A team of researchers from Varonis Threat Labs recently made a significant discovery regarding certain Salesforce sites. These sites, known as Salesforce Ghost Sites, were once active sites that were left unattended. By exploiting vulnerabilities in the host headers of these websites, malicious
Automattic, the company responsible for the open-source WordPress content management system, has initiated the mandatory installation of a security patch on numerous websites. This action aims to rectify a critical vulnerability found in the Jetpack plugin, which could potentially give a threat
Barracuda Networks, a prominent network and email security vendor, disclosed that a zero-day vulnerability in its Email Security Gateway (ESG) appliances had been exploited for an extended period, resulting in the theft of sensitive data. The vulnerability, tracked as CVE-2023-2868, remained
Cybersecurity researchers at Cisco Talos and the Citizen Lab have delved into the inner workings of the notorious Predator Android spyware, shedding light on its sophisticated surveillance capabilities. Developed by the Israeli company Intellexa (formerly known as Cytrox), Predator records phone
Researchers at SentinelLabs published a report on the morning of May 25th that identified a sizable malicious campaign targeting users of Portuguese financial institutions. The campaign has been dubbed “Operation Magalenha”. Attackers are able to steal credentials and exfiltrate personal
A leaked document obtained by WIRED reveals that Spain has been advocating for the ban of encryption for millions of people in the EU. The document, a survey conducted by the European Council, provides insights into the opinions of 20 EU Member States regarding encryption regulation and their
Meta, the parent company of Facebook, has been hit by a record-breaking $1.3 billion fine from European Union (EU) data protection regulators for its improper transfer of European Facebook user information to the United States. The European Data Protection Board (EDPB) issued a binding dispute
Last week, American satellite TV giant DISH Network notified the Maine Attorney General regarding a data breach and provided a copy of the notification letter sent to affected individuals. According to the company's report to authorities, the incident involved over 296,000 current and former
Cybersecurity security researcher Jeremiah Fowler discovered and reported to vpnMentor a non-password protected database containing over 360 million records related to a VPN data breach. The publicly exposed records contained email addresses, device information, and even references to sites that
According to The Wall Street Journal, Apple has recently imposed restrictions on its employees surrounding the use of generative AI tools, such as OpenAI's ChatGPT. The company's concerns revolve around the potential for confidential information to be collected and potentially leaked through these