Logitech Confirms a Databreach
Key points Massive Data Theft: 1.8 Terabytes Compromised Exploited Zero-Day Vulnerability in Oracle Software Limited Personal Data Exposed, No Financial Info at Risk Clop Ransomware Gang Linked to the Attack…
CISA Adds Five Actively Exploited Vulnerabilities to KEV Catalog
The Cybersecurity and Infrastructure Security Agency (CISA) has added five new vulnerabilities to its Known Exploited Vulnerabilities (KEV) catalog, following confirmed reports of active exploitation across enterprise and consumer environments.…
Oracle Denies Data Breach Claims
The Oracle data breach claim has been a topic of significant discussion, following allegations that a hacker infiltrated Oracle Cloud systems, purportedly exposing sensitive data. The incident has drawn attention…
Oracle Patches – January 2025
Overview Oracle has released a substantial Critical Patch Update for January 2025, addressing a total of 320 new security vulnerabilities across its wide-ranging product portfolio. This update spans over 90…
Posted inYear 2024
Major Security Acquisitions in Year 2024 Top 25 Analysis
In 2024, the cybersecurity industry saw a significant surge in mergers and acquisitions (M&A) activity, driven by the increasing importance of advanced technologies like AI and the growing threat landscape.…
Oracle Patches Critical miracle exploit Vulnerabilities
Oracle has patched a RCE vulnerability impacting Oracle Fusion Middleware and various other Oracle systems. which they dubbed the Miracle Exploit. The researchers also discovered a serious vulnerability in Oracle…
Java Digital Signature Bypass Vulnerability
Security researcher Khaled Nassar released a PoC code for a new digital signature bypass vulnerability, tracked as CVE-2022-21449 with CVSS score: 7.5 in Java. An unauthenticated attacker with network access via multiple…
Service Now Can Spill Data due to Misconfiguration
Research release from SaaS security management startup AppOmni, details about instances that are vulnerable to misconfiguration in ServiceNow The issue is about leakage of data through improper customer ACL configurations,…