News

Shared secret: EDR killer in the kill chain

Bys s August 6, 2025

A look under the hood at a tool designed to disable protections

News

Veeam and IBM Release Patches for High-Risk Flaws in Backup and AIX Systems
Bys s March 20, 2025

Veeam has released security updates to address a critical security flaw impacting its Backup & Replication software that could lead to remote code execution. The vulnerability, tracked as CVE-2025-23120, carries a CVSS score of 9.9 out of 10.0. It affects 12.3.0.310 and all earlier version 12 builds. “A vulnerability allowing remote code execution (RCE) by…

Read More Veeam and IBM Release Patches for High-Risk Flaws in Backup and AIX Systems
News

Malicious PyPI Packages Stole Cloud Tokens—Over 14,100 Downloads Before Removal
Bys s March 15, 2025

Cybersecurity researchers have warned of a malicious campaign targeting users of the Python Package Index (PyPI) repository with bogus libraries masquerading as “time” related utilities, but harboring hidden functionality to steal sensitive data such as cloud access tokens. Software supply chain security firm ReversingLabs said it discovered two sets of packages totaling 20 of them….

Read More Malicious PyPI Packages Stole Cloud Tokens—Over 14,100 Downloads Before Removal
News

900+ Sangoma FreePBX Instances Compromised in Ongoing Web Shell Attacks
Bys s February 27, 2026

The Shadowserver Foundation has revealed that over 900 Sangoma FreePBX instances still remain infected with web shells as part of attacks that exploited a command injection vulnerability starting in December 2025. Of these, 401 instances are located in the U.S., followed by 51 in Brazil, 43 in Canada, 40 in Germany, and 36 in France….

Read More 900+ Sangoma FreePBX Instances Compromised in Ongoing Web Shell Attacks
News

CBI Shuts Down £390K U.K. Tech Support Scam, Arrests Key Operatives in Noida Call Center
Bys s July 14, 2025

India’s Central Bureau of Investigation (CBI) has announced that it has taken steps to dismantle what it said was a transnational cybercrime syndicate that carried out “sophisticated” tech support scams targeting citizens of Australia and the United Kingdom. The fraudulent scheme is estimated to have led to losses worth more than £390,000 ($525,000) in the…

Read More CBI Shuts Down £390K U.K. Tech Support Scam, Arrests Key Operatives in Noida Call Center
News

Top-Rated Chinese AI App DeepSeek Limits Registrations Amid Cyberattacks
Bys s January 28, 2025

DeepSeek, the Chinese AI startup that has captured much of the artificial intelligence (AI) buzz in recent days, said it’s restricting registrations on the service, citing malicious attacks. “Due to large-scale malicious attacks on DeepSeek’s services, we are temporarily limiting registrations to ensure continued service,” the company said in an incident report page. “Existing users…

Read More Top-Rated Chinese AI App DeepSeek Limits Registrations Amid Cyberattacks
News

Navigating the Future: Key IT Vulnerability Management Trends
Bys s February 5, 2025

As the cybersecurity landscape continues to evolve, proactive vulnerability management has become a critical priority for managed service providers (MSPs) and IT teams. Recent trends indicate that organizations increasingly prioritize more frequent IT security vulnerability assessments to identify and address potential security flaws. Staying informed on these trends can help MSPs and IT teams

Read More Navigating the Future: Key IT Vulnerability Management Trends

Similar Posts