Former Employee Arrested for Attempted Data Extortion Against Missouri Company A 57-year-old man from Missouri has been apprehended following an unsuccessful attempt to extort his previous employer. Daniel Rhyne, a former core infrastructure engineer based in Kansas City, has been charged with extortion and related offenses in connection with a…
Microsoft Addresses 61 Security Vulnerabilities in May Patch Update In its latest Patch Tuesday update for May 2024, Microsoft has resolved 61 newly identified security vulnerabilities across its software products, amongst them two zero-day flaws that have been actively exploited in the wild. These updates follow a proactive security strategy…
Microsoft has announced that it is actively working on security updates to rectify two significant vulnerabilities that could potentially be exploited to conduct downgrade attacks against its Windows update system. These vulnerabilities may allow malicious actors to replace the current versions of operating system files with outdated ones, undermining the…
OpenVPN Vulnerabilities Disclosed by Microsoft: A Potential Attack Vector Microsoft recently announced the discovery of four medium-severity security vulnerabilities within the open-source OpenVPN software, which could be exploited in conjunction to enable remote code execution (RCE) and local privilege escalation (LPE). The implications of these flaws are significant, as they…
Microsoft Reports Unpatched Zero-Day Vulnerability in Office Suite Microsoft has recently revealed a serious unpatched vulnerability in its Office suite, identified as CVE-2024-38200. This zero-day flaw presents the risk of unauthorized exposure of sensitive information to malicious entities if successfully exploited. The vulnerability, which has a CVSS score of 7.5,…
New Security Vulnerabilities Found in Google’s Quick Share Tool Recent research has revealed the existence of up to ten security vulnerabilities within Google’s Quick Share data transfer application, utilized across both Android and Windows platforms. These flaws pose a significant risk, as they could potentially be exploited to initiate a…
On Tuesday, Microsoft released a set of critical updates addressing a total of 90 security vulnerabilities within its software, including ten zero-day exploits. Notably, six of these zero-days are actively being leveraged in real-world attacks, raising significant concerns regarding the potential for widespread exploitation in the wild. The vulnerabilities span…
Shift in Russian Cyber Operations Targeting Ukraine’s Defense Sector Recent insights from Ukraine’s State Service of Special Communications and Information Protection (SSSCIP) indicate a major strategic shift in Russian cyber activities, particularly in the first half of 2024. This alteration in tactics reflects a transition from broad-spectrum attacks to a…
The cyber espionage landscape has witnessed a significant threat from the nation-state actor known as SideWinder, which has recently launched a campaign specifically targeting ports and maritime facilities across the Indian Ocean and Mediterranean Sea regions. This campaign has garnered attention for its sophisticated spear-phishing techniques aimed at several countries,…
