PRC-Linked cyber actors leveraging massive botnet for malicious activities
18 September 2024 dark6
In a joint cybersecurity advisory, the FBI, Cyber National Mission Force (CNMF), and National Security Agency (NSA) have exposed a...
Vulnerability
Critical Windows kernel vulnerability disclosed
18 September 2024 dark6
Microsoft has issued an urgent warning regarding a critical Windows kernel vulnerability (CVE-2024-37985) that could result in the disclosure of...
Vulnerability
Apple iOS 18 patches 32 security flaws
17 September 2024 dark6
Apple has released iOS 18, a major software update that addresses a multitude of security vulnerabilities across its operating system....
Vulnerability
Critical macOS Calendar vulnerability: zero-click execution of malicious code
17 September 2024 dark6
A severe zero-click vulnerability has been discovered within Apple’s macOS Calendar application, posing a significant threat to user security. This...
Vulnerability
Cybercriminals exploit legitimate software for insidious attacks
14 September 2024 dark6
Cybercriminals are evolving their tactics, leveraging legitimate software to evade detection and compromise systems. By blending into normal network traffic,...
Cisco has recently disclosed a severe vulnerability (CVE-2024-20381) impacting the JSON-RPC API feature used by various web-based management interfaces in...
Vulnerability
Cybersecurity alert for Small and Mid-sized Businesses: CosmicBeetle threat actor on the rise
14 September 2024 dark6
Small and mid-sized businesses (SMBs) are increasingly becoming targets of cybercriminals due to weaker security measures and lack of cybersecurity...
Vulnerability
Urgent: GitLab warns of critical vulnerability, advises immediate patching
13 September 2024 dark6
GitLab, a popular DevOps platform, has recently released a critical security update to address several high-severity vulnerabilities. Organizations using GitLab...
Vulnerability
Critical Active Directory certificate services vulnerabilities: implications and mitigation strategies
12 September 2024 dark6
Microsoft’s Active Directory Certificate Services (AD CS), a PKI implementation in Active Directory environments, has been found to contain critical...
Vulnerability
Critical vulnerability compromises the security of .MOBI top-level domain
12 September 2024 dark6
A recent vulnerability discovery has exposed a glaring security flaw in the .MOBI domain name ecosystem. This vulnerability, stemming from...
Vulnerability
Threat landscape: EV charging infrastructure under attack
12 September 2024 dark6
As electric vehicles (EVs) gain traction, their reliance on interconnected systems and widespread public charging infrastructure introduces significant cybersecurity risks....
Vulnerability
Browser-based credential theft: a growing threat
12 September 2024 dark6
In the evolving cybersecurity landscape, web browsers have become a primary target for cybercriminals seeking to steal users’ credentials. This...