28/68 Tuesday, January 21, 2025 Kaspersky Reveals Over 10 Vulnerabilities in Mercedes-Benz User Experience (MBUX) System Kaspersky has disclosed details of more than 10 vulnerabilities in the Mercedes-Benz User Experience (MBUX) infotainment system. Some of these vulnerabilities could potentially be exploited for Denial of Service (DoS) attacks, data extraction, remote command execution, and privilege escalation. […]
27/68 Tuesday, January 21, 2025 A severe vulnerability has been identified in the widely-used WordPress plugin, W3 Total Cache, potentially allowing attackers to access sensitive internal service data and metadata on cloud applications. The vulnerability, designated as CVE-2024-12365, carries a CVSS severity score of 8.5. W3 Total Cache is a popular plugin for optimizing WordPress […]
26/68 Monday, January 20, 2025 The U.S. Department of the Treasury, through the Office of Foreign Assets Control (OFAC), has imposed sanctions on China’s Sichuan Juxinhe Network Technology Co., LTD. due to its involvement with the Salt Typhoon hacking group, which recently targeted several U.S. telecommunications and internet service providers. Additionally, OFAC has sanctioned Yin […]
25/68 Monday, January 20, 2025 TikTok, the globally popular social media platform, has officially announced its shutdown in the United States starting January 19, 2025, following a federal government ban citing national security concerns. In a notification to its users, TikTok stated, “We deeply regret this service disruption and sincerely thank you for your past […]
24/68 Friday, January 17, 2025 A new hacker group known as the “Belsen Group” has leaked the network configuration data, IP addresses, and VPN credentials of over 15,000 FortiGate devices on the Dark Web to promote their reputation. The leaked data, available for free, is 1.6 GB in size and includes folders containing critical configuration […]
23/68 Friday, January 17, 2025 The U.S. Federal Trade Commission (FTC), an independent agency dedicated to protecting consumers, has released a report stating that GoDaddy, a major hosting provider managing over 82 million domain names, has failed to implement basic security measures for its platform since 2018. This negligence has left customers and website visitors […]
22/68 Thursday, January 16, 2025 A new malware campaign has compromised more than 5,000 WordPress websites, creating fake admin accounts, installing malicious plugins, and stealing sensitive information. Researchers from the cybersecurity firm c/side discovered that the malware uses the domain wp3[.]xyz to exfiltrate data to the attackers’ server. After successfully breaching a system, the malicious […]
21/68 Thursday, January 16, 2025 President Joe Biden has signed a landmark executive order aimed at supporting the development of artificial intelligence (AI) infrastructure. The order emphasizes the establishment of advanced AI data centers powered by renewable energy sources, such as wind and solar, to meet the growing demands of industries widely adopting AI. Federal […]
20/68 Wednesday, January 15, 2025 The Cybersecurity and Infrastructure Security Agency (CISA) has added new vulnerabilities to its Known Exploited Vulnerabilities (KEV) catalog. One of the vulnerabilities is CVE-2024-12686, an OS Command Injection vulnerability with a CVSS severity score of 6.6, found in BeyondTrust Privileged Remote Access (PRA) and Remote Support (RS). This vulnerability allows […]
19/68 Wednesday, January 15, 2025 Researchers from Trend Micro have disclosed that cyber attackers are targeting individuals searching for pirated software or cracked programs by using trusted platforms like YouTube and Google as tools for deception. The attackers create tutorial videos guiding users on how to install software, embedding download links in the video comment […]
