Cisco Systems has recently disclosed a severe, unpatched vulnerability affecting its IOS XE software, which is currently under active exploitation by threat actors. The zero-day flaw, identified as CVE-2023-20198, holds a critical severity rating of 10.0 on the Common Vulnerability Scoring System (CVSS). This vulnerability specifically impacts enterprise networking hardware…
South African Universities Grapple with Escalating Cybersecurity Threats As South African universities prepare for the upcoming release of matric results, the higher education sector is increasingly besieged by cybersecurity challenges that are unique compared to many other industries. With threats like ransomware, phishing attacks, data breaches, and insider threats, institutions…
The Israel Defense Force (IDF) has reported the neutralization of what it characterized as an attempted cyber attack by Hamas, executed through airstrikes targeting a facility in the Gaza Strip. This operation specifically aimed to disrupt a cyber unit allegedly attempting unauthorized access to Israeli cyberspace. A video posted by…
Recent investigations have unveiled that state-sponsored threat actors from Russia and China are exploiting a known security vulnerability in the WinRAR archiver software for Windows, as part of their cyber operations. These attacks indicate a pronounced shift towards utilizing established vulnerabilities to bolster operational success. The vulnerability, referenced as CVE-2023-38831,…
The realm of cybersecurity is increasingly complex, and organizations are feeling the strain of evolving threats. Unlike a simple product that could resolve all security issues, the reality is that cybersecurity requires continuous adaptation. Cyber attackers consistently innovate, crafting new tools and techniques, while vendors focus on advancements to detect…
Cybersecurity experts have reported that North Korean threat actors are leveraging a critical vulnerability in JetBrains TeamCity, specifically CVE-2023-42793, which carries a severe CVSS score of 9.8. This exploitation allows attackers to breach unprotected servers, with campaigns attributed to two distinct groups: Diamond Sleet, also known as Labyrinth Chollima, and…
Artificial Intelligence & Machine Learning, Leadership & Executive Communication, Next-Generation Technologies & Secure Development Also: Leadership Decisions Shaping Cybersecurity in 2026 Anna Delaney (annamadeline) • January 2, 2026 Clockwise, from top left: Anna Delaney, Tom Field, Sean D. Mack, and Chris Riotta As security leaders approach 2026, they are increasingly…
Cisco has issued an urgent warning regarding a severe zero-day vulnerability in its IOS XE software, which is currently being exploited by an unknown actor to introduce a malicious Lua-based implant on affected devices. The vulnerability, designated as CVE-2023-20273, carries a CVSS score of 7.2 and is associated with privilege…
Dec 29, 2026Ravie LakshmananHacking News / Cybersecurity The cybersecurity landscape during the final week of 2025 was dominated by a series of smaller-scale vulnerabilities rather than a single major incident. Trusted tools exhibited unintended behaviors, while both long-standing flaws and emerging weaknesses were quickly exploited. This growing trend emphasized a…
