cyber news

FBI, CISA Urge Memory-Safe Practices for Software Development 

cyber news /

FBI, CISA Urge Memory-Safe Practices for Software Development  2025-02-14 at 12:20 By Paul Shread In a strongly worded advisory, the FBI and the U.S. Cybersecurity and Infrastructure Security Agency (CISA) have urged software developers to cease unsafe development practices that lead to “unforgivable” buffer overflow vulnerabilities.  “Despite the existence of well-documented, effective mitigations for buffer […]

React to this headline:

Loading spinner

FBI, CISA Urge Memory-Safe Practices for Software Development  Read More »

Cyber Security Agency of Singapore Alerts Users on Active Exploitation of Zero-Day Vulnerability in Apple Products

cyber news /

Cyber Security Agency of Singapore Alerts Users on Active Exploitation of Zero-Day Vulnerability in Apple Products 2025-02-13 at 06:19 By daksh sharma Overview The Cyber Security Agency of Singapore (CSA) has recently issued a warning regarding the active exploitation of a zero-day vulnerability (CVE-2025-24200) in a range of Apple products. This critical vulnerability is being

React to this headline:

Loading spinner

Cyber Security Agency of Singapore Alerts Users on Active Exploitation of Zero-Day Vulnerability in Apple Products Read More »

Australia’s Health Sector Receives $6.4 Million Cybersecurity Boost with New Threat Information-Sharing Network

Australia, Australian Government, cyber news, cyberattack, HCSN, Health Cyber Sharing Network /

Australia’s Health Sector Receives $6.4 Million Cybersecurity Boost with New Threat Information-Sharing Network 2025-01-29 at 12:48 By daksh sharma The Australian Government has awarded a $6.4 million grant to CI-ISAC Australia, enabling the establishment of a new Health Cyber Sharing Network (HCSN). This initiative is designed to facilitate the rapid exchange of critical cyber threat

React to this headline:

Loading spinner

Australia’s Health Sector Receives $6.4 Million Cybersecurity Boost with New Threat Information-Sharing Network Read More »

Anatomy of an Exploit Chain: CISA, FBI Detail Ivanti CSA Attacks 

cyber news /

Anatomy of an Exploit Chain: CISA, FBI Detail Ivanti CSA Attacks  2025-01-24 at 16:02 By Cyble Threat actors chained together four vulnerabilities in Ivanti Cloud Service Appliances (CSA) in confirmed attacks on multiple organizations in September, according to an advisory released this week by the FBI and the U.S. Cybersecurity and Infrastructure Security Agency (CISA). 

React to this headline:

Loading spinner

Anatomy of an Exploit Chain: CISA, FBI Detail Ivanti CSA Attacks  Read More »

Aircraft Collision Avoidance Systems Hit by High-Severity ICS Vulnerability 

cyber news, vulnerability /

Aircraft Collision Avoidance Systems Hit by High-Severity ICS Vulnerability  2025-01-23 at 14:48 By Paul Shread Overview  A pair of vulnerabilities in the Traffic Alert and Collision Avoidance System (TCAS) II for avoiding midair collisions were among 20 vulnerabilities reported by Cyble in its weekly Industrial Control System (ICS) Vulnerability Intelligence Report.  The midair collision system

React to this headline:

Loading spinner

Aircraft Collision Avoidance Systems Hit by High-Severity ICS Vulnerability  Read More »

Cyble Finds Thousands of Security Vendor Credentials on Dark Web

credentials, cyber news, Dark Web Monitoring, data breach, Data leak, Info stealer /

Cyble Finds Thousands of Security Vendor Credentials on Dark Web 2025-01-22 at 10:23 By Paul Shread Overview Account credentials from some of the largest cybersecurity vendors can be found on the dark web, a result of the growing problem of infostealers, according to an analysis of Cyble threat intelligence data. The credentials – available for

React to this headline:

Loading spinner

Cyble Finds Thousands of Security Vendor Credentials on Dark Web Read More »

AI Takes the Center Stage in Biden’s Landmark Cybersecurity Order

AI, biden, cyber news /

AI Takes the Center Stage in Biden’s Landmark Cybersecurity Order 2025-01-17 at 12:33 By daksh sharma Overview Outgoing U.S. President Joe Biden issued an order yesterday outlining measures to improve government cybersecurity. The lengthy order includes suggestions to improve cloud and software security by building requirements into the federal acquisition process. It also orders federal

