GitLab has once again addressed a significant security vulnerability in both its Community Edition (CE) and Enterprise Edition (EE). This flaw, designated as CVE-2024-0402, poses a serious risk, allowing authenticated users to write files to arbitrary locations on the server…
Cybersecurity Experts Uncover New Windows Backdoor Tied to DeathStalker Group Cybersecurity researchers announced on Thursday the discovery of an in-memory Windows backdoor, named “PowerPepper,” linked to a hacker-for-hire collective. This sophisticated malware is capable of executing malicious code remotely and…
Twitter Faces Data Breach Linked to Suspected State-Sponsored Attack Twitter has recently experienced a minor data breach that the company attributes to a possible state-sponsored attack. In a blog post released on Monday, Twitter disclosed that during an investigation into…
Recent Data Breaches Target Specialty Medical Providers, Compromising Sensitive Patient Information Marianne Kolbasuk McGee (HealthInfoSec) • December 9, 2025 VITAS Hospice is among the medical specialty providers reporting significant hacking incidents. (Image: VITAS Hospice) In recent developments, two specialty healthcare…
Data Breach at Tri-Century Eye Care Affects Nearly 200,000 Individuals A significant data breach has recently unfolded at Tri-Century Eye Care, impacting approximately 200,000 individuals. The breach, which has raised alarms among cybersecurity experts, involves unauthorized access to sensitive personal…
A critical vulnerability affecting the widely used GNU C Library (glibc) has come to light, enabling local malicious actors to gain full root access on Linux systems. This flaw is tracked as CVE-2023-6246, with a CVSS rating of 7.8, indicating…
In a significant cybersecurity incident, the National Aeronautics and Space Administration (NASA) has confirmed a breach that potentially exposes personal data of current and former employees. The breach, detected on October 23, involved unauthorized access to one of its servers,…
Application Security & Online Fraud , Fraud Management & Cybercrime , Next-Generation Technologies & Secure Development Checkmarx Acquires Tromzo, Enhancing AI-Driven Security Solutions Michael Novinson (MichaelNovinson) • December 9, 2025 Sandeep Johri, CEO, Checkmarx (Image: Checkmarx) Checkmarx, a…
Recently, cybersecurity firm Noma Security unveiled a critical security vulnerability, termed “GeminiJack,” located within Google’s Gemini Enterprise platform and the Vertex AI Search tool. This flaw could potentially facilitate unauthorized access to sensitive corporate data without any interaction from the…
Ivanti has issued a warning regarding two significant vulnerabilities impacting its Connect Secure and Policy Secure products. One of these vulnerabilities has reportedly been subjected to targeted exploitation in the wild, elevating concerns among users and security professionals alike. Detailed…
