Iranian Cyberspies Target US-Based Think Tank With New macOS Malware
In a recent attack against a US-based think tank, Iranian cyberespionage group Charming Kitten was observed porting a PowerShell backdoor to macOS, Proofpoint reports. The…
Category: SecurityWeek
Vulnerabilities in PiiGAB Product Could Expose Industrial Organizations to Attacks
Potentially serious vulnerabilities discovered by researchers in a PiiGAB product could expose industrial organizations to remote hacker attacks. PiiGAB is a Sweden-based company that provides…
Two Apps Hosted on Google Play Caught Sending User Data to Chinese Servers
Two file management applications hosted on Google Play, with more than 1.5 million combined downloads, were caught sending user data to servers in China, mobile…
CISA, FBI Warning: Truebot Hackers Exploiting Netwrix Auditor Flaw
The U.S. government’s cybersecurity agency CISA on Thursday warned hackers linked to the Truebot malware operation are exploiting a known vulnerability in the Netwrix Auditor…
Now’s the Time for a Pragmatic Approach to New Technology Adoption
To say there’s been a lot of hype around AI lately would be an understatement. We’ve all seen headlines touting how AI could change the…
Android Security Updates Patch 3 Exploited Vulnerabilities
Security updates that Google released this week for Android resolve 43 vulnerabilities, including three that have been exploited in attacks. The exploited flaws, tracked as…
JumpCloud Says All API Keys Invalidated to Protect Customers
Device, identity and access management solutions provider JumpCloud has reset customer API keys in response to an “ongoing incident”. JumpCloud has yet to share any…
Shell Confirms MOVEit-Related Breach After Ransomware Group Leaks Data
Energy giant Shell has confirmed that personal information belonging to employees has been compromised as a result of the recent MOVEit Transfer hack. The Cl0p…
28,000 Impacted by Data Breach at Pepsi Bottling Ventures
More than 28,000 individuals were impacted by a data breach at independent bottling company Pepsi Bottling Ventures. Discovered on January 10, the data breach occurred…
StackRot Linux Kernel Vulnerability Shows Exploitability of UAFBR Bugs
A researcher has disclosed a Linux kernel vulnerability that he claims is the first to demonstrate that a type of bug called use-after-free-by-RCU (UAFBR) is…
Interpol: Key Member of Major Cybercrime Group Arrested in Africa
Interpol on Wednesday announced the arrest of a suspected senior member of the French-speaking cybercrime group known as Opera1er. Also tracked as Common Raven, Desktop-Group,…
Vulnerability in Cisco Enterprise Switches Allows Attackers to Modify Encrypted Traffic
Cisco this week informed customers about a high-severity vulnerability in its Nexus 9000 series switches that could allow unauthenticated attackers to intercept and modify traffic.…