Security
Stay informed with the latest developments in cybersecurity through our Security category. Discover in-depth news, analysis, and updates on emerging cyber threats, malware incidents, and major data breaches. Whether you’re a cybersecurity professional or just keen on protecting your digital footprint, find insights and trends that are shaping the future of online security here.
The biggest password leak ever: nearly 10 billion credentials exposed
Cybersecurity researchers are calling it the largest password compilation leak of all time. On July 4, a newly registered user on a popular hacking forum posted a file containing nearly 10 billion compromised passwords in plaintext. The post was first noticed by researchers at Cybernews. “Xmas came early this year,” user “ObamaCare” wrote on the […]
Cisco Patches Zero-Day Bug Used by Chinese Velvet Ant Group
A newly patched zero-day vulnerability was exploited by Chinese state-backed hackers to compromise Cisco Nexus switches, researchers have revealed. Cisco released a patch for CVE-2024-20399 on 2 July, 2024. The flaw is found in the CLI of Cisco NX-OS software and could allow an authenticated local attacker to execute arbitrary commands as root on a […]
WordPress Plugins at Risk From Polyfill Library Compromise
WordPress plugins are currently facing significant security risks due to a recent discovery detailed in a security advisory published by Patchstack today. The advisory references a Polyfill supply chain attack initially reported on June 25 by Sansec. This attack targets Polyfill.js, a widely used JavaScript library that enables modern functionality on older web browsers lacking native […]
Nvidia patches five high-severity bugs in its software
High-flying Nvidia took care of some routine business on June 6 when it reported three high-severity bugs in its GPU Display Driver and another two high-severity bugs in Nvidia’s vGPU software. In a security bulletin to customers, Nvidia said an exploit of the GPU Display Driver bugs could lead to a combination or all of […]
CapraRAT malware targeting Android users with fake apps
A politically driven threat actor has unleashed a fresh malware offensive targeting Android devices. Experts at SentinelLabs have identified a new tool, CapraRAT, deployed by the Pakistani state-sponsored hacking group Transparent Tribe. This sophisticated trojan is designed to monitor user activities, with Indian users being the primary focus. Echoing its past strategies, Transparent Tribe’s CapraRAT […]
CyberSecurity Alert: $5.2 Million Ransomware Demand Hits New High in 2024
In the first half of 2024, ransomware attacks continued to wreak havoc globally, with a startling average extortion demand exceeding $5.2 million (£4.1 million) per incident, as revealed by a comprehensive study from Comparitech. This unsettling statistic stems from an analysis of 56 documented ransom demands issued by cyber threat actors between January and June […]