CVE-2024-12856 flaw in Four-Faith routers enables OS command injection via default credentials, exposing over 15,000 devices ...

OtterCookie, a new JavaScript malware by North Korean hackers, steals data via Socket.IO and funds nuclear programs.

Cloud Atlas exploits CVE-2018-0802 to deploy VBCloud malware, targeting 80% of victims in Russia for data theft, system ...

CVE-2024-3393, a critical PAN-OS flaw (CVSS 8.7), allows unauthenticated DoS attacks; update to the latest patches to secure ...

D-Link vulnerabilities power Mirai and Kaiten botnets, spreading globally. CAPSAICIN botnet targets East Asia with intense ...

The Apache Software Foundation (ASF) has released patches to address a maximum severity vulnerability in the MINA Java ...

Japanese and U.S. authorities have formerly attributed the theft of cryptocurrency worth $308 million from cryptocurrency ...

The U.S. Cybersecurity and Infrastructure Security Agency (CISA) on Monday added a now-patched high-severity security flaw impacting Acclaim Systems USAHERDS to the Known Exploited Vulnerabilities ( ...

Junior Barros De Oliveira, 29, of Curitiba, Brazil has been charged with four counts of extortionate threats involving ...

The trends shaping 2025 show the importance of adopting forward-thinking strategies to address evolving threats. From ...

PyPI packages "Zebo" and "Cometlogger" downloaded 280+ times, exfiltrate data with obfuscation and anti-detection.

Apache releases a security update for CVE-2024-56337, addressing RCE risks in Tomcat servers with critical configuration ...