Internet Security

Palo Alto warns of brute-force login attempts on PAN-OS GlobalProtect gateways indicating possible upcoming attacks

April 11, 2025 add comment
Experts warn of brute-force login attempts on PAN-OS GlobalProtect gateways following increased scanning activity on its devices. Palo Alto Networks reports brute-force login attempts on PAN-OS GlobalProtect gateways. The... Read more »

Gamaredon targeted the military mission of a Western country based in Ukraine

April 11, 2025 add comment
Gamaredon targeted a foreign military mission in Ukraine with updated GammaSteel malware on Feb 26, 2025, per Symantec. Symantec Threat Hunter researchers reported that the Russia-linked APT group Gamaredon... Read more »

U.S. CISA adds Linux Kernel flaws to its Known Exploited Vulnerabilities catalog

April 10, 2025 add comment
U.S. Cybersecurity and Infrastructure Security Agency (CISA) adds Linux Kernel flaws to its Known Exploited Vulnerabilities catalog. The U.S. Cybersecurity and Infrastructure Security Agency (CISA) added Linux Kernel flaws, respectively tracked as... Read more »

AkiraBot: AI-Powered spam bot evades CAPTCHA to target 80,000+ websites

April 10, 2025 add comment
AkiraBot, a CAPTCHA-evading Python framework, has spammed over 80,000 websites with AI-generated messages, targeting small and medium-sized businesses. SentinelOne’s SentinelLabs researchers warn that AkiraBot, a spam framework, targets websites’... Read more »

An APT group exploited ESET flaw to execute malware

April 10, 2025 add comment
At least one APT group has exploited a vulnerability in ESET software to stealthily execute malware, bypassing security measures. Kaspersky researchers reported that an APT group, tracked as ToddyCat, has... Read more »

Oracle confirms the hack of two obsolete servers hacked. No Oracle Cloud systems or customer data were affected

April 10, 2025 add comment
Oracle confirmed a hacker stole credentials from two obsolete servers but said no Oracle Cloud systems or customer data were affected. Oracle confirmed a hacker stole and leaked credentials... Read more »

National Social Security Fund of Morocco Suffers Data Breach

April 9, 2025 add comment
Threat actor ‘Jabaroot’ claims breach of National Social Security Fund of Morocco, aiming to steal large volumes of sensitive citizen data. Resecurity has identified a threat actor targeting government... Read more »

Critical Fortinet FortiSwitch flaw allows remote attackers to change admin passwords

April 9, 2025 add comment
Fortinet addressed a critical vulnerability in its FortiSwitch devices that can be exploited to change administrator passwords remotely. Fortinet has released security updates to address a critical vulnerability, tracked... Read more »

The US Treasury’s OCC disclosed an undetected major email breach for over a year

April 9, 2025 add comment
The US Office of the Comptroller of the Currency (OCC) disclosed a major email breach compromising 100 accounts, undetected for over a year. The US Treasury’s Office of the... Read more »

U.S. CISA adds Gladinet CentreStack and ZTA Microsoft Windows Common Log File System (CLFS) Driver flaws to its Known Exploited Vulnerabilities catalog

April 9, 2025 add comment
U.S. Cybersecurity and Infrastructure Security Agency (CISA) adds Gladinet CentreStack and ZTA Microsoft Windows Common Log File System (CLFS) Driver flaws to its Known Exploited Vulnerabilities catalog. The U.S.... Read more »
Subscribe to our Newsletter