Search results for:
OpenSSL
CVE/vulnerability
OpenVPN Easy-rsa Vulnerability Allows Attacker to Bruteforce Private CA key
A significant security vulnerability, designated as CVE-2024-13454, has been discovered in the OpenVPN Easy-RSA tool, specifically affecting versions from 3.0.5 to 3.2.0 that utilize...
Cyber Security News
New Mallox Ransomware Linux Variant Attacking Enterprise Linux Servers
Kryptina RaaS, a free and open-source RaaS platform for Linux, initially struggled to attract attention.
Still, after a Mallox affiliate's staging server was leaked...
Apple
GoFetch Side-Channel Attack Impact Apple CPUs: Attackers Steal Secret Keys
Researchers have unveiled a new class of microarchitectural side-channel attacks that pose a severe threat to the security of Apple CPUs.
The attack, GoFetch,...
Cyber Security News
Qbot Malware Via FakeUpdates Leads the Race of Malware Attacks
Hackers use Qbot malware for its advanced capabilities, including keylogging, credential theft, and backdoor functionality.
Previously distributed Qakbot malware campaign was capable of monitoring the...
cyber security
Open Source Security: Trends and Predictions for 2024
Open source security refers to the practice of ensuring that open source software (OSS) is free from vulnerabilities that malicious actors could exploit. It...
cyber security
Nmap 7.94 Released: What’s New!
The latest version of Nmap, 7.94, was released on its 26th birthday. The most significant upgrade was the migration of Zenmap and Ndiff from...
Cyber Security News
Multiple Splunk Enterprise Flaws Let Attackers Execute Arbitrary Code
Splunk Enterprise has multiple vulnerabilities that can lead to Cross-site Scripting (XSS), Denial of Service (DoS), Remote code execution, Privilege Escalation, and Path Traversal....
cyber security
What are Brute Force Attacks, and How to Protect Your APIs Against them?
Brute force attacks have been one of the most common attack types. In Q1 2022, brute force made up 51% of all attacks! These...