Internet Security

B1ack’s Stash released 1 Million credit cards

February 21, 2025 add comment
Experts warn that the carding website B1ack’s Stash released a collection of over 1 million unique credit and debit cards. D3 Lab researchers reported that on February 19, 2025, the carding website B1ack’s... Read more »

U.S. CISA adds Craft CMS and Palo Alto Networks PAN-OS flaws to its Known Exploited Vulnerabilities catalog

February 21, 2025 add comment
U.S. Cybersecurity and Infrastructure Security Agency (CISA) adds Craft CMS and Palo Alto Networks PAN-OS vulnerabilities to its Known Exploited Vulnerabilities catalog. The U.S. Cybersecurity and Infrastructure Security Agency... Read more »

Atlassian fixed critical flaws in Confluence and Crowd

February 21, 2025 add comment
Australian software firm Atlassian patched 12 critical and high-severity flaws in Bamboo, Bitbucket, Confluence, Crowd, and Jira. Software firm Atlassian released security patches to address 12 critical- and high-severity... Read more »

Salt Typhoon used custom malware JumbledPath to spy U.S. telecom providers

February 21, 2025 add comment
China-linked cyber espionage group Salt Typhoon uses custom malware JumbledPath to on spy U.S. telecom providers. Cisco Talos researchers reported that China-linked APT group Salt Typhoon uses a custom-built... Read more »

NailaoLocker ransomware targets EU healthcare-related entities

February 20, 2025 add comment
NailaoLocker ransomware is a new threat that targeted European healthcare organizations from June to October 2024. Orange Cyberdefense CERT uncovered a malware campaign, tracked as The Green Nailao campaign,... Read more »

Microsoft fixed actively exploited flaw in Power Pages

February 20, 2025 add comment
Microsoft addressed a privilege escalation vulnerability in Power Pages, the flaw is actively exploited in attacks. Microsoft has addressed two critical vulnerabilities, tracked as CVE-2025-21355 (CVSS score: 8.6) and CVE-2025-24989 (CVSS... Read more »

Citrix addressed NetScaler console privilege escalation flaw

February 20, 2025 add comment
Citrix addressed a high-severity privilege escalation vulnerability impacting NetScaler Console and NetScaler Agent under certain conditions. Citrix released security updates to address a high-severity security vulnerability, tracked as CVE-2024-12284 (CVSS... Read more »

Palo Alto Networks warns that CVE-2025-0111 flaw is actively exploited in attacks

February 20, 2025 add comment
Palo Alto Networks warns that the vulnerability CVE-2025-0111 is actively exploited with two other flaws to compromise PAN-OS firewalls. Palo Alto Networks warns that threat actors are chaining the... Read more »

Russia-linked APTs target Signal messenger

February 19, 2025 add comment
Russia-linked threat actors exploit Signal ‘s “linked devices” feature to hijack accounts, per Google Threat Intelligence Group. Google Threat Intelligence Group (GTIG) researchers warn of multiple Russia-linked threat actors... Read more »

Venture capital firm Insight Partners discloses security breach

February 19, 2025 add comment
Venture capital firm Insight Partners suffered a cyberattack involving unauthorized access to its information systems. A cyber attack hit venture capital firm Insight Partners, threat actors gained unauthorized access... Read more »
Subscribe to our Newsletter