Category: Bleeping Computer

Apple
30
May
2023

Microsoft finds macOS bug that lets hackers bypass SIP root restrictions

Apple has recently addressed a vulnerability that lets attackers with root privileges bypass System Integrity Protection (SIP) to install “undeletable”…

Hacker
30
May
2023

RomCom malware spread via Google Ads for ChatGPT, GIMP, more

A new campaign distributing the RomCom backdoor malware is impersonating the websites of well-known or fictional software, tricking users into…

Microsoft Surface laptops
30
May
2023

Microsoft shares fix for cameras not working on Surface laptops

Microsoft has shared a temporary fix for a widespread issue triggered by a buggy driver that causes built-in cameras on…

Android
30
May
2023

Android apps with spyware installed 421 million times from Google Play

A new Android malware distributed as an advertisement SDK has been discovered in multiple apps, many previously on Google Play…

RaidForums
30
May
2023

New hacking forum leaks data of 478,000 RaidForums members

A database for the notorious RaidForums hacking forums has been leaked online, allowing threat actors and security researchers insight into…

Flash loan attack on Jimbos Protocol steals over $7.5 million
29
May
2023

Flash loan attack on Jimbos Protocol steals over $7.5 million

Jimbos Protocol, an Arbitrum-based DeFi project, has suffered a flash loan attack that resulted in the loss of more than…

Dentist
29
May
2023

MCNA Dental data breach impacts 8.9 million people after ransomware attack

Managed Care of North America (MCNA) Dental has published a data breach notification on its website, informing almost 9 million…

North Korea
29
May
2023

Lazarus hackers target Windows IIS web servers for initial access

The notorious North Korean state-backed hackers, known as the Lazarus Group, are now targeting vulnerable Windows Internet Information Services (IIS)…

pypi
28
May
2023

PyPI announces mandatory use of 2FA for all software publishers

The Python Package Index (PyPI) has announced that it will require every account that manages a project on the platform…

ZIP file
28
May
2023

Clever ‘File Archiver In The Browser’ phishing trick uses ZIP domains

A new ‘File Archivers in the Browser’ phishing kit abuses ZIP domains by displaying fake WinRAR or Windows File Explorer…

Hot Pixels attack checks CPU temp, power changes to steal data
27
May
2023

Hot Pixels attack checks CPU temp, power changes to steal data

A team of researchers at Georgia Tech, the University of Michigan, and Ruhr University Bochum have developed a novel attack…

QBot
27
May
2023

QBot malware abuses Windows WordPad EXE to infect devices

The QBot malware operation has started to abuse a DLL hijacking flaw in the Windows 10 WordPad program to infect…