Apple Warns of Newly Exploited iOS 17 Kernel Zero-Day 04/10/2023 at 22:16 By Ryan Naraine Apple’s cat-and-mouse struggles with zero-day exploits on its flagship iOS platform is showing no signs of slowing down. The post Apple Warns of Newly Exploited iOS 17 Kernel Zero-Day appeared first on SecurityWeek. This article is an excerpt from SecurityWeek […]
Apple Warns of Newly Exploited iOS 17 Kernel Zero-Day Read More »
Atlassian Ships Urgent Patch for Exploited Confluence Zero-Day 04/10/2023 at 20:16 By Ryan Naraine Atlassian confirms that “a handful of customers” were hit by exploits targeting a remotely exploitable flaw in its Confluence Data Center and Server products. The post Atlassian Ships Urgent Patch for Exploited Confluence Zero-Day appeared first on SecurityWeek. This article is
Atlassian Ships Urgent Patch for Exploited Confluence Zero-Day Read More »
Dozens of Malicious NPM Packages Steal User, System Data 03/10/2023 at 15:48 By Ionut Arghire Fortinet warns of multiple malicious NPM packages that include install scripts designed to steal sensitive information. The post Dozens of Malicious NPM Packages Steal User, System Data appeared first on SecurityWeek. This article is an excerpt from SecurityWeek RSS Feed
Dozens of Malicious NPM Packages Steal User, System Data Read More »
Chinese Gov Hackers Caught Hiding in Cisco Router Firmware 27/09/2023 at 21:02 By Ryan Naraine The NSA and FBI warn that a Chinese state-sponsored APT called BlackTech is hacking into network edge devices and using firmware implants to silently hop around the corporate networks of U.S. and Japanese companies. The post Chinese Gov Hackers Caught
Chinese Gov Hackers Caught Hiding in Cisco Router Firmware Read More »
UAE-Linked APT Targets Middle East Government With New ‘Deadglyph’ Backdoor 26/09/2023 at 17:16 By Ionut Arghire UAE-linked APT group Stealth Falcon has used the new Deadglyph backdoor in an attack targeting a governmental entity in the Middle East. The post UAE-Linked APT Targets Middle East Government With New ‘Deadglyph’ Backdoor appeared first on SecurityWeek. This
UAE-Linked APT Targets Middle East Government With New ‘Deadglyph’ Backdoor Read More »
Xenomorph Android Banking Trojan Targeting Users in US, Canada 26/09/2023 at 14:46 By Ionut Arghire The Xenomorph Android banking trojan can now mimic financial institutions in the US and Canada and is also targeting crypto wallets. The post Xenomorph Android Banking Trojan Targeting Users in US, Canada appeared first on SecurityWeek. This article is an
Xenomorph Android Banking Trojan Targeting Users in US, Canada Read More »
Pakistani APT Uses YouTube-Mimicking RAT to Spy on Android Devices 19/09/2023 at 15:47 By Ionut Arghire New versions of Pakistan-linked APT Transparent Tribe’s CapraRAT Android trojan mimic the appearance of YouTube. The post Pakistani APT Uses YouTube-Mimicking RAT to Spy on Android Devices appeared first on SecurityWeek. This article is an excerpt from SecurityWeek RSS
Pakistani APT Uses YouTube-Mimicking RAT to Spy on Android Devices Read More »
CISA Says Owl Labs Vulnerabilities Requiring Close Physical Range Exploited in Attacks 19/09/2023 at 13:32 By Eduard Kovacs CISA says Owl Labs video conferencing device vulnerabilities that require the attacker to be in close range exploited in attacks The post CISA Says Owl Labs Vulnerabilities Requiring Close Physical Range Exploited in Attacks appeared first on
CISA Says Owl Labs Vulnerabilities Requiring Close Physical Range Exploited in Attacks Read More »
macOS Info-Stealer Malware ‘MetaStealer’ Targeting Businesses 13/09/2023 at 16:47 By Ionut Arghire The MetaStealer macOS information stealer has been targeting businesses to exfiltrate keychain and other valuable information. The post macOS Info-Stealer Malware ‘MetaStealer’ Targeting Businesses appeared first on SecurityWeek. This article is an excerpt from SecurityWeek RSS Feed View Original Source
macOS Info-Stealer Malware ‘MetaStealer’ Targeting Businesses Read More »
After Apple and Google, Mozilla Also Patches Zero-Day Exploited for Spyware Delivery 13/09/2023 at 12:16 By Eduard Kovacs After Apple and Google, Mozilla has also patched an image processing-related zero-day vulnerability exploited by spyware. The post After Apple and Google, Mozilla Also Patches Zero-Day Exploited for Spyware Delivery appeared first on SecurityWeek. This article is
After Apple and Google, Mozilla Also Patches Zero-Day Exploited for Spyware Delivery Read More »
