Ruijie Networks’ Cloud Platform Flaws Could Expose 50,000 Devices to Remote Attacks

25/12/2024 0 Comments 0 tags

Cybersecurity researchers have discovered several security flaws in the cloud management platform developed by Ruijie Networks that could permit an attacker to take control of the network appliances. “These vulnerabilities

Researchers Uncover PyPI Packages Stealing Keystrokes and Hijacking Social Accounts

24/12/2024 0 Comments 0 tags

Cybersecurity researchers have flagged two malicious packages that were uploaded to the Python Package Index (PyPI) repository and came fitted with capabilities to exfiltrate sensitive information from compromised hosts, according

CISA Adds Acclaim USAHERDS Vulnerability to KEV Catalog Amid Active Exploitation

24/12/2024 0 Comments 0 tags

The U.S. Cybersecurity and Infrastructure Security Agency (CISA) on Monday added a now-patched high-severity security flaw impacting Acclaim Systems USAHERDS to the Known Exploited Vulnerabilities (KEV) catalog, based on evidence

North Korean Hackers Pull Off $308M Bitcoin Heist from Crypto Firm DMM Bitcoin

24/12/2024 0 Comments 0 tags

Japanese and U.S. authorities have formerly attributed the theft of cryptocurrency worth $308 million from cryptocurrency company DMM Bitcoin in May 2024 to North Korean cyber actors. “The theft is

Apache Tomcat Vulnerability CVE-2024-56337 Exposes Servers to RCE Attacks

24/12/2024 0 Comments 0 tags

The Apache Software Foundation (ASF) has released a security update to address an important vulnerability in its Tomcat server software that could result in remote code execution (RCE) under certain

⚡ THN Weekly Recap: Top Cybersecurity Threats, Tools and Tips

23/12/2024 0 Comments 0 tags

The online world never takes a break, and this week shows why. From ransomware creators being caught to hackers backed by governments trying new tricks, the message is clear: cybercriminals

AI Could Generate 10,000 Malware Variants, Evading Detection in 88% of Case

23/12/2024 0 Comments 0 tags

Cybersecurity researchers have found that it’s possible to use large language models (LLMs) to generate new variants of malicious JavaScript code at scale in a manner that can better evade

Top 10 Cybersecurity Trends to Expect in 2025

23/12/2024 0 Comments 0 tags

The 2025 cybersecurity landscape is increasingly complex, driven by sophisticated cyber threats, increased regulation, and rapidly evolving technology. In 2025, organizations will be challenged with protecting sensitive information for their

Rockstar2FA Collapse Fuels Expansion of FlowerStorm Phishing-as-a-Service

23/12/2024 0 Comments 0 tags

An interruption to the phishing-as-a-service (PhaaS) toolkit called Rockstar 2FA has led to a rapid uptick in activity from another nascent offering named FlowerStorm. “It appears that the [Rockstar2FA] group

U.S. Judge Rules Against NSO Group in WhatsApp Pegasus Spyware Case

23/12/2024 0 Comments 0 tags

Meta Platforms-owned WhatsApp scored a major legal victory in its fight against Israeli commercial spyware vendor NSO Group after a federal judge in the U.S. state of California ruled in