Qualcomm Flags Exploitation of Adreno GPU Flaws, Urges OEMs to Patch Urgently
Mobile chipmaker Qualcomm on Monday warned that professional hackers are already exploiting three newly patched Adreno GPU bugs and the company is pressing phone makers…
Category: SecurityWeek
vBulletin Vulnerability Exploited in the Wild
A critical vulnerability affecting the vBulletin forum software is being exploited in the wild, with attacks starting shortly after disclosure. Researcher Egidio Romano published a…
US Government Is Investigating Messages Impersonating Trump’s Chief of Staff, Susie Wiles
The government is investigating after elected officials, business executives and other prominent figures in recent weeks received messages from someone impersonating Susie Wiles, President Donald…
Chrome to Distrust Chunghwa Telecom and Netlock Certificates
Google on Friday announced that the Chrome Root Store will no longer trust digital certificates issued by Chunghwa Telecom and Netlock. The change will be…
Alleged Conti, TrickBot Gang Leader Unmasked
German authorities have named Russian national Vitaly Nikolaevich Kovalev as the founder and leader of the TrickBot cybercrime gang. Established in 2016, the TrickBot group…
Technical Details Published for Critical Cisco IOS XE Vulnerability
Technical details have been released for a recently patched critical-severity vulnerability in Cisco IOS XE that could be exploited for remote code execution (RCE). Tracked…
Counter Antivirus Service AVCheck Shut Down by Law Enforcement
Dutch authorities announced the takedown of AVCheck, one of the largest counter antivirus (CAV) services used by cybercriminals worldwide. CAV services such as AVCheck play…
In Other News: PoC for Fortinet Bug, AI Model Subverts Shutdown, RAT Source Code Leaked
SecurityWeek’s cybersecurity news roundup provides a concise compilation of noteworthy stories that might have slipped under the radar. We provide a valuable summary of stories…
CISA Releases Guidance on SIEM and SOAR Implementation
Newly released guidance from the US and Australian governments aims to provide organizations with advice on how to improve their security posture through implementing SIEM…
ConnectWise Discloses Suspected State-Sponsored Hack
IT management software provider ConnectWise has warned customers that a suspected state-sponsored threat actor had breached its network. “ConnectWise recently learned of suspicious activity within…
MITRE Publishes Post-Quantum Cryptography Migration Roadmap
The MITRE-founded Post-Quantum Cryptography Coalition (PQCC) this week published fresh guidance for organizations looking to ready themselves to transition to quantum-safe cryptography. Advancements in the…
US Sanctions Philippine Company for Supporting Crypto Scams
The US Treasury Department on Thursday announced sanctions against a Philippines-based company for providing infrastructure to hundreds of thousands of websites involved in cryptocurrency investment…