The CRS v3.3.5 release has been announced by the OWASP ModSecurity Core Rule Set (CRS) team.The OWASP ModSecurity Core Rule Set (CRS) is a set of general attack detection rules that may be used with ModSecurity or other compatible...

A new tool called FraudGPT has been launched by cybercriminals which pose a serious threat to both individuals and businesses.This black-hat-based tool is capable of executing social engineering and Business Email Compromise (BEC) attacks, making it a real...

The China-linked threat actors who stole the US State Department and other Microsoft customer emails may have acquired access to apps other than Exchange Online and Outlook.com.According to Wiz Researchers, the compromised signing key was more potent than it...

The cloud-based IT management firm JumpCloud was compromised by North Korean Lazarus Group hackers who appear to be financially motivated to steal cryptocurrencies.Since at least 2009, this hacking group has been active, and it is well recognized for its...

Cisco has published a security advisory that states that they have discovered two vulnerabilities, an XSS and an HTML injection vulnerability.These vulnerabilities existed in the SPA500 series of the Cisco Small Business IP Phones.CVE-2023-20181: XSS VulnerabilityThis vulnerability exists...

There are rising concerns about the security risks associated with artificial intelligence (AI), which is becoming more and more popular and pervasive.Google, a major participant in the creation of next-generation artificial intelligence (AI), has emphasized the need for caution...