Misconfigured TeslaMate Instances Put Tesla Car Owners at Risk
Misconfigured TeslaMate instances can leak tons of data on the internet, potentially exposing Tesla cars and their drivers to malicious attacks, IoT security intelligence firm…
Category: SecurityWeek
Stolen GitHub Credentials Used to Push Fake Dependabot Commits
Threat actors have been observed pushing fake Dependabot contributions to hundreds of GitHub repositories in an effort to inject malicious code, application security firm Checkmarx…
macOS 14 Sonoma Patches 60 Vulnerabilities
Apple on Tuesday announced the release of macOS 14 Sonoma. A security advisory published by the tech giant shows that the latest version of the…
New GPU Side-Channel Attack Allows Malicious Websites to Steal Data
Nearly all modern graphics processing units (GPUs) are vulnerable to a new type of side-channel attack that could be leveraged to obtain sensitive information, according…
Microsoft Adding New Security Features to Windows 11
Microsoft on Tuesday announced the new security features that will be available in the latest version of Windows 11. Windows 11 feature updates are released…
$200 Million in Cryptocurrency Stolen in Mixin Network Hack
Peer-to-peer digital asset transactional network Mixin Network has suspended deposits and withdrawals after hackers stole $200 million. The Hong Kong-based platform uses a cross-chain transfer…
UAE-Linked APT Targets Middle East Government With New ‘Deadglyph’ Backdoor
The advanced persistent threat (APT) actor Stealth Falcon has been observed deploying a new backdoor on the systems of a governmental entity in the Middle…
Sony Investigating After Hackers Offer to Sell Stolen Data
Sony has launched an investigation after a cybercrime group claimed to have compromised the company’s systems, offering to sell stolen data. A representative of the…
The CISO Carousel and its Effect on Enterprise Cybersecurity
The average tenure of a Chief Information Security Officer said to sit between 18 to 24 months. This is barely enough time to get feet…
Xenomorph Android Banking Trojan Targeting Users in US, Canada
Recently identified Xenomorph Android banking trojan samples show an expanded target list that now includes North American users, online fraud detection firm ThreatFabric reports. Initially…
Stealthy APT Gelsemium Seen Targeting Southeast Asian Government
A stealthy advanced persistent threat (APT) actor known as Gelsemium has been observed targeting a government entity in Southeast Asia to establish persistence and collect…
Nigerian Pleads Guilty in US to Million-Dollar BEC Scheme Role
A Nigerian national residing in South Africa last week pleaded guilty in court in the United States to his role in a million-dollar business email…