Latest news

Vulnerability in OAuth, XSS for millions of websites
Blog

Vulnerability in OAuth, XSS for millions of websites

31 July 2024 dark6

A critical vulnerability within the OAuth authentication standard poses a substantial risk to millions of websites and their users, potentially...
Read more 0
RansomHub ransomware: a new threat in the cybercrime landscape
Ransomware

RansomHub ransomware: a new threat in the cybercrime landscape

31 July 2024 dark6

Cybersecurity researchers at Lab52 have highlighted the rise of the RansomHub ransomware gang, which employs a mix of old and...
Read more 0
Ongoing exploitation of VMware ESXi vulnerability CVE-2024-37085
Vulnerability

Ongoing exploitation of VMware ESXi vulnerability CVE-2024-37085

31 July 2024 dark6

A vulnerability in VMware’s ESXi virtualization platform, identified as CVE-2024-37085, continues to leave thousands of servers susceptible to ransomware attacks....
Read more 0
Leveraging AI/ML to improve MDR efficiency and reduce false positives
Malware

Leveraging AI/ML to improve MDR efficiency and reduce false positives

31 July 2024 dark6

Key Findings from the 2023 MDR Analysis Report: AI/ML in Incident Detection: Challenges and Solutions: Balancing Detection and False Positives:...
Read more 0
EchoSpoofing campaign exploits Proofpoint vulnerability
Vulnerability

EchoSpoofing campaign exploits Proofpoint vulnerability

30 July 2024 dark6

An unknown attacker exploited a vulnerability in Proofpoint’s email routing settings to send mass fraudulent messages impersonating well-known companies such...
Read more 0
Russian information operations target French snap elections: operation “Doppelgänger”
Hacktivism

Russian information operations target French snap elections: operation “Doppelgänger”

30 July 2024 dark6

From early June to late July 2024, Russian actors conducted a series of sophisticated information operations under the code name...
Read more 0
Ransomware threats loom over Paris 2024 olympics
Ransomware

Ransomware threats loom over Paris 2024 olympics

29 July 2024 dark6

A recent study by ExtraHop has highlighted the near inevitability of ransomware attacks targeting the Paris 2024 Olympics. The event’s...
Read more 0
Apache superset security update: addressing CVE-2024-34693
Vulnerability

Apache superset security update: addressing CVE-2024-34693

29 July 2024 dark6

The Apache Software Foundation has released critical security updates to mitigate an arbitrary file read vulnerability (CVE-2024-34693) in Apache Superset....
Read more 0
Kaspersky unveils the return of Mandrake Android spyware on Google Play Store
Spyware

Kaspersky unveils the return of Mandrake Android spyware on Google Play Store

29 July 2024 dark6

Kaspersky researchers have uncovered the resurgence of the Mandrake Android spyware, which has been active on the Google Play Store...
Read more 0
European parliament member targeted by sophisticated spyware attack
Spyware

European parliament member targeted by sophisticated spyware attack

28 July 2024 dark6

In a disturbing development, German Member of the European Parliament (MEP) Daniel Freund revealed that he was the target of...
Read more 0
False File Immutability (FFI) Vulnerability
Vulnerability

False File Immutability (FFI) Vulnerability

23 July 2024 dark6

A newly discovered vulnerability class, termed “False File Immutability” (FFI), has been identified by Gabriel Landau of Elastic Security, exposing...
Read more 0
Rapid7 Unveils Kimsuky APT Group’s Evolving Tactics
Cybercrime

Rapid7 Unveils Kimsuky APT Group’s Evolving Tactics

23 July 2024 dark6

Rapid7, a leading cybersecurity firm, has released an in-depth report on the Kimsuky advanced persistent threat (APT) group, a North...
Read more 0