EMERALDWHALE breach exploits Git config misconfigurations, exposing 15,000 credentials and cloning 10,000 private repositories
QNAP patches a critical zero-day vulnerability in NAS devices post-Pwn2Own 2024 hack, boosting NAS security with updates for HBS 3 Backup Sync...
New 'WarmCookie' malware spreads in France through fake browser updates, posing a serious data threat. Learn how to stay protected from this backdoor...
Discover how missing S3 buckets in AWS CDK can lead to account takeover. Learn how attackers exploit this flaw and how to secure your AWS account...
Comprehensive technical analysis of FortiManager zero-day CVE-2024-47575 ("FortiJump") exploited by nation-states; understand impact and mitigation steps. ...
Malicious npm packages impersonate popular Ethereum libraries to steal private keys and gain SSH access—learn how to protect your projects from these threats. ...
An analysis of the Internet Archive's data breach via exposed GitLab tokens, compromising user data and personal IDs, highlighting security lapses....
Hackers breached ESET Israel's partner, Comsecure, using legitimate servers to send phishing emails with data wipers disguised as antivirus software to Israeli businesses. ...
North Korean hackers deploy a new Linux FASTCash malware variant enabling unauthorized ATM cash withdrawals from financial institutions......
Cisco is found to be currently investigating a possible data breach following reports that allegedly stolen data has surfaced for sale on a hacking forum. ...
Sign up to our Weekley Threat Digest and keep apace of the trends shaping Cybersecurity.