Latest news

Threat landscape: EV charging infrastructure under attack
Vulnerability

Threat landscape: EV charging infrastructure under attack

12 September 2024 dark6

As electric vehicles (EVs) gain traction, their reliance on interconnected systems and widespread public charging infrastructure introduces significant cybersecurity risks....
Read more 0
Browser-based credential theft: a growing threat
Vulnerability

Browser-based credential theft: a growing threat

12 September 2024 dark6

In the evolving cybersecurity landscape, web browsers have become a primary target for cybercriminals seeking to steal users’ credentials. This...
Read more 0
Critical Zero-Day vulnerability in Microsoft’s App Control
Vulnerability

Critical Zero-Day vulnerability in Microsoft’s App Control

11 September 2024 dark6

Microsoft has released a critical security update to address an actively exploited zero-day vulnerability affecting its Windows Smart App Control...
Read more 0
Critical RCE vulnerabilities in Ivanti Endpoint Manager grant remote server access to attackers
Vulnerability

Critical RCE vulnerabilities in Ivanti Endpoint Manager grant remote server access to attackers

10 September 2024 dark6

Ivanti has released security updates for its Endpoint Manager (EPM) 2024 and 2022 SU6 versions to address multiple severe and...
Read more 0
WhatsApp’s view once privacy flaw: exploited and abusable
Vulnerability

WhatsApp’s view once privacy flaw: exploited and abusable

10 September 2024 dark6

WhatsApp’s “View Once” feature, designed to enhance privacy by allowing users to share disappearing photos and videos, has come under...
Read more 0
Alert: CISA warns of three actively exploited vulnerabilities
Vulnerability

Alert: CISA warns of three actively exploited vulnerabilities

10 September 2024 dark6

The Cybersecurity and Infrastructure Security Agency (CISA) has issued a warning regarding three critical vulnerabilities that are currently being exploited...
Read more 0
Quad7 Botnet: expanding threat landscape targets routers and VPNs
Vulnerability

Quad7 Botnet: expanding threat landscape targets routers and VPNs

10 September 2024 dark6

The Quad7 botnet, also known as the 7777 and xlogin botnets, has gained notoriety for utilizing compromised routers to launch...
Read more 0
GeoServer RCE vulnerability: a threat to geospatial data infrastructure
Vulnerability

GeoServer RCE vulnerability: a threat to geospatial data infrastructure

9 September 2024 dark6

GeoServer, an open-source Java-based server, enables the sharing and management of geospatial data. However, a critical vulnerability (CVE-2024-36401) has emerged,...
Read more 0
Veeam software vulnerabilities: urgent action required for enhanced cybersecurity
Vulnerability

Veeam software vulnerabilities: urgent action required for enhanced cybersecurity

8 September 2024 dark6

Veeam Software, a renowned provider of data protection solutions, has recently disclosed the discovery of several critical and high-severity vulnerabilities...
Read more 0
SonicWall alerts to critical access control flaw actively targeted
Vulnerability

SonicWall alerts to critical access control flaw actively targeted

6 September 2024 dark6

As a cybersecurity expert, I’m here to alert you to a critical vulnerability (CVE-2024-40766) affecting SonicWall Firewall products. This improper...
Read more 0
Persistent backdoors via Linux pluggable authentication modules: a new threat
Spyware

Persistent backdoors via Linux pluggable authentication modules: a new threat

6 September 2024 dark6

Recent research by the Group-IB Digital Forensics and Incident Response (DFIR) team has revealed a novel technique exploiting Linux’s Pluggable...
Read more 0
Critical Progress LoadMaster vulnerability: unauthenticated code execution
Vulnerability

Critical Progress LoadMaster vulnerability: unauthenticated code execution

6 September 2024 dark6

A severe vulnerability (CVE-2024-7591) has been discovered in the Progress LoadMaster product line, including all releases and the Multi-Tenant (MT)...
Read more 0