[webapps] Pega Platform 8.1.0 – Remote Code Execution (RCE)
Pega Platform 8.1.0 – Remote Code Execution (RCE)
Taegis™ Titan Faisal Jaffri Leads Moveero to a Stronger Security Posture
Type: BlogsTaegis™ Titan Faisal Jaffri Leads Moveero to a Stronger Security PostureLearn how this Global IT Director took a small team and a big vision to the next level with Taegis ManagedXDRLearn how this Global IT Director took a small team and a bi…
20-Year-Old BreachForums Founder Faces Up to 5 Years in Prison
Conor Brian Fitzpatrick, the 20-year-old founder and the administrator of the now-defunct BreachForums has been formally charged in the U.S. with conspiracy to commit access device fraud.
If proven guilty, Fitzpatrick, who went by the online moniker “p…
ThunderCloud – Cloud Exploit Framework
Cloud Exploit Framework Usage python3 tc.py -h _______ _ _ _____ _ _ |__ __| | | | / ____| | | | | | | |__ _ _ _ __ __| | __…
Where SSO Falls Short in Protecting SaaS
Single sign-on (SSO) is an authentication method that allows users to authenticate their identity for multiple applications with just one set of credentials. From a security standpoint, SSO is the gold standard. It ensures access without forcing users …
New MacStealer macOS Malware Steals iCloud Keychain Data and Passwords
A new information-stealing malware has set its sights on Apple’s macOS operating system to siphon sensitive information from compromised devices.
Dubbed MacStealer, it’s the latest example of a threat that uses Telegram as a command-and-control (C2) pl…
Microsoft Issues Patch for aCropalypse Privacy Flaw in Windows Screenshot Tools
Microsoft has released an out-of-band update to address a privacy-defeating flaw in its screenshot editing tool for Windows 10 and Windows 11.
The issue, dubbed aCropalypse, could enable malicious actors to recover edited portions of screenshots, poten…