Follow Cyber Kendra on Google News! | WhatsApp | Telegram

Security

Apache Patches Critical Remote Code Execution Vulnerability in Tomcat

The Apache Software Foundation has issued an urgent security advisory regarding a critical remote code execution (RCE) vulnerability in Apache Tomcat…

6 Cloud Security Best Practices To Avoid Digital Blindspots

Cloud-based technologies provide consumers and organizations a flexible, cost-effective solution to share, optimize, and scale digital activities. Ho…

Vulnerability in Spring Boot Actuator Exposes Cloud Environments

A new research report from Wiz Threat Research has uncovered widespread security risks in Spring Boot Actuator implementations, affecting numerous cl…

New Android Spyware Operation Exploits Qualcomm Driver Vulnerabilities in Serbia

A new investigation by Amnesty International has revealed a sophisticated surveillance operation in Serbia that combined multiple spyware tools to ta…

Cisco Source Code Allegedly Leaked Through DevHub Exposure

In October, IntelBroker claimed to have gained access to Cisco's systems, stealing large amounts of data belonging to the company and its custome…

Microsoft Patched Azure MFA Bypass Vulnerability - AuthQuake

Oasis Security's research team has uncovered and helped resolve a significant vulnerability in Microsoft's Multi-Factor Authentication (MFA) …

What's in Google's Cybersecurity Forecast for 2025?

As we advance further into the digital age, the cybersecurity landscape continues to evolve at an unprecedented pace. Google has released its cyberse…

Top Cybersecurity Threats in 2025 and How to Protect Against Them

The digital environment is dynamic, and so is the case for cybersecurity threats. With the growing usage of the internet and web applications by busi…

Critical 7-Zip Vulnerability Could Allow Remote Code Execution Through Malicious Archives

A critical security vulnerability has been discovered in 7-Zip, the popular file compression utility, potentially allowing attackers to execute malic…

Android and Google Pixel Security Vulnerabilities Disclosed

Security researchers have uncovered and disclosed seven significant vulnerabilities affecting Android and Google Pixel devices, highlighting ongoing …

T-Mobile Hacked in Broader Chinese Cyber-Espionage Campaign

T-Mobile has been identified as one of several telecommunications companies affected by a sophisticated Chinese cyber-espionage operation, according …

Critical Vulnerability in Arc Browser's Legacy Boost Feature Patched

A security researcher identified a significant vulnerability in the Arc browser that could have allowed attackers to gain write access to a user'…

Citrix Patches Unauthenticated RCE Flaw in Virtual Apps and Desktops

Citrix has released security updates to address two vulnerabilities in its Virtual Apps and Desktops Session Recording feature that could allow attac…

MOVEit Hack - Amazon, McDonald’s, HSBC, HP and Many Employee Data Leak

A significant data breach stemming from a vulnerability in MOVEit file transfer software has resulted in the exposure of over 5 million employe…

Security Researchers Unveils 0ktapus Phishing Techniques

Security researchers at Wiz have published a detailed technical analysis revealing how the notorious threat actor 0ktapus (aka Scattered Spider, UNC3…

qBittorrent14-Year SSL Flaw Enables Remote Code Execution

A critical security vulnerability in qBittorrent, one of the most popular torrent clients, has left millions of users potentially exposed to remote c…

Alleged Nokia Breach Exposes Source Code, Keys, and Credentials

Nokia, a leading telecommunications company, has reportedly suffered a data breach involving critical infrastructure components. Threat actors identi…

Okta Patches Critical Authentication Bypass in AD/LDAP Integration

Okta has patched a critical vulnerability in its AD/LDAP Delegated Authentication system that could allow unauthorized access to accounts with usern…

Internet Archive Hacked - 31 Million Users Impacted

The Internet Archive (archive.org) has become the target of a sustained cyber attack, leaving users and cybersecurity experts on alert.  …

Palo Alto Networks Warns of Firewall Hijack Flaw

Palo Alto Networks has disclosed multiple critical vulnerabilities in its Expedition tool that could allow attackers to hijack PAN-OS firewalls. Acco…