CyberSecurity Revolution
This category enlists recent happenings in the cyber security world.
Facebook Patches A 0-Click Account Takeover Vulnerability The user discovered a rate-limiting issue in a specific endpoint of Facebook’s password reset flow that could have allowed the takeover of any Facebook account through brute-forcing a
Continue reading70% Increase In Public Ads Selling 0-day Exploits Security researchers have observed a rise in threat actors utilizing zero-day exploits to enhance targeted attacks, with a 70% increase in public ads selling such exploits between
Continue readingPatches issued for Zyxel firewall product vulnerabilities Zyxel has released patches to address four vulnerabilities in their firewall and access point offerings, including null pointer deference, post-authentication command injection, and format string security issues. Threat
Continue readingLockBit Ransomware Group Resurfaces After Law Enforcement Takedown The LockBit ransomware group has resurfaced on the dark web with new infrastructure after an international law enforcement operation seized its servers. The group has moved its
Continue readingApple Shortcuts Vulnerability Allows Silent Data Theft A critical vulnerability (CVE-2024-23204) in Apple’s Shortcuts app allows attackers to access sensitive data without user permission, bypassing Apple’s security framework. The bug affects macOS and iOS devices
Continue readingWyze Connected Cameras Mistakenly Send Feeds to Wrong Users Wyze cameras experienced a cybersecurity incident where 13,000 users received camera images and feeds that were not theirs, allowing unintentional spying. This is the second time
Continue readingApple Introduces PQ3 for iMessage to Combat Quantum Threats Apple has unveiled PQ3, a post-quantum cryptographic protocol for iMessage, designed to secure messages against future quantum computing attacks. This protocol places iMessage at ‘level 3’
Continue readingZero-Day Vulnerability in Microsoft Exchange Servers Potentially Affecting up to 97,000 Microsoft Exchange Servers A recent zero-day vulnerability, CVE-2024-21410, potentially affects up to 97,000 Microsoft Exchange servers, enabling privilege escalation and pass-the-hash attacks. Microsoft has
Continue readingIranian Hackers Target Middle East Policy Experts with BASICSTAR Backdoor Charming Kitten, a threat actor linked to Iran, has targeted Middle East policy experts with a new backdoor named BASICSTAR through phishing attacks posing as
Continue readingRise in PDF Threats: Malware Spread Through PDFs on the Rise, HP Report Finds A new report by HP Wolf Security reveals a 7% increase in PDF threats in Q4 2023 compared to Q1 of
Continue reading
Hey There, I am Amey Anekar - Cyber Security Specialist with a passion for solving security problems even when resources are limited. I've been fortunate to develop a knack for gauging an organization's cyber security posture and helping them plan a transition towards becoming more resilient in the face of cyber threats. It's a privilege to be able to contribute to the field and assist organizations in safeguarding their digital assets. Get In Touch