Hacks

Microsoft has detected the nation-state threat actor Storm-0062, also known as DarkShadow or Oro0lxy, exploiting CVE-2023-22515 in the wild since September 14, 2023.  The vulnerability was publicly disclosed on October 4, 2023, and this CVE-2023-22515...

Media and frequent innovative releases aggressively fuel the rapid industry rise of generative AI (Artificial Intelligence) ChatGPT.  But, besides its innovative part, cybercriminals have also actively exploited these generative AI models for several illicit purposes,...

Ascension is one of the most extensive charity healthcare systems in the US. It has been hit hard by a ransomware attack, which has caused major problems with its operations. The cyberattack, which was first...

Threat actors targeting unpatched Citrix NetScaler systems exposed to the internet are being tracked by Sophos X-Ops.  As per research, the recent attacks share a similarity with attacks using CVE-2023-3519 delivering malware. Citrix was discovered with...

Hacker groups recruit pentesters because they possess valuable skills in identifying and exploiting vulnerabilities. This aligns with the offensive capabilities that are needed for cyber attacks.  Besides this, Pentesters' expertise in finding security flaws helps...

MongoDB has experienced a security incident in which unauthorized access to its corporate systems was identified. However, the company confirmed that there was no evidence of access to any customer's system logs. MongoDB is...

Attackers continue to use compromised routers as malicious infrastructure to target government organizations in Europe and the Caucasus region. APT28 threat actors (also known as Sofacy, Fancy Bear, etc.) were behind this malicious espionage effort, according to...

Phishing is a cyberattack that uses deception to trick people into giving away sensitive information or taking actions that compromise security.  Phishing is often the first stage of a larger attack that can lead to...