What is the Best Pen Testing Schedule for Your Development Cycle?
Pen testing is an essential part of secure application development; it helps find vulnerabilities before they can be exploited, ensures the resilience of web applications,…
Category: Bleeping Computer
Hydrochasma hackers target medical research labs, shipping firms
A previously unknown threat actor named Hydrochasma has been targeting shipping and medical laboratories involved in COVID-19 vaccine development and treatments. The hackers’s goal appears to…
Hackers now exploit critical Fortinet bug to backdoor servers
Threat actors are targeting Internet-exposed Fortinet appliances with exploits targeting CVE-2022-39952, an unauthenticated file path manipulation vulnerability in the FortiNAC webserver that can be abused…
Google paid $12 million in bug bounties to security researchers
Google last year paid its highest bug bounty ever through the Vulnerability Reward Program for a critical exploit chain report that the company valued at…
NSA shares guidance on how to secure your home network
The U.S. National Security Agency (NSA) has issued guidance to help remote workers secure their home networks and defend their devices from attacks. The guide…
Hackers use fake ChatGPT apps to push Windows, Android malware
Threat actors are exploiting the popularity of OpenAI’s ChatGPT chatbot to distribute malware for Windows and Android, or direct unsuspecting vitims to phishing pages. ChatGPT gained…
Google investigates Gmail IMAP sync issues affecting Outlook users
Google is investigating a service outage affecting Gmail users worldwide that causes issues when syncing emails with Microsoft servers via the Internet Message Access Protocol…
New S1deload Stealer malware hijacks Youtube, Facebook accounts
An ongoing malware campaign targets YouTube and Facebook users, infecting their computers with a new information stealer that will hijack their social media accounts and…
VMware warns admins of critical Carbon Black App Control flaw
VMware has released a critical security upgrade to address a critical injection vulnerability that impacts several versions of Carbon Black App Control for Windows. The…
Google will boost Android security through firmware hardening
Google has started working to harden the security of Android at the firmware level, a component of the software stack that interacts directly with the…
Microsoft to test Bing Chat tones, allows longer chat sessions
Microsoft will start testing Bing Chat tones, enabling users to switch between receiving answers that are either more creative or more focused on their queries.…
Exploit released for critical Fortinet RCE flaws, patch now
Security researchers have released a proof-of-concept exploit for a critical-severity vulnerability (CVE-2022-39952) in Fortinet’s FortiNAC network access control suite. Fortinet disclosed the security issue on February 16 and…