2024

New LightSpy Spyware Version Targets iPhones with Increased Surveillance Tactics 2024-10-31 at 17:30 By Cybersecurity researchers have discovered an improved version of an Apple iOS spyware called LightSpy that not only expands on its functionality, but also incorporates destructive capabilities to prevent the compromised device from booting up. “While the iOS implant delivery method closely […]

VMware by Broadcom lifts storage allowances and prices for vSphere Foundation 2024-10-31 at 17:06 By Simon Sharwood This will both ease and exacerbate price concerns and competitive sniping VMware by Broadcom has upped the storage capacity allowed under licenses for its vSphere Foundation bundle – a move that addresses competitors’ attacks, but may also give

LottieFiles Issues Warning About Compromised “lottie-player” npm Package 2024-10-31 at 16:48 By LottieFiles has revealed that its npm package “lottie-player” was compromised as part of a supply chain attack, prompting it to release an updated version of the library. “On October 30th ~6:20 PM UTC – LottieFiles were notified that our popular open source npm

We know what Musk will probably dress up as this year: A victim 2024-10-31 at 16:16 By Brandon Vigliarolo Mr X ordered to show at Halloween hearing over election lottery as his lawyers file docs to dodge it Elon Musk has been ordered to attend a Halloween hearing on the legality of his election petition

LottieFiles supply chain attack exposes users to malicious crypto wallet drainer 2024-10-31 at 14:04 By Connor Jones A scary few Halloween hours for team behind hugely popular web plugin LottieFiles is overcoming something of a Halloween fright after battling to regain control of a compromised developer account that was used to exploit users’ crypto wallets.…

Linda Reid to deliver keynote at SECURITY 500 Conference 2024-10-31 at 14:03 By Linda Reid, Vice President of Security Operations at The Walt Disney World Resort, will deliver the keynote address at the SECURITY 500 Conference in Washington, D.C. this November. This article is an excerpt from Subscribe to Security Magazine’s RSS Feed View Original Source

Enterprise Identity Threat Report 2024: Unveiling Hidden Threats to Corporate Identities 2024-10-31 at 13:11 By In the modern, browser-centric workplace, the corporate identity acts as the frontline defense for organizations. Often referred to as “the new perimeter”, the identity stands between safe data management and potential breaches. However, a new report reveals how enterprises are

LiteSpeed Cache Plugin Vulnerability Poses Significant Risk to WordPress Websites 2024-10-31 at 12:35 By A high-severity security flaw has been disclosed in the LiteSpeed Cache plugin for WordPress that could allow an unauthenticated threat actor to elevate their privileges and perform malicious actions. The vulnerability, tracked as CVE-2024-50550 (CVSS score: 8.1), has been addressed in

UK gov report to propose special zones for datacenters, ‘AI visas’ 2024-10-31 at 11:33 By Dan Robinson Vendors not keen on ‘lengthy bureaucracy,’ and cost when they try to hire skilled foreigners UK government is to recommend streamlining the visa process for those with AI skills and the creation of special zones where it will