Zero Day Summer: Microsoft Warns of Fresh New Software Exploits 12/09/2023 at 22:16 By Ryan Naraine Microsoft’s struggles with zero-day exploits rolled into a new month with a fresh Patch Tuesday warning about malware attacks in the wild. The post Zero Day Summer: Microsoft Warns of Fresh New Software Exploits appeared first on SecurityWeek. This
Zero Day Summer: Microsoft Warns of Fresh New Software Exploits Read More »
Cisco ASA Zero-Day Exploited in Akira Ransomware Attacks 08/09/2023 at 17:31 By Ionut Arghire Cisco is warning of a zero-day vulnerability in Cisco ASA and FTD that can be exploited remotely, without authentication, in brute force attacks. The post Cisco ASA Zero-Day Exploited in Akira Ransomware Attacks appeared first on SecurityWeek. This article is an
Cisco ASA Zero-Day Exploited in Akira Ransomware Attacks Read More »
US, UK Sanction More Members of Trickbot Russian Cybercrime Group 08/09/2023 at 13:33 By Eduard Kovacs The US and UK have announced sanctions against 11 more alleged members of the Russian cybercrime group Trickbot. The post US, UK Sanction More Members of Trickbot Russian Cybercrime Group appeared first on SecurityWeek. This article is an excerpt
US, UK Sanction More Members of Trickbot Russian Cybercrime Group Read More »
US Aeronautical Organization Hacked via Zoho, Fortinet Vulnerabilities 08/09/2023 at 13:33 By Ionut Arghire APTs exploited vulnerabilities in Zoho ManageEngine and Fortinet VPNs to hack an aerospace organization in early January 2023. The post US Aeronautical Organization Hacked via Zoho, Fortinet Vulnerabilities appeared first on SecurityWeek. This article is an excerpt from SecurityWeek RSS Feed
US Aeronautical Organization Hacked via Zoho, Fortinet Vulnerabilities Read More »
Apple Patches Actively Exploited iOS, macOS Zero-Days 07/09/2023 at 23:31 By Ryan Naraine Apple pushes out an urgent point-update to its flagship iOS and macOS platforms to fix a pair of security defects being exploited in the wild. The post Apple Patches Actively Exploited iOS, macOS Zero-Days appeared first on SecurityWeek. This article is an
Apple Patches Actively Exploited iOS, macOS Zero-Days Read More »
Rigged Software and Zero-Days: North Korean APT Caught Hacking Security Researchers 07/09/2023 at 23:31 By Ryan Naraine Google again catches a North Korean APT actor targeting security researchers with zero-days and rigged software tools. The post Rigged Software and Zero-Days: North Korean APT Caught Hacking Security Researchers appeared first on SecurityWeek. This article is an
Rigged Software and Zero-Days: North Korean APT Caught Hacking Security Researchers Read More »
‘Atomic macOS Stealer’ Malware Delivered via Malvertising Campaign 07/09/2023 at 17:48 By Eduard Kovacs A malware named Atomic macOS Stealer (AMOS) has been delivered to users via a malvertising campaign. The post ‘Atomic macOS Stealer’ Malware Delivered via Malvertising Campaign appeared first on SecurityWeek. This article is an excerpt from SecurityWeek RSS Feed View Original
‘Atomic macOS Stealer’ Malware Delivered via Malvertising Campaign Read More »
Developers Warned of Malicious PyPI, NPM, Ruby Packages Targeting Macs 05/09/2023 at 13:17 By Ionut Arghire Malicious packages uploaded to PyPI, NPM, and Ruby repositories are targeting macOS users with information stealing malware. The post Developers Warned of Malicious PyPI, NPM, Ruby Packages Targeting Macs appeared first on SecurityWeek. This article is an excerpt from
Developers Warned of Malicious PyPI, NPM, Ruby Packages Targeting Macs Read More »
Threat Actors Adopt, Modify Open Source ‘SapphireStealer’ Information Stealer 01/09/2023 at 14:04 By Ionut Arghire Cisco has observed multiple threat actors adopting the SapphireStealer information stealer after its source code was released on GitHub. The post Threat Actors Adopt, Modify Open Source ‘SapphireStealer’ Information Stealer appeared first on SecurityWeek. This article is an excerpt from
Threat Actors Adopt, Modify Open Source ‘SapphireStealer’ Information Stealer Read More »
Industry Reactions to Qakbot Botnet Disruption: Feedback Friday 01/09/2023 at 14:04 By Eduard Kovacs Industry professionals comment on the law enforcement operation targeting the Qakbot botnet and its implications. The post Industry Reactions to Qakbot Botnet Disruption: Feedback Friday appeared first on SecurityWeek. This article is an excerpt from SecurityWeek RSS Feed View Original Source
Industry Reactions to Qakbot Botnet Disruption: Feedback Friday Read More »