cyber news

AI Takes the Center Stage in Biden’s Landmark Cybersecurity Order

AI, biden, cyber news /

AI Takes the Center Stage in Biden’s Landmark Cybersecurity Order 2025-01-17 at 12:33 By daksh sharma Overview Outgoing U.S. President Joe Biden issued an order yesterday outlining measures to improve government cybersecurity. The lengthy order includes suggestions to improve cloud and software security by building requirements into the federal acquisition process. It also orders federal […]

React to this headline:

Loading spinner

AI Takes the Center Stage in Biden’s Landmark Cybersecurity Order Read More »

Lithuania’s New Cyber Command is a Strategic Step Towards National and NATO Cybersecurity Resilience

cyber news /

Lithuania’s New Cyber Command is a Strategic Step Towards National and NATO Cybersecurity Resilience 2025-01-09 at 15:06 By Ashish Khaitan Overview  On January 1, Lithuania marked a pivotal moment in its national defense strategy with the official launch of the Lithuanian Cyber Command (LTCYBERCOM). Spearheaded by the Ministry of National Defence, this new military unit

React to this headline:

Loading spinner

Lithuania’s New Cyber Command is a Strategic Step Towards National and NATO Cybersecurity Resilience Read More »

The Commonwealth Cyber Security Posture 2024: A Deep Dive into Australia’s Cyber Defense Measures

cyber news /

The Commonwealth Cyber Security Posture 2024: A Deep Dive into Australia’s Cyber Defense Measures 2025-01-08 at 12:50 By Ashish Khaitan Overview  The Australian Government has shared its latest report for commonwealth cyber security. The Commonwealth Cyber Security Posture in 2024 report provides an essential update on the measures and progress related to cyber security across

React to this headline:

Loading spinner

The Commonwealth Cyber Security Posture 2024: A Deep Dive into Australia’s Cyber Defense Measures Read More »

MyCERT Advisory Recommends Cybersecurity Practices for Water Systems

cyber news /

MyCERT Advisory Recommends Cybersecurity Practices for Water Systems 2025-01-07 at 14:18 By Ashish Khaitan Overview  The water sector is experiencing a rise in cyber threats, with critical infrastructure, including both IT and operational technology (OT) systems, becoming primary targets for malicious actors. These attacks, which exploit vulnerabilities in internet-facing OT systems and industrial control systems

React to this headline:

Loading spinner

MyCERT Advisory Recommends Cybersecurity Practices for Water Systems Read More »

CERT-In Issues Alert on WPForms Vulnerability That Can Disrupt Payment and Subscription Services

cyber news, vulnerability, vulnerability management /

CERT-In Issues Alert on WPForms Vulnerability That Can Disrupt Payment and Subscription Services 2025-01-03 at 12:36 By Ashish Khaitan Overview  The Indian Computer Emergency Response Team (CERT-In) has issued an alert regarding a critical security vulnerability in the WPForms plugin for WordPress. The flaw, identified as CVE-2024-11205, could allow attackers to bypass authorization controls and

React to this headline:

Loading spinner

CERT-In Issues Alert on WPForms Vulnerability That Can Disrupt Payment and Subscription Services Read More »

Ukraine Takes Steps to Strengthen its Cybersecurity Framework with Policy Advancements and Strategic Initiatives

cyber news /

Ukraine Takes Steps to Strengthen its Cybersecurity Framework with Policy Advancements and Strategic Initiatives 2025-01-02 at 17:00 By Ashish Khaitan Overview  Ukraine has taken significant steps to enhance its cybersecurity posture, introducing key updates to its Organizational and Technical Model (OTM) of Cybersecurity and implementing new standards for safeguarding critical infrastructure facilities (CIF). These developments

React to this headline:

Loading spinner

Ukraine Takes Steps to Strengthen its Cybersecurity Framework with Policy Advancements and Strategic Initiatives Read More »

VibeBP WordPress Plugin Security Flaws Expose Sites to RCE and Privilege Escalation

cyber news, vulnerability, vulnerability management /

VibeBP WordPress Plugin Security Flaws Expose Sites to RCE and Privilege Escalation 2024-12-31 at 14:51 By Ashish Khaitan Overview The Cybersecurity and Infrastructure Security Agency (CERT-In) released an urgent vulnerability note (CIVN-2024-0360) concerning several critical VibeBP vulnerabilities . These vulnerabilities in VibeBP pose online risk to website owners using affected versions, and they could lead to

