Malware & Threats
A new macOS-targeting hVNC malware family is being advertised on a prominent cybercrime forum.
Hi, what are you looking for?
SecurityWeek
Data Protection
iVerify, a seed-stage startup spun out of Trail of Bits, ships a mobile threat hunting platform to neutralize iOS and Android zero-days.
Artificial Intelligence
AI-powered attacks will become progressively more common, and a well-rounded security approach involves more than simply managing incidents effectively.
Cybercrime
Russian national Vladimir Dunaev pleaded guilty to involvement in the development and use of the TrickBot malware that caused tens of millions of dollars...
Malware & Threats
New Turtle macOS ransomware is not sophisticated but shows that cybercriminals continue to target Apple devices.
Endpoint Security
Apple's security response team warns that flaws CVE-2023-42916 and CVE-2023-42917 were already exploited against versions of iOS before iOS 16.7.1.
Malware & Threats
Zimperium has identified over 200 information-stealing Android applications targeting mobile banking users in Iran.
Malware & Threats
The recently patched Ivanti EPMM zero-day CVE-2023-35078 has been exploited to hack the Norwegian government since at least April 2023.
Malware & Threats
Ivanti EPMM customers have been warned of CVE-2023-35081, a second zero-day vulnerability that has been exploited in targeted attacks.
Malware & Threats
CISA has shared analysis reports on three malware families obtained from an organization hacked via a recent Barracuda ESG vulnerability.
Malware & Threats
The first attempts to exploit CVE-2023-24489, a recent critical Citrix ShareFile remote code execution vulnerability, have been observed.
Email Security
Weekly cybersecurity news roundup that provides a summary of noteworthy stories that might have slipped under the radar for the week of July 17,...
Malware & Threats
Multiple DDoS botnets have been observed targeting CVE-2023-28771, a Zyxel firewall vulnerability patched in April.
Malware & Threats
The Rust-based peer-to-peer worm ‘P2PInfect’ is targeting a Lua sandbox escape vulnerability in internet-accessible Redis servers.
Malware & Threats
Attackers are exploiting two path traversal vulnerabilities in the Stagil navigation for Jira – Menus & Themes plugin.
Government
The two foreign companies are being sanctioned for “for trafficking in cyber exploits used to gain access to information systems.”
Malware & Threats
Attackers have started exploiting CVE-2023-28121, a recent critical vulnerability in the WooCommerce Payments WordPress plugin.
Fraud & Identity Theft
The British company secures $100 million in funding and announced the hiring of a new chief executive to pursue global expansion plans.
Artificial Intelligence
Researchers have warned that powerful AI models could be used to supercharge online disinformation, cyberattacks or creation of bioweapons.
CISO Strategy
Artificial Intelligence
Vulnerabilities