In October 2023, Sekoia analysts discovered a new Adversary-in-The-Middle (AiTM) phishing kit used by several hackers for widespread attacks. This kit is linked to the Tycoon 2FA Phishing-as-a-Service (PhaaS) platform, active since at least August 2023. The Sekoia Threat Detection & Research (TDR) team analyzed the Tycoon 2FA PhaaS kit …

SonicWall Capture Labs found a vulnerability with the Artica Proxy appliance. This vulnerability affects over 100K servers globally. Artica Proxy is a proxy solution that performs tasks like web filtering, SSL inspection, and bandwidth management. SonicWall has developed measures to mitigate the vulnerability. There is a security vulnerability called CVE-2024-2054 …

The writing is first published to medium where Henry N. Caga wrote about how he find out Google’s vulnerability and achieved hall of fame recognition. Henry N. Caga wrote I stumbled upon a discovery that sent shockwaves through my system: an XSS (Cross-Site Scripting) vulnerability lurking within one of Google’s …

Microsoft to restrict access to 50 of its cloud products in Russia, as reported by the Russian company Softline. The restrictions will also affect local software, with the deactivation of license keys. Russian media TASS reported the list primarily includes corporate applications such as those for business management, accounting, automation, …

Microsoft released urgent updates to fix a problem causing Windows domain controllers to crash after installing the March 2024 Windows Server security updates. Microsoft released the following emergency Windows Server cumulative updates that should fix the LSASS memory leak and prevent impacted servers from crashing and restarting: KB5037422 (Windows Server …

StrelaStealer malware steals email login data from popular email clients and sends it to the attacker’s server. The attacker can then use this information to launch more attacks. Since its first appearance in 2022, the threat actor has carried out many email campaigns and shows no sign of stopping. Unit42 …

Pwn2Own Vancouver 2024 hacking competition is over. Hackers earned $1,132,500 for showing 29 unique zero-days. Participants in the Pwn2Own Vancouver 2024 hacking competition earned $1,132,500 for demonstrating 29 unique zero-days. On the first day, Team Synacktiv successfully demonstrated exploits against a Tesla car. The researcher Manfred Paul (@_manfp) won the …

Justin Trudeau is the current Prime Minister of Canada but according to a recently issued birth certificate his birth place is in Pabna. Surprising but true ‍such an birth certificate has been issued by Ahmedpur Union Parishad in Pabna. As shown in the birth certificate, name is Justin Trudeau, father- …

The journey to mastering penetration testing can be challenging for those interested in security. Besides theoretical knowledge, practical experience is essential to improve your skills and become a skilled pentester. PentesterVibe is a subscription-based service that helps bridge this gap by providing the necessary knowledge and resources to excel in …

A project has been taken to introduce eco-friendly electric transport in Dhaka. The Road Transport and Highways Department, Bangladesh Road Transport Authority, Department of Environment, and Bangladesh Road Transport Corporation will set up an experimental charging station in Dhaka city. The project will be implemented from now until June 2026. …