Continuous Threat Exposure Management (CTEM) is an evolving cybersecurity practice focused on identifying, assessing, prioritizing, and addressing security weaknesses and vulnerabilities in an organization’s digital assets and networks continuously. UnlikeRead More →
The Windows operating system includes several pre-login accessibility features, intended to support users with disabilities. One of these components, utilman.exe (Utility Manager), is designed to launch accessibility tools like NarratorRead More →
Security researcher Nick Johnson (@nicksdjohnson) has revealed a highly sophisticated phishing attack that leverages two separate Google services — OAuth and Google Sites — to execute a multi-layered campaign capableRead More →
SPIDER-X, a shadowy and controversial hacktivist group that surfaced in January 2023, has quickly established itself as a digital menace under the banner of anti-Zionism and pro-Palestinian ideology. Self-styled asRead More →
In April 2025, at the Paris Blockchain Week(PBW), BYDFi, as one of the official sponsors, unveiled its new Web3 product—MoonX, capturing the spotlight at the event. MoonX is an on-chainRead More →
Hertz Global Holdings has formally confirmed a significant data breach that compromised personal information—including driver’s license numbers and financial details—of its customers across the Hertz, Thrifty, and Dollar rental brands.Read More →
In 2024, a new kind of online trick called “ClickFix” has been fooling people into clicking on things they shouldn’t. Imagine you’re using your computer and suddenly a message popsRead More →
A newly disclosed vulnerability in WinRAR, the widely used Windows file compression utility, has sparked serious concern in the cybersecurity community due to its ability to bypass Microsoft’s “Mark ofRead More →
A newly disclosed vulnerability dubbed ImageRunner, uncovered by Tenable Research, exposed a subtle yet powerful privilege escalation pathway in Google Cloud Platform’s Cloud Run service. The vulnerability, now patched byRead More →
First discovered on July 17, 2024, Lynx ransomware quickly made a name for itself by targeting high-profile U.S. companies and extorting millions in ransom payments. Built on the remnants ofRead More →
Two malicious Visual Studio Code (VSCode) extensions were recently discovered deploying early-stage ransomware, raising serious concerns about the security of Microsoft’s extension vetting process. Identified by cybersecurity firm ReversingLabs, theRead More →
