November 18 advisory: Windows KDC proxy remote code execution vulnerability [CVE-2024-43639]
CVE-2024-43639 is a critical vulnerability in the Windows Kerberos authentication protocol that allows unauthenticated attackers to execute remote code on affected systems. By exploiting this flaw, attackers can send specially crafted requests to a vulnerable system, leveraging a cryptographic protocol vulnerability
Celebrating World Children’s Day with technology
World Children's Day, celebrated on November 20th, recognises the rights, needs, and dreams of children around the world. It's a day to advocate for young people's well-being, development, and education and ensure a brighter future for them. Technology has opened
World Diabetes Day: HealthTech innovations transforming diabetes care
Every November 14, the world observes World Diabetes Day to increase awareness about diabetes and support those affected by it. The prevalence of diabetes has been steadily increasing worldwide, with over 400 million people diagnosed, and it's projected to rise.
Cyber security awareness month – the rising costs of cyber crime
In collaboration with Touchdown PR Alarmingly, the financial impact of cyber crime is expected to surpass $10.5 trillion annually by 2025. This is a wake-up call for organisations, with the need for cyber security vigilance only increasing in urgency. However, sub-par
Zimperium’s zero-day protection against Water Makara spear-phishing campaign
By: Nicolás Chiaraviglio, Chief Scientist, Zimperium The Water Makara spear-phishing campaign, recently reported by Trend Micro, leverages social engineering tactics and obfuscated JavaScript files to target victims. The attack entices victims into clicking malicious links or downloading harmful attachments, ultimately leading to
World Teachers’ Day: empowering educators with technology to shape the future
World Teachers' Day, celebrated annually on October 5th, honours educators' essential role in shaping students' lives and building the foundation for future generations. In today's rapidly evolving world, the role of teachers extends far beyond imparting knowledge. They are mentors,
Zimperium detects new android spyware targeting South Korea
By Nicolás Chiaraviglio, Chief Scientist, Zimperium In the ever-evolving landscape of mobile security threats, a recent discovery has once again highlighted the critical importance of robust, on-device protection for Android users. Security researchers at Cyble have uncovered a new Android spyware campaign primarily
Understanding the CUPS Vulnerability: What’s important to know
Four vulnerabilities in the Common Unix Printing System (CUPS), a common printing utility in many Linux distributions, have been making waves online over the past week – mostly due to its unusual disclosure process and disagreement over its severity and
Apple drops out of talks to join OpenAI investment round
By Shivani Tanna (Reuters) - Apple has left negotiations to participate in an OpenAI funding round expected to raise about $6.5 billion, the Wall Street Journal said on Friday. The tech giant recently fell out of the talks for the round, set