Cybercriminals exploit legitimate software for insidious attacks

Latest news

Vulnerability

Cybercriminals exploit legitimate software for insidious attacks

14 September 2024 dark6

Cybercriminals are evolving their tactics, leveraging legitimate software to evade detection and compromise systems. By blending into normal network traffic,...

Read more 0

Vulnerability

Critical Cisco vulnerability threatens Web-Based management interfaces

14 September 2024 dark6

Cisco has recently disclosed a severe vulnerability (CVE-2024-20381) impacting the JSON-RPC API feature used by various web-based management interfaces in...

Read more 0

Vulnerability

Cybersecurity alert for Small and Mid-sized Businesses: CosmicBeetle threat actor on the rise

14 September 2024 dark6

Small and mid-sized businesses (SMBs) are increasingly becoming targets of cybercriminals due to weaker security measures and lack of cybersecurity...

Read more 0

Vulnerability

Urgent: GitLab warns of critical vulnerability, advises immediate patching

13 September 2024 dark6

GitLab, a popular DevOps platform, has recently released a critical security update to address several high-severity vulnerabilities. Organizations using GitLab...

Read more 0

Vulnerability

Critical Active Directory certificate services vulnerabilities: implications and mitigation strategies

12 September 2024 dark6

Microsoft’s Active Directory Certificate Services (AD CS), a PKI implementation in Active Directory environments, has been found to contain critical...

Read more 0

Vulnerability

Critical vulnerability compromises the security of .MOBI top-level domain

12 September 2024 dark6

A recent vulnerability discovery has exposed a glaring security flaw in the .MOBI domain name ecosystem. This vulnerability, stemming from...

Read more 0

Vulnerability

Threat landscape: EV charging infrastructure under attack

12 September 2024 dark6

As electric vehicles (EVs) gain traction, their reliance on interconnected systems and widespread public charging infrastructure introduces significant cybersecurity risks....

Read more 0

Vulnerability

Browser-based credential theft: a growing threat

12 September 2024 dark6

In the evolving cybersecurity landscape, web browsers have become a primary target for cybercriminals seeking to steal users’ credentials. This...

Read more 0

Vulnerability

Critical Zero-Day vulnerability in Microsoft’s App Control

11 September 2024 dark6

Microsoft has released a critical security update to address an actively exploited zero-day vulnerability affecting its Windows Smart App Control...

Read more 0

Vulnerability

Critical RCE vulnerabilities in Ivanti Endpoint Manager grant remote server access to attackers

10 September 2024 dark6

Ivanti has released security updates for its Endpoint Manager (EPM) 2024 and 2022 SU6 versions to address multiple severe and...

Read more 0

Vulnerability

WhatsApp’s view once privacy flaw: exploited and abusable

10 September 2024 dark6

WhatsApp’s “View Once” feature, designed to enhance privacy by allowing users to share disappearing photos and videos, has come under...

Read more 0

Vulnerability

Alert: CISA warns of three actively exploited vulnerabilities

10 September 2024 dark6

The Cybersecurity and Infrastructure Security Agency (CISA) has issued a warning regarding three critical vulnerabilities that are currently being exploited...

Read more 0