Blog – Page 42 – VigilantAI

January 29, 2025
No Comments

Zyxel CPE Devices Face Active Exploitation Due to Unpatched CVE-2024-40891 Vulnerability

January 29, 2025
No Comments

Broadcom Warns of High-Severity SQL Injection Flaw in VMware Avi Load Balancer

January 29, 2025
No Comments

UAC-0063 Expands Cyber Attacks to European Embassies Using Stolen Documents

January 28, 2025
No Comments

PureCrypter Deploys Agent Tesla and New TorNet Backdoor in Ongoing Cyberattacks

January 28, 2025
No Comments

OAuth Redirect Flaw in Airline Travel Integration Exposes Millions to Account Hijacking

January 28, 2025
No Comments

AI SOC Analysts: Propelling SecOps into the future

January 28, 2025
No Comments

How Long Does It Take Hackers to Crack Modern Hashing Algorithms?

January 28, 2025
No Comments

Ransomware Targets ESXi Systems via Stealthy SSH Tunnels for C2 Operations

January 28, 2025
No Comments

E.U. Sanctions 3 Russian Nationals for Cyber Attacks Targeting Estonia’s Key Ministries

January 28, 2025
No Comments

Top-Rated Chinese AI App DeepSeek Limits Registrations Amid Cyberattacks

Assessing the Impact of the UK’s Proposed Cyber Resilience Bill April 21, 2025
The UK government has introduced the Cyber Resilience Bill, marking a major step forward in strengthening national cybersecurity and protecting the economy against growing cyber threats. This new legislation builds on the Network and Information Systems (NIS) Regulation of 2018, which, despite its benefits, does not currently account for the full picture. The bill aims to […]
Anthony Young
Malicious PyPI Package Hijacks MEXC Orders, Steals Crypto Tokens April 21, 2025
JFrog researchers have uncovered a new supply chain attack targeting cryptocurrency users through a malicious Python package uploaded to the PyPI repository. The package, named “ccxt-mexc-futures,” masqueraded as a legitimate tool for interacting with the MEXC cryptocurrency exchange but was designed to steal users’ crypto assets. According to JFrog, the package contained an “info-stealer” malware […]
Kirsten Doyle
Leaking Apps: The Hidden Data Risks on Your Phone April 21, 2025
Personally identifiable information (PII), financial data, medical records, account credentials, and intellectual property all require strict access controls to prevent unauthorized exposure. Unfortunately, mobile applications commonly used in both personal and professional settings can compromise this data, even when users believe they are following best security practices. As mobile devices have become central to business […]
Kirsten Doyle
Senators Push to Extend Key Cybersecurity Protections April 17, 2025
Two senators have introduced a bipartisan bill to extend key cybersecurity protections that encourage businesses to share threat information with the federal government. The bill would renew provisions first signed into law under the Cybersecurity Information Sharing Act of 2015. Introduced by U.S. Senators Gary Peters (D-MI), Ranking Member of the Homeland Security and Governmental […]
Kirsten Doyle
4chan Reportedly Hacked, Moderator Information Potentially Exposed April 17, 2025
The controversial internet forum 4chan appears to have been hacked, according to multiple online reports. Alleged leaks suggest that a hacker gained access to backend infrastructure and exposed personal details of the site’s moderators. The breach first came to light when a previously inactive section of 4chan suddenly reappeared, displaying a bold message: “U GOT […]
Kirsten Doyle
Chinese Threat Group UNC5174 Caught Using New Tools in Ongoing Cyber Campaign April 17, 2025
After operating quietly for a year, a Chinese state-sponsored hacking group known as UNC5174 has launched a new cyber campaign, according to the Sysdig Threat Research Team (TRT). Sysdig researchers uncovered the campaign in late January 2025 when they spotted a malicious bash script downloading several files to maintain access on targeted systems. One of […]
Kirsten Doyle
Why Privileged Access Security Is Vital for Hybrid IT Environments April 17, 2025
Everyone wants access to something privileged, whether it’s an exclusive country club, a concert VIP area, or an airport lounge. For hackers, it’s privileged accounts. They especially target those in hybrid IT ecosystems since gaining control over a single privileged account of any part of the environment can enable them to establish control over the […]
Martin Cannard
Trojan WhatsApp, Wallet Apps Found on Chinese Android Phones April 17, 2025
A sophisticated campaign that pre-installs malware onto budget Android smartphones, targeting cryptocurrency users through a technique known as “clipping” has been discovered by Doctor Web‘s virus lab. Its findings reveal that malefactors have embedded a trojanized version of WhatsApp directly into the system partition of newly manufactured devices, exposing users to stealthy financial theft from […]
Kirsten Doyle
No Skills Needed: How AI Is Democratizing Document Fraud April 16, 2025
Towards the end of March, OpenAI debuted image generation features for its ChatGPT-4o and ChatGPT-4o mini models. Less than a week later, the tool was made available for free to all users, and since then, users have reported that the feature can be used to create convincing fake documents—including receipts and passports. According to the […]
Kirsten Doyle
OCC Reports Major Security Breach Involving Sensitive Emails April 16, 2025
The Office of the Comptroller of the Currency (OCC) has alerted Congress to a “major information security incident” following unauthorized access to its email systems, including messages containing sensitive financial data. The breach was discovered on 11 February 2025, and confirmed the following day. According to the OCC, the incident involved unusual activity by a […]
Kirsten Doyle

Category: Blog

Zyxel CPE Devices Face Active Exploitation Due to Unpatched CVE-2024-40891 Vulnerability

Broadcom Warns of High-Severity SQL Injection Flaw in VMware Avi Load Balancer

UAC-0063 Expands Cyber Attacks to European Embassies Using Stolen Documents

PureCrypter Deploys Agent Tesla and New TorNet Backdoor in Ongoing Cyberattacks

OAuth Redirect Flaw in Airline Travel Integration Exposes Millions to Account Hijacking

AI SOC Analysts: Propelling SecOps into the future

How Long Does It Take Hackers to Crack Modern Hashing Algorithms?

Ransomware Targets ESXi Systems via Stealthy SSH Tunnels for C2 Operations

E.U. Sanctions 3 Russian Nationals for Cyber Attacks Targeting Estonia’s Key Ministries

Top-Rated Chinese AI App DeepSeek Limits Registrations Amid Cyberattacks

[email protected]