My Courses

FreePBX servers exploited by zero-day vulnerability

infosectoday.com

The Sangoma FreePBX Security Team has issued a critical advisory regarding an actively exploited zero-day vulnerability affecting FreePBX systems with an exposed Administrator Control Panel…

Continue

Visit Results
Can your security system monitor your employee’s generative AI prompts?

infosectoday.com

Generative AI platforms such as ChatGPT, Gemini, Copilot, and Claude are becoming increasingly prevalent in organisations. While these solutions enhance efficiency across various tasks, they…

Continue

Visit Results
Storm-0501 utilizes Entra ID to extract and erase Azure data during hybrid cloud attacks

infosectoday.com

The financially motivated threat actor known as Storm-0501 has been observed refining its tactics to conduct data exfiltration and extortion attacks targeting cloud environments. Unlike…

Continue

Visit Results
First AI-driven ransomware leveraging OpenAI model

infosectoday.com

ESET, a cybersecurity company, has disclosed the discovery of an artificial intelligence (AI)-powered ransomware variant codenamed PromptLock. Written in Golang, this newly identified strain utilises…

Continue

Visit Results
Anthropic AI used for cybercrime

infosectoday.com

A new report from Anthropic reveals that criminals are increasingly using AI to manage various aspects of their operations. The findings indicate that AI is…

Continue

Visit Results
Counterfeit PDF editing software downloads TamperedChef malware

infosectoday.com

Cybersecurity researchers have uncovered a sophisticated cybercrime campaign that employs malvertising techniques to redirect victims to fraudulent websites, ultimately delivering a new information stealer known…

Continue

Visit Results
Visual Studio Code vulnerability allows deleted extension takeover

infosectoday.com

Cybersecurity researchers have uncovered a significant loophole in the Visual Studio Code Marketplace that enables threat actors to reuse names of previously removed extensions. Software…

Continue

Visit Results
s1ngularity Nx attack exposes GitHub credentials

infosectoday.com

The maintainers of the Nx build system have issued a warning regarding a supply chain attack that enabled attackers to publish malicious versions of the…

Continue

Visit Results
Git vulnerability CVE-2025-48384 allows remote code execution

infosectoday.com

CVE-2025-48384 is a recently patched vulnerability in the widely used distributed revision control system Git, which is currently being exploited by attackers. The US Cybersecurity…

Continue

Visit Results
Over 300,000 Plex Media Server installations remain susceptible to exploitation due to CVE-2025-34158

infosectoday.com

Over 300,000 internet-facing Plex Media Server instances remain vulnerable to the critical CVE-2025-34158, despite a fix being issued earlier this month. Plex Media Server (PMS)…

Continue

Visit Results

Share this: