Recent investigations have unveiled that state-sponsored threat actors from Russia and China are exploiting a known security vulnerability in the WinRAR archiver software for Windows, as part of their cyber operations. These attacks indicate a pronounced shift towards utilizing established vulnerabilities to bolster operational success. The vulnerability, referenced as CVE-2023-38831,…
The realm of cybersecurity is increasingly complex, and organizations are feeling the strain of evolving threats. Unlike a simple product that could resolve all security issues, the reality is that cybersecurity requires continuous adaptation. Cyber attackers consistently innovate, crafting new tools and techniques, while vendors focus on advancements to detect…
Data Breach at Zomato Exposes Millions of User Accounts In a significant cybersecurity incident, India’s leading online restaurant platform, Zomato, has reported a major data breach affecting approximately 17 million of its 120 million user accounts. The breach was confirmed through a blog post published by the company, which highlighted…
Cybercrime, Endpoint Security, Fraud Management & Cybercrime RondoDox Campaign Exploits Open-Source Vulnerability to Compromise IoT Devices Akshaya Asokan (asokan_akshaya) • January 2, 2026 A campaign by a botnet has utilized React2Shell exploits to target IoT devices and web applications on a large scale. (Image: Shutterstock) Security researchers have reported a…
The financial landscape has experienced a significant shift with the advent of digital wallets and financial technology platforms, creating new pathways for users to manage their finances digitally. As reliance on mobile applications increases, the specter of cybersecurity threats looms large, emphasizing the necessity for robust security measures. While the…
Cybersecurity experts have reported that North Korean threat actors are leveraging a critical vulnerability in JetBrains TeamCity, specifically CVE-2023-42793, which carries a severe CVSS score of 9.8. This exploitation allows attackers to breach unprotected servers, with campaigns attributed to two distinct groups: Diamond Sleet, also known as Labyrinth Chollima, and…
Important Update (June 21, 2019) ➤ The Tor Project announced on Friday the release of its latest update, Tor Browser 8.5.3, addressing a significant Firefox zero-day vulnerability identified earlier in the week. This update follows Mozilla’s recent patches for Firefox versions 67.0.3 and 60.7.1, which rectified a critical actively-exploited security…
A significant cyber incident has emerged involving Tokyo FM Broadcasting Co., LTD., one of Japan’s leading radio stations. On January 1, 2026, during the height of New Year’s festivities, an individual or group operating under the moniker “victim” claimed responsibility for breaching the company’s private computer systems. Radio stations are…
Recent findings reveal a sophisticated disinformation campaign aimed at discrediting critics of the Russian state while compromising sensitive data. Security researchers have linked these activities to a suspected Russian government-sponsored espionage initiative, though definitive evidence of state involvement remains unproven. Notably, these operations share characteristics with the tactics employed by…
