Security News

Over 300K Prometheus Instances Exposed: Credentials and API Keys Leaking Online
2024-12-12 14:24

Cybersecurity researchers are warning that thousands of servers hosting the Prometheus monitoring and alerting toolkit are at risk of information leakage and exposure to denial-of-service (DoS) as...

Gamaredon Deploys Android Spyware "BoneSpy" and "PlainGnome" in Former Soviet States
2024-12-12 13:35

The Russia-linked state-sponsored threat actor tracked as Gamaredon has been attributed to two new Android spyware tools called BoneSpy and PlainGnome, marking the first time the adversary has...

Apache issues patches for critical Struts 2 RCE bug
2024-12-12 13:31

More details released after devs allowed weeks to apply fixes We now know the remote code execution vulnerability in Apache Struts 2 disclosed back in November carries a near-maximum severity...

Researchers Uncover Symlink Exploit Allowing TCC Bypass in iOS and macOS
2024-12-12 12:35

Details have emerged about a now-patched security vulnerability in Apple's iOS and macOS that, if successfully exploited, could sidestep the Transparency, Consent, and Control (TCC) framework and...

Lights out for 18 more DDoS booters in pre-Christmas Operation PowerOFF push
2024-12-12 12:01

Holiday cheer comes in the form of three arrests and 27 shuttered domains The Europol-coordinated Operation PowerOFF struck again this week as cross-border cops pulled the plug on 27 more domains...

SaaS Budget Planning Guide for IT Professionals
2024-12-12 11:30

SaaS services are one of the biggest drivers of OpEx (operating expenses) for modern businesses. With Gartner projecting $247.2 billion in global SaaS spending this year, it’s no wonder SaaS...

Krispy Kreme cybersecurity incident disrupts online ordering
2024-12-12 11:18

Popular US doughnut chain Krispy Kreme has been having trouble with its online ordering system as well as digital payments at their brick-and-mortar shops since late November, and now we finally...

British Army zaps drones out of the sky with laser trucks
2024-12-12 10:26

High-energy weapon proves its mettle in testing The British Army has successfully destroyed flying drones for the first time using a high-energy laser mounted on an armored vehicle. If perfected,...

27 DDoS-for hire platforms seized by law enforcement
2024-12-12 10:20

As part of an ongoing international crackdown known as Operation PowerOFF, international law enforcement has seized over two dozen platforms used to carry out Distributed Denial-of-Service (DDoS)...

We must adjust expectations for the CISO role
2024-12-12 09:42

Cybersecurity has become one of the most high-stakes facets of business operations in the past few years. The chief information security officer (CISO) role, once a back-office function primarily...