React to this headline:

Loading spinner

VibeBP WordPress Plugin Security Flaws Expose Sites to RCE and Privilege Escalation Read More »

Cyber Security Agency of Singapore Warns of Exploited Apache Vulnerabilities in 2024

CSA, cyber news, vulnerability, vulnerability management /

Cyber Security Agency of Singapore Warns of Exploited Apache Vulnerabilities in 2024 2024-12-31 at 10:56 By Ashish Khaitan Overview  The Cyber Security Agency of Singapore (CSA) has alerted users of multiple vulnerabilities in Apache software. According to the alert, three Apache vulnerabilities have been reported, including CVE-2024-43441, CVE-2024-45387, and CVE-2024-52046. In late 2024, the Apache

React to this headline:

Loading spinner

Cyber Security Agency of Singapore Warns of Exploited Apache Vulnerabilities in 2024 Read More »

Attack Surface Management (ASM) in 2025: Key Trends to Watch 

ASM, attack surface management, cyber news /

Attack Surface Management (ASM) in 2025: Key Trends to Watch  2024-12-30 at 11:20 By Ashish Khaitan The digital world is evolving at lightning speed, and so are the challenges that come with it. For organizations today, their attack surface—the sum of all potential entry points for a cyberattack—is expanding faster than ever before. From misconfigured

React to this headline:

Loading spinner

Attack Surface Management (ASM) in 2025: Key Trends to Watch  Read More »

A Look at CISA Known Exploited Vulnerabilities in 2024 

CISA, CISA KEV, CVE-2002-0367, CVE-2012-4792, CVE-2024-3393, cyber news, cybersecurity, Exploited Vulnerabilities, vulnerability /

A Look at CISA Known Exploited Vulnerabilities in 2024  2024-12-30 at 10:19 By Ashish Khaitan Overview  The U.S. Cybersecurity and Infrastructure Security Agency (CISA) added 185 vulnerabilities to its Known Exploited Vulnerabilities (KEV) catalog in 2024, as the database grew to 1,238 software and hardware flaws at high risk of cyberattacks.  The agency removed at

React to this headline:

Loading spinner

A Look at CISA Known Exploited Vulnerabilities in 2024  Read More »

Russia, Ukraine, China, and More: The Nations at the Center of the Cybercrime Epidemic 

cyber news, cyberattack, cybercrime, Ransomware, Threat Actor, Threat Intelligence, United Stated /

Russia, Ukraine, China, and More: The Nations at the Center of the Cybercrime Epidemic  2024-12-27 at 12:48 By Ashish Khaitan Overview Cyberattacks on a country’s critical infrastructure have become a growing malicious trend globally. The surge in cybercrime threats and its growing impact on national security, businesses, and individuals has led experts to closely examine

React to this headline:

Loading spinner

Russia, Ukraine, China, and More: The Nations at the Center of the Cybercrime Epidemic  Read More »

China Accuses the U.S. of Hacking Back as Cyber Conflict Grows 

cyber news, cybercrime, cybercriminals, cybersecurity, espionage /

China Accuses the U.S. of Hacking Back as Cyber Conflict Grows  2024-12-27 at 11:18 By Ashish Khaitan Overview U.S. national security and cybersecurity agencies have leveled cyber espionage accusations against the People’s Republic of China (PRC) for much of 2024, accusing the PRC of infiltrating U.S. critical infrastructure and telecom networks – possibly in preparation

React to this headline:

Loading spinner

China Accuses the U.S. of Hacking Back as Cyber Conflict Grows  Read More »

Must-Read Cyble Research Reports of 2024: Trends and Key Takeaways

cyber news /

Must-Read Cyble Research Reports of 2024: Trends and Key Takeaways 2024-12-26 at 13:30 By daksh sharma Of the many reports created by Cyble’s talented team of threat researchers this year, seven stand out for their unique and comprehensive insight into the contemporary threat landscape. We’ll examine some of the key takeaways from the reports, including

React to this headline:

Loading spinner

Must-Read Cyble Research Reports of 2024: Trends and Key Takeaways Read More »

Top 5 Lessons for CISOs and Cybersecurity Professionals from 2024

CISO strategies, cyber news, Cybersecurity lessons 2024, lessons for CISO, ransomware prevention /

