Alerts

Stay updated with CyberLabs’ latest news alerts covering critical cybersecurity incidents, breaking threats, and important industry developments that matter to your digital safety.

Cybersecurity Architecture
Pixnapping: When Your Screen Spies on You
Pixnapping: When Your Screen Spies on You

27 Oct 2025

You didn’t click a malicious link. You didn’t download a shady app. You didn’t even give away your password. And yet your crypto wallet seed phrase, your 2FA code, your private messages… gone.

Read More
Critical WordPress Anti-Spam Plugin Flaws Expose 200,000+ Sites to Remote Attacks
Critical WordPress Anti-Spam Plugin Flaws Expose 200,000+ Sites to Remote Attacks

27 Nov 2024

Two critical security flaws impacting the Spam protection, Anti-Spam, and FireWall plugin WordPress could allow an unauthenticated attacker to install and enable malicious plugins on susceptible sites and potentially achieve remote code execution.

Read More
New Qilin ransomware encryptor features stronger encryption, evasion
New Qilin ransomware encryptor features stronger encryption, evasion

24 Oct 2024

A new Rust-based version of the Qilin (Agenda) ransomware strain, dubbed ‘Qilin.B,’ has been spotted in attacks, featuring stronger encryption, better evasion from security tools, and the ability to disrupt data recovery mechanisms.

Read More
Free Sniper Dz Phishing Tools Fuel 140,000+ Cyber Attacks Targeting User Credentials
Free Sniper Dz Phishing Tools Fuel 140,000+ Cyber Attacks Targeting User Credentials

2 Oct 2024

More than 140,000 phishing websites have been found linked to a phishing-as-a-service (PhaaS) platform named Sniper Dz over the past year, indicating that it’s being used by a large number of cybercriminals to conduct credential theft.

Read More
Hackers deploy AI-written malware in targeted attacks
Hackers deploy AI-written malware in targeted attacks

25 Sep 2024

Suspected cases AI-created malware have been spotted in real attacks. Earlier this year, cybersecurity companyProofpoint discovereda malicious PowerShell script that was likely created using an AI system.

Read More
Patch Issued for Critical VMware vCenter Flaw Allowing Remote Code Execution
Patch Issued for Critical VMware vCenter Flaw Allowing Remote Code Execution

18 Sep 2024

The vulnerability, tracked as CVE-2024-38812 (CVSS score: 9.8), has been described as a heap-overflow vulnerability in theDCE/RPC protocol.

Read More
SonicWall SSLVPN access control flaw is now exploited in attacks
SonicWall SSLVPN access control flaw is now exploited in attacks

9 Sep 2024

CVE-2024-40766 is a critical (CVSS v3 score: 9.3) access control flaw impacting SonicWall Firewall Gen 5 and Gen 6 devices, as well as Gen 7 devices.

Read More
Cisco Fixes Two Critical Flaws in Smart Licensing Utility to Prevent Remote Attacks
Cisco Fixes Two Critical Flaws in Smart Licensing Utility to Prevent Remote Attacks

5 Sep 2024

The flaws, which were discovered during internal security testing, also do not affect Smart Software Manager On-Prem and Smart Software Manager Satellite products.

Read More
Malware exploits 5-year-old zero-day to infect end-of-life IP cameras
Malware exploits 5-year-old zero-day to infect end-of-life IP cameras

30 Aug 2024

The flaw, discovered by Akamai’s Aline Eliovich, is tracked as CVE-2024-7029 and is a high-severity (CVSS v4 score: 8.7) issue in the “brightness” function of the cameras, allowing unauthenticated attackers to inject commands over the network using specially crafted requests.

Read More
Critical Flaw in WordPress LiteSpeed Cache Plugin Allows Hackers Admin Access
Critical Flaw in WordPress LiteSpeed Cache Plugin Allows Hackers Admin Access

22 Aug 2024

Cybersecurity researchers have disclosed a critical security flaw in theLiteSpeed Cacheplugin for WordPress that could permit unauthenticated users to gain administrator privileges.

Read More
Zero-click Windows TCP/IP RCE impacts all systems with IPv6 enabled, patch now
Zero-click Windows TCP/IP RCE impacts all systems with IPv6 enabled, patch now

16 Aug 2024

Microsoft warned customers this Tuesday to patch a critical TCP/IP remote code execution (RCE) vulnerability with an increased likelihood of exploitation that impacts all Windows systems using IPv6, which is enabled by default.

Read More
FreeBSD Releases Urgent Patch for High-Severity OpenSSH Vulnerability
FreeBSD Releases Urgent Patch for High-Severity OpenSSH Vulnerability

13 Aug 2024

The vulnerability, tracked asCVE-2024-7589, carries a CVSS score of 7.4 out of a maximum of 10.0, indicating high severity.

Read More