Critical Splunk AI Toolkit Vulnerability Discovered
Splunk has released a security update to address a critical vulnerability in its AI Toolkit that could allow attackers with administrative access to run unauthorized operating system commands on affected [...]
F5 NGINX Vulnerabilities Patched in Critical Security Update
F5 has issued an emergency security advisory addressing several vulnerabilities affecting NGINX products and related components. The flaws could allow attackers to disrupt services, crash applications, or potentially execute malicious [...]
Hackers Use GitHub Pages for Phishing Attacks
Researchers have uncovered a sophisticated phishing campaign targeting banking customers in Mexico through a highly scalable and resilient attack infrastructure. The operation leverages GitHub Pages to host convincing phishing websites [...]
Sapphire Sleet Targets macOS With Multi-Stage Malware
Researchers have uncovered a new macOS malware campaign linked to the North Korean threat group known as Sapphire Sleet. The attackers are using fake software update files disguised as Zoom [...]
Rokarolla Android Malware Disables Google Play Protect to Gain Full Device Control
Security researchers have identified Rokarolla, a sophisticated Android malware that disables Google Play Protect and abuses accessibility services to gain extensive control over infected devices. Once deployed, the malware can facilitate remote access, steal sensitive information, and bypass built-in Android security protections.