Top 5 Lessons for CISOs and Cybersecurity Professionals from 2024 2024-12-20 at 13:51 By Ashish Khaitan The year 2024 has been a rollercoaster for cybersecurity professionals worldwide. From ransomware attacks paralyzing critical industries to insider threats causing massive data breaches, the challenges for Chief Information Security Officers (CISOs) and cybersecurity teams have been relentless. These

React to this headline:

Loading spinner

Top 5 Lessons for CISOs and Cybersecurity Professionals from 2024 Read More »

Europe’s Cyber Resilience Act: A New Era of Cybersecurity for Digital Products 

cyber news, UK /

Europe’s Cyber Resilience Act: A New Era of Cybersecurity for Digital Products  2024-12-19 at 14:18 By Ashish Khaitan Europe embarks on a new chapter in cybersecurity with the entry into force of the Cyber Resilience Act (CRA). This marks the first-ever EU legislation addressing cybersecurity across a broad range of digital products. The CRA will

React to this headline:

Loading spinner

Europe’s Cyber Resilience Act: A New Era of Cybersecurity for Digital Products  Read More »

LNK Files and SSH Commands: A Stealthy Playbook for Advanced Cyber Attacks

cyber news /

LNK Files and SSH Commands: A Stealthy Playbook for Advanced Cyber Attacks 2024-12-19 at 11:33 By rohansinhacyblecom Overview Starting this year, Cyble Research and Intelligence Labs (CRIL) has observed a significant trend where threat actors (TAs) have increasingly leveraged LNK files as an initial infection vector in multiple campaigns. These malicious shortcut files, often disguised

React to this headline:

Loading spinner

LNK Files and SSH Commands: A Stealthy Playbook for Advanced Cyber Attacks Read More »

CISA Orders Federal Agencies to Secure Microsoft 365 Environments

cyber news, Microsoft 365 /

CISA Orders Federal Agencies to Secure Microsoft 365 Environments 2024-12-18 at 15:24 By daksh sharma Overview The U.S. Cybersecurity and Infrastructure Security Agency (CISA) has directed the Federal Civilian Executive Branch to implement more than 50 policies to secure Microsoft 365 environments. The new policies, Binding Operational Directive (BOD) 25-01: Implementing Secure Practices for Cloud

React to this headline:

Loading spinner

CISA Orders Federal Agencies to Secure Microsoft 365 Environments Read More »

CISA Reveals Draft Update to National Cyber Incident Response Plan for Public Feedback

cyber news, National Cyber Incident Response Plan /

CISA Reveals Draft Update to National Cyber Incident Response Plan for Public Feedback 2024-12-17 at 13:49 By daksh sharma Overview The Cybersecurity and Infrastructure Security Agency (CISA) has published the draft update to the National Cyber Incident Response Plan (NCIRP) for public comment on the Federal Register. Developed through collaboration with the Joint Cyber Defense

React to this headline:

Loading spinner

CISA Reveals Draft Update to National Cyber Incident Response Plan for Public Feedback Read More »

CISA Enhances Public Safety Communications with Seven New Resources in Cyber Resiliency Toolkit 

cyber news /

CISA Enhances Public Safety Communications with Seven New Resources in Cyber Resiliency Toolkit  2024-12-12 at 17:03 By daksh sharma Overview  The Cybersecurity and Infrastructure Security Agency (CISA) has recently updated its Public Safety Communications and Cyber Resiliency Toolkit, adding seven new resources aimed at enhancing the resilience and security of public safety communications across the

React to this headline:

Loading spinner

CISA Enhances Public Safety Communications with Seven New Resources in Cyber Resiliency Toolkit  Read More »

A Technical Look at the New ‘Termite’ Ransomware that Hit Blue Yonder

Babuk Ransomware, cyber news, Ransomware, Termite ransomware /

A Technical Look at the New ‘Termite’ Ransomware that Hit Blue Yonder 2024-12-06 at 20:48 By Paul Shread The ransomware attack that hit supply chain management platform Blue Yonder and its customers last month was the work of a new ransomware group called “Termite.” Cyble Research and Intelligence Labs (CRIL) researchers have examined a Termite

React to this headline:

Loading spinner

A Technical Look at the New ‘Termite’ Ransomware that Hit Blue Yonder Read More »

Scroll to Top