Rapidly Information Technology News
A critical vulnerability has been discovered in the popular WPML plugin for WordPress, endangering the security of over one million websites. This issue, associated with remote code execution (RCE), has been designated as CVE-2024-6386...
A specialist from SafeBreach, Alon Leviev, has released a tool called Windows Downdate, which enables the reintroduction of old vulnerabilities on updated systems, including Windows 10, Windows 11, and Windows Server. A downgrade attack...
The U.S. Department of State has announced a reward of up to $2.5 million for information leading to the arrest or conviction of Vladimir Kadaria, accused of involvement with a major cybercriminal group. The...
Experts at Kaspersky Lab have identified a new threat targeting macOS users in China: the HZ RAT backdoor, previously known only in its Microsoft Windows variant. The Trojan is being disseminated through popular Chinese...
The Chinese hacker group Volt Typhoon carried out a series of attacks exploiting a zero-day vulnerability in the Versa Director management system—a platform utilized by internet service providers to manage virtual networks. The vulnerability,...
In July 2024, Netskope experts identified a sharp surge in phishing attacks exploiting Microsoft Sway to steal Microsoft 365 user credentials. The recorded 2000-fold increase in attacks starkly contrasted with the minimal activity seen...
Cybersecurity researchers are sounding the alarm over significant risks associated with vulnerabilities in the software supply chain for machine learning (ML). Recently, over 20 vulnerabilities were identified across various MLOps platforms, which could be...
The Bling Libra group, known as the creator of the ShinyHunters ransomware, has altered its operational tactics, shifting from selling stolen data to extortion. This change came to light following an incident in which...
The hacker known as USDoD has revealed his identity, claiming to be 33-year-old Luan G. from the state of Minas Gerais, Brazil. USDoD, also known as EquationCorp, is infamous for the data breach of...
A lawsuit has recently been filed in the United States against one of the nation’s leading research universities, accused of violating cybersecurity standards established by the Department of Defense (DoD). The Georgia Institute of...
Aon has uncovered a new Linux malware named sedexp, which has remained undetected since 2022 due to its unique stealth techniques. This malware enables attackers to remotely control infected devices and execute attacks. What...
Last week, Google released an urgent security update for Chrome to address a vulnerability, identified as CVE-2024-7971, which had already been exploited by hackers. This vulnerability, located in Chrome’s JavaScript V8 engine, is a...