Author Info

Roskomnadzor, Russia's telecommunications authority, has recently restricted access to Viber, a widely used encrypted messaging application. This move is part of Russia's ongoing efforts to control information dissemination and curb access to certain communications platforms. Reason for Blockage Russia's internet regulator has cited Viber&

A critical security flaw in the WordPress plugin, Hunk Companion, which supports 10,000 sites, remains largely unpatched, leaving thousands vulnerable to malicious attacks. Despite a recent fix, the majority of users are yet to apply the update. Vulnerability Identifier CVE-2024-11972 Severity Rating: 9.8 out of 10 Affected Plugin:

Albanian authorities, in coordination with international agencies, have successfully dismantled the Rydox cybercrime marketplace, apprehending three of its top administrators. Arrests and Charges Kosovo nationals Ardit Kutleshi, Jetmir Kutleshi, and Shpend Sokoli were detained by Kosovo police in collaboration with Albania's Special Anti-Corruption Body (SPAK). The U.S.

The United States has announced a reward of up to $5 million for information leading to the disruption of North Korean IT worker schemes. These operations involve illicit remote work practices that fuel the nation's prohibited missile programs. Involved Entities Two companies, Yanbian Silverstar based in China and

Recent research has revealed a significant security vulnerability affecting hundreds of thousands of Prometheus servers and exporters, leaving them susceptible to password exposure, denial-of-service (DoS) attacks, and repojacking threats. Prometheus is a widely-used open-source monitoring tool vital for application performance and cloud infrastructure oversight. However, its potential exposure risks are

Oasis Security has unveiled a vulnerability in Microsoft's multi-factor authentication (MFA) system, allowing circumvention by malicious actors. This exploit, termed AuthQuake, was initially reported to Microsoft in late June, leading the company to issue a temporary workaround, followed by a comprehensive patch released in October. Critical Exposure The

In a strategic cyber espionage campaign, the Russian-affiliated group known as Secret Blizzard, also referred to as Turla, has been implicated in leveraging malware from various sources to deploy the Kazuar backdoor on targets within Ukraine. This revelation comes from Microsoft’s threat intelligence team, which observed these activities occurring

A newly discovered Android spyware, identified as 'EagleMsgSpy,' is reportedly being utilized by law enforcement agencies in China to conduct surveillance on mobile devices, according to cybersecurity firm Lookout. Origins and Evidence EagleMsgSpy, developed by Wuhan Chinasoft Token Information Technology Co., Ltd., has been in existence since at

A critical vulnerability in Microsoft Azure's multifactor authentication (MFA) was recently exposed by researchers at Oasis Security, allowing unauthorized access to user accounts in under an hour. This flaw put over 400 million Microsoft 365 seats at risk, as it permitted access to email, OneDrive, Teams, and more