React to this headline:

Loading spinner

AI Takes the Center Stage in Biden’s Landmark Cybersecurity Order Read More »

Lithuania’s New Cyber Command is a Strategic Step Towards National and NATO Cybersecurity Resilience

cyber news /

Lithuania’s New Cyber Command is a Strategic Step Towards National and NATO Cybersecurity Resilience 2025-01-09 at 15:06 By Ashish Khaitan Overview  On January 1, Lithuania marked a pivotal moment in its national defense strategy with the official launch of the Lithuanian Cyber Command (LTCYBERCOM). Spearheaded by the Ministry of National Defence, this new military unit

React to this headline:

Loading spinner

Lithuania’s New Cyber Command is a Strategic Step Towards National and NATO Cybersecurity Resilience Read More »

The Commonwealth Cyber Security Posture 2024: A Deep Dive into Australia’s Cyber Defense Measures

cyber news /

The Commonwealth Cyber Security Posture 2024: A Deep Dive into Australia’s Cyber Defense Measures 2025-01-08 at 12:50 By Ashish Khaitan Overview  The Australian Government has shared its latest report for commonwealth cyber security. The Commonwealth Cyber Security Posture in 2024 report provides an essential update on the measures and progress related to cyber security across

React to this headline:

Loading spinner

The Commonwealth Cyber Security Posture 2024: A Deep Dive into Australia’s Cyber Defense Measures Read More »

MyCERT Advisory Recommends Cybersecurity Practices for Water Systems

cyber news /

MyCERT Advisory Recommends Cybersecurity Practices for Water Systems 2025-01-07 at 14:18 By Ashish Khaitan Overview  The water sector is experiencing a rise in cyber threats, with critical infrastructure, including both IT and operational technology (OT) systems, becoming primary targets for malicious actors. These attacks, which exploit vulnerabilities in internet-facing OT systems and industrial control systems

React to this headline:

Loading spinner

MyCERT Advisory Recommends Cybersecurity Practices for Water Systems Read More »

CERT-In Issues Alert on WPForms Vulnerability That Can Disrupt Payment and Subscription Services

cyber news, vulnerability, vulnerability management /

CERT-In Issues Alert on WPForms Vulnerability That Can Disrupt Payment and Subscription Services 2025-01-03 at 12:36 By Ashish Khaitan Overview  The Indian Computer Emergency Response Team (CERT-In) has issued an alert regarding a critical security vulnerability in the WPForms plugin for WordPress. The flaw, identified as CVE-2024-11205, could allow attackers to bypass authorization controls and

React to this headline:

Loading spinner

CERT-In Issues Alert on WPForms Vulnerability That Can Disrupt Payment and Subscription Services Read More »

Ukraine Takes Steps to Strengthen its Cybersecurity Framework with Policy Advancements and Strategic Initiatives

cyber news /

Ukraine Takes Steps to Strengthen its Cybersecurity Framework with Policy Advancements and Strategic Initiatives 2025-01-02 at 17:00 By Ashish Khaitan Overview  Ukraine has taken significant steps to enhance its cybersecurity posture, introducing key updates to its Organizational and Technical Model (OTM) of Cybersecurity and implementing new standards for safeguarding critical infrastructure facilities (CIF). These developments

React to this headline:

Loading spinner

Ukraine Takes Steps to Strengthen its Cybersecurity Framework with Policy Advancements and Strategic Initiatives Read More »

VibeBP WordPress Plugin Security Flaws Expose Sites to RCE and Privilege Escalation

cyber news, vulnerability, vulnerability management /

VibeBP WordPress Plugin Security Flaws Expose Sites to RCE and Privilege Escalation 2024-12-31 at 14:51 By Ashish Khaitan Overview The Cybersecurity and Infrastructure Security Agency (CERT-In) released an urgent vulnerability note (CIVN-2024-0360) concerning several critical VibeBP vulnerabilities . These vulnerabilities in VibeBP pose online risk to website owners using affected versions, and they could lead to

React to this headline:

Loading spinner

VibeBP WordPress Plugin Security Flaws Expose Sites to RCE and Privilege Escalation Read More »

Cyber Security Agency of Singapore Warns of Exploited Apache Vulnerabilities in 2024

