Digests

Cybersecurity Digest #90: 20/02/2024 – 05/03/2024

Cybersecurity Digest #90: 20/02/2024 – 05/03/2024

Cybersecurity News

Lazarus Group has been exploiting a flaw in the Windows AppLocker driver as a zero-day to gain kernel-level access and turn off security tools, allowing them to bypass noisy BYOVD techniques.
Four new vulnerabilities have been discovered in some of the Zyxel Firewall and access point versions that are associ

Cybersecurity Digest #89: 06/02/2024 – 20/02/2024

Cybersecurity Digest #89: 06/02/2024 – 20/02/2024

Cybersecurity News

Google is testing a new feature to prevent malicious public websites from pivoting through a user’s browser to attack devices and services on internal, private networks.
Threat hunters have identified a new variant of Android malware called MoqHao.

Cybersecurity Digest #67: 23/01/2023 – 08/02/2023

Cybersecurity Digest #67: 23/01/2023 – 08/02/2023

Cybersecurity news

Fortra has released an emergency patch to address an actively exploited zero-day vulnerability in the GoAnywhere MFT secure file transfer tool.

Cybersecurity Digest #66: 02/01/2023 – 23/01/2023

Cybersecurity Digest #66: 02/01/2023 – 23/01/2023

Cybersecurity news

Threat actors now use OneNote attachments in phishing emails that infect victims with remote access malware which can be used to install further malware, steal passwords, or even cryptocurrency wallets.
More than 4,000 public-facing Sophos firewalls remain vulnerable to a critical remote code execution bug disclosed last year and

Cybersecurity Digest #65: 12/12/2022 – 26/12/2022

Cybersecurity Digest #65: 12/12/2022 – 26/12/2022

Cybersecurity news

Security researchers have found a new exploit that allows attackers to remotely execute code through Outlook Web Access, on Microsoft Exchange Server.

Cybersecurity Digest #64: 28/11/2022 – 12/12/2022

Cybersecurity Digest #64: 28/11/2022 – 12/12/2022

Cybersecurity news

A new attack method named COVID-bit uses electromagnetic waves to transmit data from air-gapped systems, which are isolated from the internet, over a distance of at least two meters, where it’s captured by a receiver.

Cybersecurity Digest #47: 04/04/2022 – 15/04/2022

Cybersecurity Digest #47: 04/04/2022 – 15/04/2022

Cybersecurity news

Elementor, a WordPress website builder plugin with over five million active installations, has been found to be vulnerable to an authenticated remote code execution flaw, that could be abused to take over affected websites.
Threat actors have launched a new marketplace called Industrial Spy that sells stolen data from

Subscribe to Digests