Category: Cyber Threat News
Twilio has disclosed that an unsecured API endpoint enabled threat actors to verify the phone numbers of millions of Authy multi-factor authentication (MFA) users, raising the risk of SMS phishing and SIM swapping attacks. Authy, an app generating MFA codes for websites, is now urging users to update their apps for enhanced security. In late […]
In a major victory for international cybersecurity efforts, a coordinated law enforcement operation codenamed “MORPHEUS” has successfully disrupted a significant cybercrime infrastructure built around the penetration testing tool Cobalt Strike. Led by the United Kingdom’s National Crime Agency (NCA) in collaboration with authorities from Australia, Canada, Germany, the Netherlands, Poland, and the United States, the […]
Google has launched kvmCTF, a groundbreaking vulnerability reward program aimed at fortifying the security of the Kernel-based Virtual Machine (KVM) hypervisor. Announced in October 2023, kvmCTF offers substantial bounties of up to $250,000 for full VM escape exploits, underscoring its focus on zero-day vulnerabilities and rigorous evaluation standards. Designed to engage cybersecurity professionals, ethical hackers, […]