Phishing attacks get smarter: attackers exploit HTTP response headers
Cybersecurity researchers at Unit 42 have uncovered a sophisticated new phishing technique that leverages HTTP response headers to deliver malicious…
Critical Active Directory certificate services vulnerabilities: implications and mitigation strategies
Microsoft’s Active Directory Certificate Services (AD CS), a PKI implementation in Active Directory environments, has been found to contain critical…
Ransomware group breaches major chinese bank in London
The Hunters International ransomware group has allegedly compromised the London branch of the Industrial and Commercial Bank of China (ICBC).…
Critical vulnerability compromises the security of .MOBI top-level domain
A recent vulnerability discovery has exposed a glaring security flaw in the .MOBI domain name ecosystem. This vulnerability, stemming from…
Threat landscape: EV charging infrastructure under attack
As electric vehicles (EVs) gain traction, their reliance on interconnected systems and widespread public charging infrastructure introduces significant cybersecurity risks.…
Browser-based credential theft: a growing threat
In the evolving cybersecurity landscape, web browsers have become a primary target for cybercriminals seeking to steal users’ credentials. This…
RansomHub’s malicious use of TDSSKiller to bypass endpoint detection and response (EDR)
Kaspersky Lab’s TDSSKiller is a widely used free utility for detecting and removing rootkits. However, a recent cyberattack campaign by…
Critical Zero-Day vulnerability in Microsoft’s App Control
Microsoft has released a critical security update to address an actively exploited zero-day vulnerability affecting its Windows Smart App Control…