MathiasK
cyber security
New Contacto Ransomware Evades AV Detection & Uses Windows Console for Execution
In early January 2025, a new ransomware strain identified as Contacto surfaced, showcasing advanced techniques designed to bypass conventional security measures.This analysis provides...
Cyber Security News
OWASP Smart Contract Top 10 2025 Released – What’s new!
The Open Web Application Security Project (OWASP) has released its updated Smart Contract Top 10 for 2025, providing essential insights for developers and security teams in...
Cyber Security News
Ransomware Attack Forces UK Brit High School to Close Doors For Students
A ransomware attack has compelled UK Brit, a prominent British high school, to close its doors to students for two days, specifically Monday, January...
CVE/vulnerability
PoC Exploit Released for TP-Link Code Execution Vulnerability (CVE-2024-54887)
A serious code execution vulnerability in the TP-Link TL-WR940N router, identified as CVE-2024-54887, has become the focus of intense scrutiny following the release of...
CVE/vulnerability
OpenVPN Easy-rsa Vulnerability Allows Attacker to Bruteforce Private CA key
A significant security vulnerability, designated as CVE-2024-13454, has been discovered in the OpenVPN Easy-RSA tool, specifically affecting versions from 3.0.5 to 3.2.0 that utilize...
CVE/vulnerability
Vim Command Line Text Editor Segmentation Vulnerability Patched
Christian Brabandt, a prominent figure in the Vim community, announced the patching of a medium-severity segmentation fault vulnerability identified as CVE-2025-24014.The vulnerability, discovered in versions...
Cyber Security News
Multiple Azure DevOps Vulnerabilities Let Inject CRLF Queries & Rebind DNS
Researchers uncovered several significant vulnerabilities within Azure DevOps, specifically focusing on potential Server-Side Request Forgery (SSRF) weaknesses.The findings highlight the importance of robust...
Cyber Security News
Hackers Weaponize npm Packages To Steal Solana Private Keys Via Gmail
Socket’s threat research team has identified a series of malicious npm packages specifically designed to steal private keys from Solana wallets.The implicated packages—@async-mutex/mutex, dexscreener,...
Join our community of SUBSCRIBERS and be part of the conversation.
To subscribe, simply enter your email address on our website or click the subscribe button below. Don't worry, we respect your privacy and won't spam your inbox. Your information is safe with us.