Google’s annual 0-day vulnerability report has brought to light a persistent issue within the Android platform that increases the risk and usage of disclosed vulnerabilities for extended periods. The report…

A recent analysis by a group of German academics has shed light on the alarming state of satellite security, revealing that these crucial systems are riddled with basic security flaws.…

CVE-2023-21716 (NVD), a critical flaw in Microsoft Office Word’s RTF parser, has been a focal point in the cybersecurity community since its private disclosure to Microsoft in November 2022. Microsoft…

The announcement of a Common Vulnerabilities and Exposures (CVE) identifier for a product often triggers a cascade of further vulnerability discoveries in the same product. This phenomenon, known as the…

Ivanti has patched another critical vulnerability in its Endpoint Manager Mobile software (formerly MobileIron Core), which was exploited as a zero-day to breach the IT systems of several ministries in…

In a recent blog post by Arctic Wolf titled “Conti and Akira: Chained Together”, the authors delve into the connections between the Conti and Akira ransomware groups. The article provides…

Attention all cybersecurity enthusiasts! The SANS Digital Forensics Summit 2023 is on the horizon. This event is a significant gathering of experts and practitioners in the field of digital forensics…

In the ever-evolving landscape of cyber threats, a new actor has emerged on the scene: Storm-0978. This group, with its financial and espionage motives, has been conducting a series of…

Introduction Zimbra Collaboration Suite (ZCS) is an open-source email collaboration suite widely used by a variety of organizations, including government agencies, universities, and companies. It has been the target of…

Atlassian, a leading provider of team collaboration and productivity software, has recently addressed a high severity Remote Code Execution (RCE) vulnerability in its Confluence Data Center & Server. The vulnerability,…