My Courses
-
A critical flaw in HTTP/1.1 has put millions of websites at risk of being seized by malicious actors.
A critical vulnerability in the HTTP/1.1 protocol poses a significant threat to tens of millions of websites, enabling potential hostile takeovers through sophisticated desynchronization attacks….
-
Microsoft has revealed a vulnerability in Exchange Server that allows for discreet access to cloud services in hybrid configurations.
Microsoft has issued an advisory regarding a high-severity security vulnerability affecting on-premise versions of Exchange Server, identified as CVE-2025-53786, which has a CVSS score of…
-
CISA Issues Urgent Advisory Calling on Federal Agencies to Fix Exchange Server Flaw by Monday.
The Cybersecurity and Infrastructure Security Agency (CISA) has issued an emergency advisory mandating all Federal Civilian Executive Branch agencies to urgently address a newly identified…
-
The ‘DarkWeb’ firmware for Flipper Zero circumvents rolling code security systems used by several leading car manufacturers.
A new custom firmware for the Flipper Zero multi-tool device poses a significant threat to vehicle security by reportedly bypassing the rolling code systems used…
-
WhatsApp has removed 6.8 million accounts associated with harmful activities.
WhatsApp has successfully dismantled 6.8 million accounts linked to fraudulent activities in the first half of 2024, marking a significant escalation in its battle against…
-
A hacker has been extradited to the United States for his involvement in tax fraud schemes that resulted in the theft of more than $2.5 million.
A sophisticated cybercriminal operation targeting American tax preparation businesses has led to the extradition of Nigerian national Chukwuemeka Victor Amachukwu from France to face federal…
-
Cybercriminals are exploiting SVG files by embedding harmful JavaScript to deploy malware on Windows systems.
Cybercriminals have started to exploit Scalable Vector Graphics (SVG) files as advanced attack vectors, turning seemingly innocuous image files into powerful phishing tools capable of…
-
SocGholish malware is distributed through advertising tools and provides access to various groups such as LockBit and Evil Corp.
The threat actors behind the SocGholish malware have been observed utilising Traffic Distribution Systems (TDSs) such as Parrot TDS and Keitaro TDS to filter and…
-
WhatsApp developers are facing threats from malicious npm packages that come with a remote kill switch.
Two malicious npm packages, identified as Naya-Flore and Nvlore-Hsc, have emerged as sophisticated threats targeting WhatsApp developers through a remote-controlled destruction mechanism capable of wiping…
-
SonicWall has verified that there are no new zero-day vulnerabilities in SSLVPN, stating that the recent ransomware attack is associated with an older vulnerability.
SonicWall has officially addressed concerns regarding a potential new zero-day vulnerability in its Secure Sockets Layer Virtual Private Network (SSLVPN) products. In a statement to…
