New ‘MetaStealer’ malware targets Intel-based macOS systems
A new information stealer malware named 'MetaStealer' has appeared in the wild, stealing a wide variety of sensitive information from...
News
Adobe warns of critical Acrobat and Reader zero-day exploited in attacks
Adobe has released security updates to patch a zero-day vulnerability in Acrobat and Reader tagged as exploited in attacks. Even...
Google Chrome Remote Code Execution Vulnerability
A vulnerability was identified in Google Chrome. A remote attacker could exploit this vulnerability to trigger remote code execution on...
Microsoft Monthly Security Update (September 2023)
Microsoft has released monthly security update for their products: Vulnerable ProductRisk LevelImpactsNotesBrowser Low Risk Windows High RiskElevation of Privilege Denial of Service...
Adobe Monthly Security Update (September 2023)
Adobe has released monthly security update for their products: Vulnerable ProductRisk LevelImpactsNotesDetails (including CVE)Adobe Connect Medium RiskCross-site Scripting Remote Code Execution APSB23-33Adobe...
Mozilla Products Remote Code Execution Vulnerability
A vulnerability was identified in Mozilla Products, a remote attacker could exploit this vulnerability to trigger remote code execution on...
US Government Ordered to Urgently Patch Apple Zero-Day Bugs
The US Cybersecurity and Infrastructure Security Agency (CISA) has given federal agencies less than a month to update their iOS,...
Redfly Group Compromises National Power Grid
Security researchers have revealed a new cyber-espionage campaign in which a threat group compromised multiple computers used to run a...
Europol: Financial Crime Makes “Billions” and Impacts “Millions”
A perfect storm of digitalization, geopolitical tension and organized crime is helping to drive financial and economic crime to new heights,...
Windows Systems Targeted in Multi-Stage Malware Attack
A multi-stage malware attack has recently come to light, with Windows systems as its primary target, according to security researchers...
Fighting Individual Ransomware Strains Fruitless, UK Agencies Suggest
Targeting individual ransomware strains is confusing and even unhelpful in tackling this threat vector, according to a joint report from...
Cyber-criminals “Jailbreak” AI Chatbots For Malicious Ends
SlashNext, a cybersecurity company, has uncovered a concerning trend in the world of artificial intelligence (AI) chatbots. Referred to as...
MGM Resorts Hit By Cyber-Attack, Systems Down
MGM Resorts International, a well-known name in the world of hotels and casinos, has experienced a cybersecurity incident. According to a...
Google Rushes to Patch Critical Chrome Vulnerability Exploited in the Wild – Update Now
Google on Monday rolled out out-of-band security patches to address a critical security flaw in its Chrome web browser that...
Sophisticated Phishing Campaign Deploying Agent Tesla, OriginBotnet, and RedLine Clipper
A sophisticated phishing campaign is using a Microsoft Word document lure to distribute a trifecta of threats, namely Agent Tesla,...
Chinese Redfly Group Compromised a Nation’s Critical Grid in 6-Month ShadowPad Campaign
A threat actor called Redfly has been linked to a compromise of a national grid located in an unnamed Asian...
Beware: MetaStealer Malware Targets Apple macOS in Recent Attacks
A new information stealer malware called MetaStealer has set its sights on Apple macOS, making the latest in a growing...
7 Steps to Kickstart Your SaaS Security Program
SaaS applications are the backbone of modern businesses, constituting a staggering 70% of total software usage. Applications like Box, Google...
Critical GitHub Vulnerability Exposes 4,000+ Repositories to Repojacking Attack
A new vulnerability disclosed in GitHub could have exposed thousands of repositories at risk of repojacking attacks, new findings show....
US-CERT Vulnerability Summary for the Week of September 4, 2023
High VulnerabilitiesPrimary Vendor -- ProductDescriptionPublishedCVSS ScoreSource & Patch Infocanonical_ltd. -- snapd_for_linuxUsing the TIOCLINUX ioctl request, a malicious snap could inject...
Apple Products Multiple Vulnerabilities
Multiple vulnerabilities were identified in Apple Products. A remote attacker could exploit some of these vulnerabilities to trigger denial of...
Ransomware and the cyber crime ecosystem
Ransomware and the cyber crime ecosystem Ransomware has been the biggest development in cyber crime since we published the NCSC’s...
‘Evil Telegram’ Android apps on Google Play infected 60K with spyware
Several malicious Telegram clones for Android on Google Play were installed over 60,000 times, infecting people with spyware that steals...
Iranian hackers breach US aviation org via ManageEngine, Fortinet bugs
Image: Midjourney State-backed hacking groups have breached a U.S. aeronautical organization using exploits targeting critical Zoho ManageEngine and Fortinet vulnerabilities,...
