CyberSecurity Revolution
Zero-Day Vulnerability in Microsoft Exchange Servers Potentially Affecting up to 97,000 Microsoft Exchange Servers A recent zero-day vulnerability, CVE-2024-21410, potentially affects up to 97,000 Microsoft Exchange servers, enabling privilege escalation and pass-the-hash attacks. Microsoft has
Continue readingIranian Hackers Target Middle East Policy Experts with BASICSTAR Backdoor Charming Kitten, a threat actor linked to Iran, has targeted Middle East policy experts with a new backdoor named BASICSTAR through phishing attacks posing as
Continue readingRise in PDF Threats: Malware Spread Through PDFs on the Rise, HP Report Finds A new report by HP Wolf Security reveals a 7% increase in PDF threats in Q4 2023 compared to Q1 of
Continue readingFBI Neutralizes APT28-Controlled Router Botnet The FBI dismantled a botnet comprising hundreds of Ubiquiti Edge OS routers controlled by APT28, a Russian cyberespionage group, by leveraging the Moobot malware. This operation blocked the group’s remote
Continue readingAPT Groups Utilize ChatGPT for Cyber Operations Microsoft has detected APTs from countries like Russia, China, North Korea, and Iran using ChatGPT to automate tasks such as vulnerability research, malware scripting, and target reconnaissance. These
Continue readingMicrosoft’s Critical Security Updates and Active Exploits Alert Microsoft has released a significant batch of security updates addressing 72 vulnerabilities within the Windows ecosystem, highlighting the urgent need to mitigate risks associated with remote code
Continue readingFortinet and Ivanti VPN Customers Face Critical Security Vulnerabilities Fortinet and Ivanti have disclosed critical vulnerabilities in their VPN technologies that are under active attack and require immediate action from security teams. Fortinet has disclosed
Continue reading
I recently passed the AWS Solutions Architect Associate exam, and I’d like to share my experience about how I prepared for this exam and was able to crack it successfully. My study period for this exam lasted for about a month which included 2 weeks of going through the training material and 2 weeks of practice sets.
Continue readingRecord-Breaking 100 Million RPS DDoS Attack Exploits HTTP/2 Rapid Reset Flaw Cloudflare has reported mitigating thousands of hyper-volumetric HTTP distributed denial-of-service (DDoS) attacks that exploited the recently disclosed HTTP/2 Rapid Reset flaw, with 89 of
Continue reading1Password Becomes Latest Victim of Okta Customer Service Breach Password manager 1Password has become the second publicized victim of Okta’s recent customer support breach. Okta, a cloud-based identity and access management (IAM) service, disclosed that
Continue reading
Hey There, I am Amey Anekar - Cyber Security Specialist with a passion for solving security problems even when resources are limited. I've been fortunate to develop a knack for gauging an organization's cyber security posture and helping them plan a transition towards becoming more resilient in the face of cyber threats. It's a privilege to be able to contribute to the field and assist organizations in safeguarding their digital assets. Get In Touch