Western Digital’s Discovery App Vulnerability Allows Code Execution
The Western Digital Discovery app, a well-known provider of storage devices, has a vulnerability identified as CVE 2024-22169 with a CVSS base score of 7.1…
Month: August 2024
North Korean Hackers Exploit VPN Update Flaw To Breach Networks
North Korean state-sponsored hacking groups, including Kimsuky (APT43) and Andariel (APT45), have significantly increased cyberattacks on South Korean construction and machinery sectors. This surge aligns…
Android vulnerability used in targeted attacks patched by Google
Google has released patches for 46 vulnerabilities in Android, including a remote code execution (RCE) vulnerability that it says has been used in limited, targeted…
CISA adds Microsoft COM for Windows bug to its Known Exploited Vulnerabilities catalog
CISA adds Microsoft COM for Windows bug to its Known Exploited Vulnerabilities catalog Pierluigi Paganini August 06, 2024 U.S. Cybersecurity and Infrastructure Security Agency (CISA)…
Chameleon Device-Takeover Malware Mimic As CRM App Attacking IT Employees
Researchers have identified a new Chameleon campaign targeting hospitality employees, where the attackers employed a deceptive tactic, disguising malicious software as a CRM app. File…
Ransomware gang targets IT workers with new RAT maquerading as IP scanner
Ransomware-as-a-service outfit Hunters International is wielding a new remote access trojan (RAT). “The malware, named SharpRhino due to its use of the C# programming language,…
Men report more pressure and threats to share location and accounts with partners, research shows
Men report facing more pressure than women—and more threats of retaliation—to grant access to their locations and online accounts when in a committed relationship, according…
Insider Threats in The SaaS World
Aug 06, 2024The Hacker NewsSaaS Security / Threat Detection Everyone loves the double-agent plot twist in a spy movie, but it’s a different story when…
Labour drops Edinburgh exascale supercomputer but funds more AI
The Department for Science, Innovation and Technology (DSIT) has announced funding for 98 artificial intelligence (AI) projects to help kickstart the UK economy. Minister for…
North Korean Hackers Moonstone Sleet Push Malicious JS Packages to npm Registry
Aug 06, 2024Ravie LakshmananMalware / Windows Security The North Korea-linked threat actor known as Moonstone Sleet has continued to push malicious npm packages to the…
Google warns of an actively exploited Android kernel flaw
Google warns of an actively exploited Android kernel flaw Pierluigi Paganini August 06, 2024 Google addressed an actively exploited high-severity vulnerability, tracked as CVE-2024-36971, impacting…
40 French Museums IT Systems Hit by Ransomware Attack
Ransomware has infiltrated the IT systems of 40 French museums, including the renowned Louvre. The incident, which occurred on the night of August 3-4, 2024,…