Featured

After Apple and Google, Mozilla Also Patches Zero-Day Exploited for Spyware Delivery

exploited, Featured, Firefox, Malware & Threats, Zero-Day /

After Apple and Google, Mozilla Also Patches Zero-Day Exploited for Spyware Delivery 13/09/2023 at 12:16 By Eduard Kovacs After Apple and Google, Mozilla has also patched an image processing-related zero-day vulnerability exploited by spyware. The post After Apple and Google, Mozilla Also Patches Zero-Day Exploited for Spyware Delivery appeared first on SecurityWeek. This article is […]

After Apple and Google, Mozilla Also Patches Zero-Day Exploited for Spyware Delivery Read More »

Google Patches Chrome Zero-Day Reported by Apple, Spyware Hunters

Chrome, exploited, Featured, spyware, Vulnerabilities, Zero-Day /

Google Patches Chrome Zero-Day Reported by Apple, Spyware Hunters 12/09/2023 at 12:01 By Ionut Arghire Google has released a Chrome 116 security update to patch CVE-2023-4863, the fourth Chrome zero-day vulnerability documented in 2023. The post Google Patches Chrome Zero-Day Reported by Apple, Spyware Hunters appeared first on SecurityWeek. This article is an excerpt from

Google Patches Chrome Zero-Day Reported by Apple, Spyware Hunters Read More »

Cisco ASA Zero-Day Exploited in Akira Ransomware Attacks

Cisco, Featured, Malware & Threats, Vulnerabilities, Zero-Day /

Cisco ASA Zero-Day Exploited in Akira Ransomware Attacks 08/09/2023 at 17:31 By Ionut Arghire Cisco is warning of a zero-day vulnerability in Cisco ASA and FTD that can be exploited remotely, without authentication, in brute force attacks. The post Cisco ASA Zero-Day Exploited in Akira Ransomware Attacks appeared first on SecurityWeek. This article is an

Cisco ASA Zero-Day Exploited in Akira Ransomware Attacks Read More »

Android Zero-Day Patched With September 2023 Security Updates 

Android, Featured, Mobile & Wireless, Zero-Day /

Android Zero-Day Patched With September 2023 Security Updates  06/09/2023 at 15:34 By Ionut Arghire Android’s September 2023 security update resolves a high-severity elevation of privilege vulnerability exploited in malicious attacks. The post Android Zero-Day Patched With September 2023 Security Updates  appeared first on SecurityWeek. This article is an excerpt from SecurityWeek RSS Feed View Original

Android Zero-Day Patched With September 2023 Security Updates  Read More »

Okta Says US Customers Targeted in Sophisticated Attacks

Featured, Identity & Access, Okta, social engineering /

Okta Says US Customers Targeted in Sophisticated Attacks 05/09/2023 at 17:02 By Eduard Kovacs Okta says some of its US-based customers have been targeted in social engineering attacks whose goal was to disable MFA and obtain high privileges. The post Okta Says US Customers Targeted in Sophisticated Attacks appeared first on SecurityWeek. This article is

Okta Says US Customers Targeted in Sophisticated Attacks Read More »

Five Eyes Report: New Russian Malware Targeting Ukrainian Military Android Devices

Android trojan, Cyberwarfare, Featured, Five Eyes, Malware, Mobile & Wireless, Russia, Ukraine /

Five Eyes Report: New Russian Malware Targeting Ukrainian Military Android Devices 31/08/2023 at 15:46 By Eduard Kovacs Five Eyes report details ‘Infamous Chisel’ malware used by Russian state-sponsored hackers to target the Ukrainian military’s Android devices.  The post Five Eyes Report: New Russian Malware Targeting Ukrainian Military Android Devices appeared first on SecurityWeek. This article

Five Eyes Report: New Russian Malware Targeting Ukrainian Military Android Devices Read More »

BGP Flaw Can Be Exploited for Prolonged Internet Outages

Featured, Network Security /

BGP Flaw Can Be Exploited for Prolonged Internet Outages 30/08/2023 at 15:31 By Eduard Kovacs Serious flaw affecting major BGP implementations can be exploited to cause prolonged internet outages, but several vendors have not patched it.  The post BGP Flaw Can Be Exploited for Prolonged Internet Outages appeared first on SecurityWeek. This article is an

BGP Flaw Can Be Exploited for Prolonged Internet Outages Read More »

3 Cryptocurrency Firms Suffer Data Breach After Kroll SIM Swapping Attack

Cryptocurrency, data breach, Data Breaches, Featured, Kroll /

3 Cryptocurrency Firms Suffer Data Breach After Kroll SIM Swapping Attack 28/08/2023 at 12:15 By Eduard Kovacs Three bankrupt cryptocurrency companies — FTX, BlockFi and Genesis — suffered data breaches following a SIM swapping attack at Kroll.  The post 3 Cryptocurrency Firms Suffer Data Breach After Kroll SIM Swapping Attack appeared first on SecurityWeek. This

3 Cryptocurrency Firms Suffer Data Breach After Kroll SIM Swapping Attack Read More »

Smart Cities: Utopian Dream, Security Nightmare, or Political Gimmick?