CSA, cyber news, vulnerability, vulnerability management /

Cyber Security Agency of Singapore Warns of Exploited Apache Vulnerabilities in 2024 2024-12-31 at 10:56 By Ashish Khaitan Overview  The Cyber Security Agency of Singapore (CSA) has alerted users of multiple vulnerabilities in Apache software. According to the alert, three Apache vulnerabilities have been reported, including CVE-2024-43441, CVE-2024-45387, and CVE-2024-52046. In late 2024, the Apache

React to this headline:

Loading spinner

Cyber Security Agency of Singapore Warns of Exploited Apache Vulnerabilities in 2024 Read More »

Attack Surface Management (ASM) in 2025: Key Trends to Watch 

ASM, attack surface management, cyber news /

Attack Surface Management (ASM) in 2025: Key Trends to Watch  2024-12-30 at 11:20 By Ashish Khaitan The digital world is evolving at lightning speed, and so are the challenges that come with it. For organizations today, their attack surface—the sum of all potential entry points for a cyberattack—is expanding faster than ever before. From misconfigured

React to this headline:

Loading spinner

Attack Surface Management (ASM) in 2025: Key Trends to Watch  Read More »

A Look at CISA Known Exploited Vulnerabilities in 2024 

CISA, CISA KEV, CVE-2002-0367, CVE-2012-4792, CVE-2024-3393, cyber news, cybersecurity, Exploited Vulnerabilities, vulnerability /

A Look at CISA Known Exploited Vulnerabilities in 2024  2024-12-30 at 10:19 By Ashish Khaitan Overview  The U.S. Cybersecurity and Infrastructure Security Agency (CISA) added 185 vulnerabilities to its Known Exploited Vulnerabilities (KEV) catalog in 2024, as the database grew to 1,238 software and hardware flaws at high risk of cyberattacks.  The agency removed at

React to this headline:

Loading spinner

A Look at CISA Known Exploited Vulnerabilities in 2024  Read More »

Russia, Ukraine, China, and More: The Nations at the Center of the Cybercrime Epidemic 

cyber news, cyberattack, cybercrime, Ransomware, Threat Actor, Threat Intelligence, United Stated /

Russia, Ukraine, China, and More: The Nations at the Center of the Cybercrime Epidemic  2024-12-27 at 12:48 By Ashish Khaitan Overview Cyberattacks on a country’s critical infrastructure have become a growing malicious trend globally. The surge in cybercrime threats and its growing impact on national security, businesses, and individuals has led experts to closely examine

React to this headline:

Loading spinner

Russia, Ukraine, China, and More: The Nations at the Center of the Cybercrime Epidemic  Read More »

China Accuses the U.S. of Hacking Back as Cyber Conflict Grows 

cyber news, cybercrime, cybercriminals, cybersecurity, espionage /

China Accuses the U.S. of Hacking Back as Cyber Conflict Grows  2024-12-27 at 11:18 By Ashish Khaitan Overview U.S. national security and cybersecurity agencies have leveled cyber espionage accusations against the People’s Republic of China (PRC) for much of 2024, accusing the PRC of infiltrating U.S. critical infrastructure and telecom networks – possibly in preparation

React to this headline:

Loading spinner

China Accuses the U.S. of Hacking Back as Cyber Conflict Grows  Read More »

Must-Read Cyble Research Reports of 2024: Trends and Key Takeaways

cyber news /

Must-Read Cyble Research Reports of 2024: Trends and Key Takeaways 2024-12-26 at 13:30 By daksh sharma Of the many reports created by Cyble’s talented team of threat researchers this year, seven stand out for their unique and comprehensive insight into the contemporary threat landscape. We’ll examine some of the key takeaways from the reports, including

React to this headline:

Loading spinner

Must-Read Cyble Research Reports of 2024: Trends and Key Takeaways Read More »

Top 5 Lessons for CISOs and Cybersecurity Professionals from 2024

CISO strategies, cyber news, Cybersecurity lessons 2024, lessons for CISO, ransomware prevention /

Top 5 Lessons for CISOs and Cybersecurity Professionals from 2024 2024-12-20 at 13:51 By Ashish Khaitan The year 2024 has been a rollercoaster for cybersecurity professionals worldwide. From ransomware attacks paralyzing critical industries to insider threats causing massive data breaches, the challenges for Chief Information Security Officers (CISOs) and cybersecurity teams have been relentless. These

React to this headline:

Loading spinner

Top 5 Lessons for CISOs and Cybersecurity Professionals from 2024 Read More »

Scroll to Top