News

February’s Patch Tuesday assumes battle stations

Bys s February 13, 2026

Just 58 CVEs to spar with in February, but plenty are already under attack

Categories: Threat Research, X-ops

Tags: Patch Tuesday, Microsoft, Windows

News

Microsoft Discloses DNS-Based ClickFix Attack Using Nslookup for Malware Staging
Bys s February 15, 2026

Microsoft has disclosed details of a new version of the ClickFix social engineering tactic in which the attackers trick unsuspecting users into running commands that carry out a Domain Name System (DNS) lookup to retrieve the next-stage payload. Specifically, the attack relies on using the “nslookup” (short for nameserver lookup) command to execute a custom…

Read More Microsoft Discloses DNS-Based ClickFix Attack Using Nslookup for Malware Staging
News

CISA Updates KEV Catalog with Four Actively Exploited Software Vulnerabilities
Bys s January 23, 2026

The U.S. Cybersecurity and Infrastructure Security Agency (CISA) on Thursday added four security flaws to its Known Exploited Vulnerabilities (KEV) catalog, citing evidence of active exploitation in the wild. The list of vulnerabilities is as follows – CVE-2025-68645 (CVSS score: 8.8) – A PHP remote file inclusion vulnerability in Synacor Zimbra Collaboration Suite (ZCS) that…

Read More CISA Updates KEV Catalog with Four Actively Exploited Software Vulnerabilities
News

Administrator Of Online Criminal Marketplace Extradited From Kosovo To The United States
Bys s May 14, 2025

Tampa, Florida – United States Attorney Gregory W. Kehoe announces the extradition of Liridon Masurica (33, Gjilan, Kosovo), also known as “@blackdb.” Masurica is charged with one count of conspiracy to commit access device fraud and five substantive counts of fraudulent use of 15 or more unauthorized access devices. If convicted on all counts, Masurica faces…

Read More Administrator Of Online Criminal Marketplace Extradited From Kosovo To The United States
News

Personal medical information might have been exposed on Chicago Department of Public Health dashboard
Bys s January 29, 2025

Todd Feuer reports: Some people might have had their names and medical information exposed on a Chicago Department of Public Health online dashboard last fall, city officials said. On Oct. 8, 2024, the department learned about an “inadvertent potential disclosure of sensitive information used to generate statistics related to public health and safety,” CDPH officials…

Read More Personal medical information might have been exposed on Chicago Department of Public Health dashboard
News

Attleboro investigating ‘cybersecurity incident’ impacting city’s IT systems
Bys s November 21, 2025

Marc Fortier reports: City officials and police in Attleboro, Massachusetts, say they are investigating a “cybersecurity incident” that has taken several of the city’s information technology systems offline. “City leaders are working with cybersecurity specialists, the city’s insurer and state and federal partners to identify the cause and begin restoring services,” the city said in……

Read More Attleboro investigating ‘cybersecurity incident’ impacting city’s IT systems
News

CISA Adds Second BeyondTrust Flaw to KEV Catalog Amid Active Attacks
Bys s January 13, 2025

The U.S. Cybersecurity and Infrastructure Security Agency (CISA) on Monday added a second security flaw impacting BeyondTrust Privileged Remote Access (PRA) and Remote Support (RS) products to the Known Exploited Vulnerabilities (KEV) catalog, citing evidence of active exploitation in the wild. The vulnerability in question is CVE-2024-12686 (CVSS score: 6.6), a medium-severity bug that could

Read More CISA Adds Second BeyondTrust Flaw to KEV Catalog Amid Active Attacks

Similar Posts