainian national, has been sentenced to 60 months in federal prison for his role in operating the notorious “Raccoon Infostealer” malware-as-a-service (MaaS). The sentencing marks a
CISA Urges Use of End-to-End Encrypted Messaging Services like Signal, Following U.S. Telecoms Hack
The Cybersecurity and Infrastructure Security Agency (CISA) has issued a stark warning to senior government officials and political figures to adopt end-to-end encrypted messaging services like Signal. This recommendation follows
Threat Actors Abusing Cloudflare Workers Service To Deliver Weaponized Application
A sophisticated attack campaign leveraging Cloudflare’s Workers service to distribute malicious applications disguised as legitimate software. The Computer Emergency Response Team of Ukraine (CERT-UA) reported on December 17, 2024, that
Okta Warns of Phishing Attacks Mimic “Okta Support” to Steal MFA Tokens
Okta, a leading identity and access management platform, has issued a warning about an increase in sophisticated phishing attacks targeting its customers by impersonating the company’s support team. These attacks
