Security Boulevard

When Proxies Become Attack Vectors Through Header Injection

This assumption breaks down because HTTP RFC flexibility allows different servers to interpret the same header field in fundamentally different ways, creating exploitable gaps that attackers are ...
Arabian Post

Pingora proxy flaws raise cache poisoning risks: Cloudflare

Security vulnerabilities discovered in the open-source Pingora framework have triggered renewed scrutiny of infrastructure software used to route vast volumes of internet traffic, after researchers ...
Microsoft

Storm-2561 uses SEO poisoning to distribute fake VPN clients for credential theft

Storm-2561 uses SEO poisoning to push fake VPN downloads that install signed trojans and steal VPN credentials. Active since ...
The Hacker News

Storm-2561 Spreads Trojan VPN Clients via SEO Poisoning to Steal Credentials

Storm-2561 spreads fake VPN installers via SEO poisoning and GitHub downloads, stealing enterprise VPN credentials with Hyrax ...
CSO Online

Storm-2561 targets enterprise VPN users with SEO poisoning, fake clients

The financially motivated group has been active since May 2025, impersonating Fortinet, Ivanti, Cisco, and other vendors to ...

Foreign hacker compromised FBI’s cache of Epstein files at NY field office in 2023

A foreign hacker unknowingly compromised a cache of the FBI’s documents on Jeffrey Epstein three years ago and was so ...
ARQA

How to Analyze Email Headers to Detect Phishing Emails

Learn how to analyze email headers to detect phishing emails. Discover key header fields, trace email routes, and verify ...