Israel’s premier oil refinery operator, BAZAN Group, faced an unexpected shutdown of its website. This shutdown came after a Distributed Denial of Service (DDoS) attack. The company, once known as Oil Refineries Ltd., plays a major role in the energy…
In a recent cyberattack, US government service contractor Maximus fell victim, revealing a data breach that has exposed personal details of an estimated 8 to 11 million individuals. The breach was made possible through the MOVEit Transfer data-theft attacks that…
It has been found that an all-new malware, labeled “Realst,” is on a large-scale mission to target Apple devices. Astoundingly, the malware already supports macOS 14 Sonoma, which is yet to be released. A prominent security analyst, iamdeadlyz, initially made…
There’s an alarming rise in the theft of corporate credentials, with a recent analysis revealing that over 400,000 such credentials have been stolen by malware that specialize in data theft. The analysis scrutinized close to 20 million malware logs sold…
A considerable number of Citrix Netscaler ADC and Gateway servers, revealed on the internet, are susceptible to the hazardous attacks exploiting a critical remote code execution (RCE) bug. The RCE bug was previously manipulated as a zero-day, which exposes them…
Cybercriminals increasingly lean towards generative artificial intelligence tools as a new weapon of choice. An alarming number of OpenAI credentials, running into hundreds of thousands, are up for sale on the dark web. Additionally, a malicious counterpart to ChatGPT is…
A newly discovered worm malware known as P2PInfect is proving to be a threat to Redis servers. This malware, discovered earlier this month by security researchers from Unit 42, showcases self-spreading capabilities. The malicious software aims primarily at Redis instances…
The Cyber Police Department of the National Police of Ukraine has scored another major victory against online disinformation and fraud. They’ve successfully rooted out a significant bot farm connected to over 100 individuals. This decisive operation involved extensive searches f…
A severe vulnerability in the widely-used WooCommerce Payments plugin is under rampant attack by cybercriminals. They are exploiting this security loophole to gain access rights of all users, notably administrators, on WordPress sites that are susceptible to this exploitation. About…
The breach came to light on June 27, just one week after the hackers infiltrated JumpCloud’s systems through a well-crafted spear-phishing attack. While no immediate evidence of customer impact was found, the company proactively decided to rotate credentials and rebuild…
