US-based IT software company Ivanti warned customers today that a critical Sentry API authentication bypass vulnerability is being exploited in the wild.

The recent Africa Cyber Surge II operation conducted by INTERPOL and AFRIPOL has revealed a stark reality – the surge in digital insecurity and cybercriminals threats across Africa. 

The well-known watch manufacturing company Seiko disclosed the data breach notification recently on Aug 2023, targeted by the notorious threat group BlackCat/ALPHV.

Cisco-owned multi-factor authentication (MFA) provider Duo Security is investigating an ongoing outage that has been causing authentication failures and errors starting three hours ago.

Kaspersky Password Manager now features a built-in one-time code generator for two-factor authentication in other services and applications.

With a staggering CVSS score of 9.8, the CVE-2023-38035 vulnerability pertains to the MICS Admin Portal in Ivanti MobileIron Sentry

A legitimate-looking ad for Amazon in Google search results redirects visitors to a Microsoft Defender tech support scam that locks up their browser.

Researchers from Italy and the UK have discovered four vulnerabilities in the TP-Link Tapo L530E smart bulb and TP-Link's Tapo app, which could allow attackers to steal their target's WiFi password.

The Seiko Group Corporation (Seiko) has suffered a data breach resulting from a ransomware attack that has entered today its blackmail phase.

The CVE-2023-26359 vulnerability with a CVSS score of 9.8 is caused by the deserialization of untrusted data.

CVE-2023-40068 is a stored XSS vulnerability specifically affecting ACF’s admin screens tied with post type and taxonomy labels

HiatusRAT malware operators resurfaced with a new wave of attacks targeting Taiwan-based organizations and a U.S. military procurement system

The BlackCat/ALPHV ransomware group claims to have hacked the Japanese maker of watches Seiko and added the company to its data leak site.

DotRunpeX is one of the new and stealthiest .NET injectors that employs the "Process Hollowing" method, through which this malware distributes a diverse range of other malware strains.

Ivanti warned customers of a new critical Sentry API authentication bypass vulnerability tracked as CVE-2023-38035.

Recently, Tesla reported a data breach that exposed more than 75,000 users' information. It's the result of an "insider wrongdoing."

Energy One announced it was hit by a cyberattack last week that affected certain corporate systems in Australia and the UK.

US CISA added critical vulnerability CVE-2023-26359 in Citrix ShareFile to its Known Exploited Vulnerabilities catalog.

Snatch gang claims the hack of the Department of Defence South Africa and added the military organization to its leak site.