2024

RedCurl Cybercrime Group Abuses Windows PCA Tool for Corporate Espionage 2024-03-14 at 13:00 By The Russian-speaking cybercrime group called RedCurl is leveraging a legitimate Microsoft Windows component called the Program Compatibility Assistant (PCA) to execute malicious commands. “The Program Compatibility Assistant Service (pcalua.exe) is a Windows service designed to identify and address compatibility issues with older programs,” […]

Rancher faces prison for trying to breed absolute unit of a sheep 2024-03-14 at 12:15 By Richard Currie Ewe-nique endeavor aimed to create Jurassic Baaa-rk experience for hunters In a case that could have been lifted from a bad movie about a “mad scientist,” a Montana rancher has pleaded guilty to wildlife trafficking charges in

SAP accused of age discrimination, retaliation by US whistleblower 2024-03-14 at 11:30 By Lindsay Clark Complainant moved to ‘retire in place’ role after Sarbanes Oxley Act report, filing alleges SAP is being sued for age discrimination and retaliation by an employee that alleges he was moved to a meaningless role after he asked for an

Oh look, cracking down on Big Tech works. Brave, Firefox, Vivaldi surge on iOS 2024-03-14 at 10:28 By Thomas Claburn Thanks to Europe forcing Apple to offer a browser choice screen. Now, about ditching WebKit … Since Apple implemented a browser choice screen for iPhones earlier this month to comply with Europe’s Digital Markets Act

Microsoft forges One Teams App To Rule Them All 2024-03-14 at 09:24 By Simon Sharwood Windows preview delivers one app to handle multiple accounts, boosts Copilot’s capabilities Microsoft is on the cusp of addressing a major frustration caused by its Teams app by introducing a version capable of simultaneously logging in to multiple personae.… This

Ande Loader Malware Targets Manufacturing Sector in North America 2024-03-14 at 09:17 By The threat actor known as Blind Eagle has been observed using a loader malware called Ande Loader to deliver remote access trojans (RATs) like Remcos RAT and NjRAT. The attacks, which take the form of phishing emails, targeted Spanish-speaking users in the

Ten nations tell social media, banks, and telcos to get better at stopping scams 2024-03-14 at 08:03 By Simon Sharwood Australian minister singles out Meta – where Zuck has 600,000 Nvidia GPUs ready to roll The governments of ten nations have called on social media operators to improve their ability to detect and prevent fraud

DarkGate Malware Exploits Recently Patched Microsoft Flaw in Zero-Day Attack 2024-03-14 at 06:57 By A DarkGate malware campaign observed in mid-January 2024 leveraged a recently patched security flaw in Microsoft Windows as a zero-day using bogus software installers. “During this campaign, users were lured using PDFs that contained Google DoubleClick Digital Marketing (DDM) open redirects

Fortinet Warns of Severe SQLi Vulnerability in FortiClientEMS Software 2024-03-14 at 06:21 By Fortinet has warned of a critical security flaw impacting its FortiClientEMS software that could allow attackers to achieve code execution on affected systems. “An improper neutralization of special elements used in an SQL Command (‘SQL Injection’) vulnerability [CWE-89] in FortiClientEMS may allow

Tap into connection points between security and privacy 2024-03-14 at 06:00 By Data privacy and information security are both critical components of building customer trust for organizations. This article is an excerpt from Subscribe to Security Magazine’s RSS Feed View Original Source