Three Actively Exploited Zero-Day Flaws Addressed in Microsoft’s January 2025 Security Update
Microsoft’s January 2025 Patch Tuesday has brought to light three actively exploited zero-day vulnerabilities, among a total of 161 security flaws patched across its product ecosystem. These vulnerabilities, if left…
Fortinet Warns of Critical Zero-Day Vulnerability in Firewalls
Fortinet, a leading cybersecurity company, has issued an urgent warning regarding a critical zero-day vulnerability (CVE-2024-55591) impacting its FortiOS and FortiProxy products. This vulnerability, actively exploited in the wild, allows…
Microsoft Uncovers New macOS Vulnerability Allowing System Integrity Protection Bypass
In a significant discovery that highlights the evolving threat landscape for macOS users, Microsoft recently unveiled a critical vulnerability in Apple’s macOS that could have allowed malicious actors to bypass…
Chinese Hackers Exploit Fortinet VPN Zero-Day: A Wake-Up Call for Cybersecurity
In a recent cybersecurity development, Chinese threat actors have been exploiting a zero-day vulnerability in Fortinet’s FortiClient Windows VPN client to steal user credentials. This vulnerability allows attackers to extract…
Iranian Hackers Deploy WezRat Malware in Sophisticated Cyber Espionage Campaign
In a notable escalation of cyber espionage activities, Iranian state-sponsored hackers have developed and deployed a new malware known as WezRat. This advanced remote access trojan (RAT) targets Israeli organizations…
RustyAttr Malware: A New Threat Exploiting macOS Extended Attributes – What You Need to Know
In a recent development that has raised concerns among cybersecurity professionals, a new malware strain known as “RustyAttr” is targeting macOS users by exploiting a relatively obscure aspect of macOS…
Strengthening PAN-OS Security: Palo Alto Networks’ Advisory on RCE Threats
In an era where cyber threats evolve at an unprecedented rate, organizations that rely on high-performance firewalls and security platforms face constant challenges in ensuring the safety of their systems.…
Chinese APT41 Hackers Target Gambling Industry in Sophisticated Cyberattack
In a recent cyberattack, the Chinese state-sponsored hacking group APT41 targeted the gambling industry, focusing on financial gain and espionage. The intrusion, which lasted for nine months, showcased the group’s…
Hacktivist Group “Twelve” Cyber Attacks Russian Entities
In a rapidly evolving cyber threat landscape, hacktivism has resurfaced as a significant vector of disruption. A notorious hacktivist group, known as “Twelve,” has recently made headlines by launching a…
APT41’s Latest Cyber Espionage Campaign Targets Taiwanese Research Institute
In a striking display of cyber espionage, the Chinese state-sponsored hacking group APT41 has been implicated in a recent attack on a prominent Taiwanese government-affiliated research institute. The incident, which…