Malicious Node Targets ComfyUI Users
Incident highlights risks of integrating third-party components in AI workflows. Malicious node disguised as an update steals sensitive user information.…
Chinese Hackers Compromise Thousands of FortiGate Systems
Chinese threat actors expanded their capabilities in a cyber espionage campaign. Over 20,000 FortiGate systems were compromised globally. Persistent access…
Microsoft Outlook Zero-Click Vulnerability Threatens Systems
Zero-click vulnerability discovered in Microsoft Outlook. Vulnerability allows arbitrary code execution through a malicious email. Users must update software and…
Researchers Detail ValleyRAT Password Theft Techniques
ValleyRAT is a sophisticated Remote Access Trojan. It uses multi-stage payload delivery for stealth. Advanced evasion tactics make it hard…
Canada and UK Investigate 23andMe Data Breach
Canada and UK collaborate on 23andMe data breach investigation. Joint inquiry addresses the extent of compromised sensitive data. 23andMe enhances…
ZKTeco Biometric Terminal Security Flaws Identified
Critical security flaws found in ZKTeco biometric terminal. Vulnerabilities include QR code SQL injection and weak authentication. Regular updates and…
MultiRDP Malware Enables Multiple Simultaneous RDP Connections
MultiRDP malware permits multiple RDP connections by modifying memory. ASEC identified evolving tactics in attacks using MultiRDP malware. Organizations must…
UNC5537 Hackers Target Snowflake Databases
Hackers target Snowflake with stolen credentials. Lack of multi-factor authentication exacerbates risks. Coordinated efforts aim to mitigate breaches.
Hackers Use OTP Bots to Bypass 2FA
Attackers exploit 2FA via social engineering and OTP bots. OTP bots mimic trusted entities to extract OTPs. Phishing kits intercept…
Netgear Router Vulnerabilities Threaten User Security
Security flaws found in Netgear WNR614 JNR1010V2/N300 router firmware. Vulnerabilities allow unauthorized access and potential data breaches. Users should adopt…