Tag: January 2025

Researchers uncovered critical security vulnerabilities in Azure DevOps, primarily focusing on Server-Side Request Forgery (SSRF) flaws.

A significant security vulnerability, identified as CVE-2024-13454, has been discovered in the OpenVPN Easy-RSA tool, affecting versions 3.0.5 to 3.2.0

The Computer Emergency Response Team of Ukraine (CERT-UA) issued a warning regarding ongoing phishing attacks where threat actors impersonate

A critical vulnerability, CVE-2024-54887, has been discovered in the TP-Link TL-WR940N router, which could allow attackers to remotely execute

Russian hackers, believed to be affiliated with the group NoName, launched a series of cyberattacks targeting several Swiss municipalities

Researchers have identified a new adversary-in-the-middle (AitM) phishing kit called Sneaky 2FA, which targets Microsoft 365 accounts to steal credentials

A new Internet of Things (IoT) botnet has been identified as a significant threat, orchestrating large-scale Distributed Denial-of-Service (DDoS)

In 2024, a significant data breach was reported involving Otelier, a cloud-based hotel management software provider that services prominent

NewsBank, an information provider based in Naples, Florida, recently reported a data breach that potentially exposed sensitive personal identifiable information.

Cybersecurity researchers have uncovered a critical flaw in the Windows BitLocker encryption system, known as the "bitpixie" exploit.