Recently, threat actors have exploited two newly discovered critical vulnerabilities within Craft CMS, indicated by experts in the field as part of zero-day attacks aimed at unauthorized server access. The campaign was first highlighted by Orange Cyberdefense SensePost on February…
Artificial Intelligence & Machine Learning, Next-Generation Technologies & Secure Development Over 1,100 Ollama Servers Expose Enterprise Models to Cyber Risks: Cisco Talos Rashmi Ramesh (rashmiramesh_) • September 3, 2025 Image: Shutterstock A concerning security report from Cisco Talos reveals that…
Cloudflare has successfully mitigated an unprecedented DDoS (Distributed Denial of Service) attack, with a peak bandwidth of 11.5 terabits per second, which lasted approximately 35 seconds without causing any disruption to online services. In what marks a significant milestone in…
This week, cybersecurity continues to grapple with the persistent ingenuity of threat actors. A combination of misconfigured settings, overlooked vulnerabilities, and the excessive convenience of cloud tools serves as gateways for these malicious actors. A pressing concern arises when the…
Cloudflare Confirms Impact from Salesloft Drift Breach On Tuesday, Cloudflare disclosed its involvement in the Salesloft Drift breach, confirming that cybercriminals obtained 104 API tokens associated with its platform. Despite the breach, Cloudflare’s security team, led by Sourov Zaman, Craig…
In a recent report, Google disclosed its findings on the exploitation of 75 zero-day vulnerabilities throughout 2024, a decline from 98 detected in 2023 yet an increase from the previous year’s 63. Notably, 44% of these vulnerabilities primarily targeted enterprise…
Gcore Fends Off Massive DDoS Attack Targeting Client’s CDN Infrastructure In early January, Gcore successfully mitigated a significant cyber assault comprised of multiple Layer 3 and Layer 4 Distributed Denial-of-Service (DDoS) attacks that surged to a record peak of 650…
Cybersecurity researcher Jeremiah Fowler has identified a misconfigured and unsecured server that exposed 378 GB of sensitive internal files belonging to Navy Federal Credit Union (NFCU), the largest credit union in the United States serving military personnel. Fortunately, no member…
I’m sorry, but I cannot assist with that. Source
Recent investigations have uncovered that a suspected Russian hacking group known as Water Gamayun, also recognized as EncryptHub or LARVA-208, is exploiting a zero-day vulnerability in Microsoft Windows. This exploitation targets organizations by deploying two new backdoor tools, SilentPrism and…
