Critical Vulnerability Discovered in Tinyproxy Exposed by Over Half of Public Hosts Recent reports have unveiled a significant security vulnerability within the Tinyproxy service, a widely utilized HTTP/HTTPS proxy tool, affecting over 50% of the 90,310 hosts identified as publicly exposing this service. This unpatched flaw, tracked as CVE-2023-49606, has…
A sophisticated cyberattack campaign emanating from China is currently targeting the gambling industry across Southeast Asia, employing Cobalt Strike beacons to infiltrate compromised systems. According to cybersecurity experts at SentinelOne, the indicators and methodologies associated with this operation suggest involvement from a threat actor group identified as Bronze Starlight, also…
On October 29, 2024, Newpark Resources, a Texas-based provider of essential tools and services to the oil and gas, as well as construction industries, was victimized by a ransomware attack that significantly disrupted its financial and operational analytics systems. This cyber intrusion partially incapacitated the company’s internal network, impacting its…
Companies Race to Appoint Chief AI Officers as AI Transforms Business Strategies In 2023, a notable trend emerged in corporate governance as artificial intelligence (AI) became integral to business strategies: the creation of the Chief AI Officer (CAIO) role. Major organizations such as Boeing, NASA, PwC, and Pfizer have started…
In today’s rapidly evolving cybersecurity landscape, organizations must continuously reassess their defenses to ensure their web applications remain secure. The emergence of new technologies brings with it a wave of sophisticated threats, which consistently challenge businesses across various industries. This trend is expected to persist into 2024, as malicious actors…
Cash App Users to Claim Up to $2,575 Following Data Breach Cash App users whose accounts were active between August 2018 and August 2024 may soon have the opportunity to claim up to $2,575 following a significant data breach that impacted approximately 8.2 million individuals. This incident, attributed to an…
With the proliferation of Software as a Service (SaaS) applications, organizations face a myriad of cybersecurity challenges. The flexibility these platforms offer also introduces a complex risk landscape, where critical organizational assets and sensitive data are increasingly vulnerable to threats from malicious actors, data breaches, and insider threats. Security teams…
Microsoft recently reported the identification of a new variant of the BlackCat ransomware, also known as ALPHV or Noberus. This ransomware strain integrates tools such as Impacket and RemCom, enhancing its capabilities for lateral movement within compromised networks and facilitating remote code execution. The unveiling comes on the heels of…
North Korean cybercriminals have intensified their focus on the cryptocurrency sector through a new sophisticated malware campaign identified as “Hidden Risk,” according to recent findings by cybersecurity firm SentinelOne. The attack is attributed to the state-sponsored threat actor group known as BlueNoroff, which operates as a subgroup of the notorious…