Meta identified and removed hundreds of fake accounts on Facebook and Instagram which were being used by three different Advanced Persistent Threats (APTs) to target individuals in South Asia. These accounts posed…
Category: English
Exploiting PaperCut Vulnerability
Cybersecurity researchers have discovered a way to exploit a critical flaw in PaperCut servers (CVE-2023-27350) that bypasses current detections. On March 8, 2023, the vulnerability was patched by the Australian company, however…
Microsoft Azure Vulnerabilities Patched
Three security vulnerabilities have been revealed in Microsoft Azure API Management service, which could be exploited by malicious actors to access confidential information or backend services. These vulnerabilities include two server-side request…
Chinese Hacking Group Reappears
Earth Longzhi, a state-sponsored Chinese hacking group, has reappeared after 6 months of no activity with a new campaign that is targeting government, healthcare, tech, and manufacturing entities in Taiwan, Thailand, the…
Google Launches Passkeys
Google has started to roll out passkeys, a more secure way to sign into apps and websites without a traditional password, across all platforms with Google Accounts. Passkeys are stored locally on…
Full-Fledged vCISO: Answers & Automation
Nearly half of managed service provider (MSP) customers have experienced a cyberattack in the past year, making small and medium-sized businesses (SMBs) a popular target for cybercriminals. To address this, Virtual Chief…
Critical Vulnerability Alerts
The Cybersecurity and Infrastructure Security Agency (CISA) has released an Industrial Control Systems (ICS) advisory about a critical vulnerability (CVE-2023-2131) with a Common Vulnerability Scoring System (CVSS) rating of 10.0, which could…
Exploiting Critical DVR Vulnerabilities
Fortinet has observed an increase in attempts to exploit a five-year-old authentication bypass vulnerability (CVE-2018-9995, CVSS score: 9.8) affecting TBK digital video recording (DVR) devices, as well as another critical vulnerability (CVE-2016-20016,…
Apple, Google Unite on Security
Apple and Google have joined forces to develop a proposed industry-wide standard that will address safety concerns and notify users when their devices are being monitored without their knowledge or consent. This…
Bitskrieg: Cyberwarfare Threats
John Arquilla’s book Bitskrieg: The New Challenge of Cyberwarfare outlines the threats posed by the malicious use of digital resources connected over the Internet. Arquilla discusses the need for stronger encryption, cloud…