Critical Flaw in Microchip ASF Exposes IoT Devices to Remote Code Execution Risk
Sep 23, 2024Ravie LakshmananIoT Security / Vulnerability A critical security flaw has been disclosed in the Microchip Advanced Software Framework...
Read more →Category: TheHackerNews
New PondRAT Malware Hidden in Python Packages Targets Software Developers
Sep 23, 2024Ravie LakshmananSoftware Security / Supply Chain Threat actors with ties to North Korea have been observed using poisoned...
Read more →
Chinese Hackers Exploit GeoServer Flaw to Target APAC Nations with EAGLEDOOR Malware
Sep 23, 2024Ravie LakshmananCyber Espionage / Malware A suspected advanced persistent threat (APT) originating from China targeted a government organization...
Read more →
Hacktivist Group Twelve Targets Russian Entities with Destructive Cyber Attacks
A hacktivist group known as Twelve has been observed using an arsenal of publicly available tools to conduct destructive cyber...
Read more →
Ukraine Bans Telegram Use for Government and Military Personnel
Sep 21, 2024Ravie LakshmananNational Security / Cyber Attack Ukraine has restricted the use of the Telegram messaging app by government...
Read more →
LinkedIn Halts AI Data Processing in UK Amid Privacy Concerns Raised by ICO
Sep 21, 2024Ravie LakshmananPrivacy / Artificial Intelligence The U.K. Information Commissioner’s Office (ICO) has confirmed that professional social networking platform...
Read more →
Europol Shuts Down Major Phishing Scheme Targeting Mobile Phone Credentials
Law enforcement authorities have announced the takedown of an international criminal network that leveraged a phishing platform to unlock stolen...
Read more →
The Future of (Privileged) Access Management
In IT environments, some secrets are managed well and some fly under the radar. Here’s a quick checklist of what...
Read more →
Iranian APT UNC1860 Linked to MOIS Facilitates Cyber Intrusions in Middle East
An Iranian advanced persistent threat (APT) threat actor likely affiliated with the Ministry of Intelligence and Security (MOIS) is now...
Read more →
Chrome Users Can Now Sync Passkeys Across Devices with New Google PIN Feature
Sep 20, 2024Ravie LakshmananEncryption / Digital Security Google on Thursday unveiled a Password Manager PIN to let Chrome web users...
Read more →
Critical Ivanti Cloud Appliance Vulnerability Exploited in Active Cyberattacks
Sep 20, 2024Ravie LakshmananEnterprise Security / Network Security Ivanti has revealed that a critical security flaw impacting Cloud Service Appliance...
Read more →
Wherever There’s Ransomware, There’s Service Account Compromise. Are You Protected?
Until just a couple of years ago, only a handful of IAM pros knew what service accounts are. In the...
Read more →