Featured, ICS/OT, IoT, IoT Security, Smart City, XIoT /

Smart Cities: Utopian Dream, Security Nightmare, or Political Gimmick? 23/08/2023 at 19:18 By Kevin Townsend As smart cities evolve with more and more integrated connected services, cybersecurity concerns will increase dramatically. The post Smart Cities: Utopian Dream, Security Nightmare, or Political Gimmick? appeared first on SecurityWeek. This article is an excerpt from SecurityWeek RSS Feed

Smart Cities: Utopian Dream, Security Nightmare, or Political Gimmick? Read More »

Cybersecurity Companies Report Surge in Ransomware Attacks

Featured, Ransomware /

Cybersecurity Companies Report Surge in Ransomware Attacks 23/08/2023 at 19:18 By Eduard Kovacs Cybersecurity companies have released a dozen ransomware reports in recent weeks and most of them show a surge in attacks. The post Cybersecurity Companies Report Surge in Ransomware Attacks appeared first on SecurityWeek. This article is an excerpt from SecurityWeek RSS Feed

Cybersecurity Companies Report Surge in Ransomware Attacks Read More »

Exploitation of Ivanti Sentry Zero-Day Confirmed

exploited, Featured, Ivanti, Vulnerabilities, Zero-Day /

Exploitation of Ivanti Sentry Zero-Day Confirmed 23/08/2023 at 12:17 By Eduard Kovacs While initially it was unclear if the Ivanti Sentry vulnerability CVE-2023-38035 has been exploited, the vendor and CISA have now confirmed it. The post Exploitation of Ivanti Sentry Zero-Day Confirmed appeared first on SecurityWeek. This article is an excerpt from SecurityWeek RSS Feed

Exploitation of Ivanti Sentry Zero-Day Confirmed Read More »

CISA Warns of Another Exploited Adobe ColdFusion Vulnerability

ColdFusion, exploited, Featured, Malware & Threats, Vulnerabilities /

CISA Warns of Another Exploited Adobe ColdFusion Vulnerability 22/08/2023 at 13:47 By Eduard Kovacs CISA warns that CVE-2023-26359, an Adobe ColdFusion vulnerability patched in March, has been exploited in the wild. The post CISA Warns of Another Exploited Adobe ColdFusion Vulnerability appeared first on SecurityWeek. This article is an excerpt from SecurityWeek RSS Feed View

CISA Warns of Another Exploited Adobe ColdFusion Vulnerability Read More »

Exploitation of Citrix ShareFile Vulnerability Spikes as CISA Issues Warning 

Citrix, exploited, Featured, Vulnerabilities /

Exploitation of Citrix ShareFile Vulnerability Spikes as CISA Issues Warning  17/08/2023 at 12:18 By Eduard Kovacs Exploitation of a Citrix ShareFile vulnerability tracked as CVE-2023-24489 has spiked as CISA added it to its ‘must patch’ catalog. The post Exploitation of Citrix ShareFile Vulnerability Spikes as CISA Issues Warning  appeared first on SecurityWeek. This article is

Exploitation of Citrix ShareFile Vulnerability Spikes as CISA Issues Warning  Read More »

CISO Conversations: CISOs in Cloud-based Services Discuss the Process of Leadership

CISO, CISO Conversations, cloud security, Featured /

CISO Conversations: CISOs in Cloud-based Services Discuss the Process of Leadership 15/08/2023 at 16:31 By Kevin Townsend SecurityWeek talks to Billy Spears, CISO at Teradata (a multi-cloud analytics provider), and Lea Kissner, CISO at cloud security firm Lacework. The post CISO Conversations: CISOs in Cloud-based Services Discuss the Process of Leadership appeared first on SecurityWeek.

CISO Conversations: CISOs in Cloud-based Services Discuss the Process of Leadership Read More »

Iagona ScrutisWeb Vulnerabilities Could Expose ATMs to Remote Hacking

ATM, Endpoint Security, Featured, Vulnerabilities, vulnerability /

Iagona ScrutisWeb Vulnerabilities Could Expose ATMs to Remote Hacking 14/08/2023 at 13:46 By Eduard Kovacs Several vulnerabilities discovered in Iagona ScrutisWeb ATM fleet monitoring software could be exploited to remotely hack ATMs. The post Iagona ScrutisWeb Vulnerabilities Could Expose ATMs to Remote Hacking appeared first on SecurityWeek. This article is an excerpt from SecurityWeek RSS

Iagona ScrutisWeb Vulnerabilities Could Expose ATMs to Remote Hacking Read More »

CISA Warns Organizations of Exploited Vulnerability Affecting .NET, Visual Studio 

.NET, CISA, Featured, Microsoft, Vulnerabilities, Zero-Day /

CISA Warns Organizations of Exploited Vulnerability Affecting .NET, Visual Studio  10/08/2023 at 12:33 By Eduard Kovacs CISA has added CVE-2023-38180, a zero-day vulnerability affecting .NET and Visual Studio, to its Known Exploited Vulnerabilities Catalog. The post CISA Warns Organizations of Exploited Vulnerability Affecting .NET, Visual Studio  appeared first on SecurityWeek. This article is an excerpt

CISA Warns Organizations of Exploited Vulnerability Affecting .NET, Visual Studio  Read More »

Downfall: New Intel CPU Attack Exposing Sensitive Information

CPU, Endpoint Security, Featured, Intel, Vulnerabilities /

Downfall: New Intel CPU Attack Exposing Sensitive Information 09/08/2023 at 09:32 By Eduard Kovacs Google researcher discloses the details of an Intel CPU attack method named Downfall that may be remotely exploitable. The post Downfall: New Intel CPU Attack Exposing Sensitive Information appeared first on SecurityWeek. This article is an excerpt from SecurityWeek RSS Feed

Downfall: New Intel CPU Attack Exposing Sensitive Information Read More »

Scroll to Top