Cybersecurity researchers have discovered a new macOS backdoor called SpectralBlur. Notably, this backdoor has similarities to the KandyKorn malware family used by North Korean hackers in recently identified cyberattacks. The SpectralBlur malware was originally...
Cybersecurity firm Bishop Fox has discovered that over 178,000 of SonicWall next-generation firewalls (NGFW), with online accessible management interfaces, are vulnerable to Denial of Service (DoS) attacks and Remote Code Execution (RCE). The devices...
Earlier this month, we discussed the zero-day vulnerabilities in Ivanti products. A recent analysis by Mandiant revealed that attackers employed five distinct malware families in their assaults, including Zipline, Thinspool Dropper, Wirefire, Lightwire, and...
A recently discovered vulnerability in Windows SmartScreen is being actively exploited in attacks that lead to the infection with the new Phemedrone stealer, warns Trend Micro. The vulnerability, CVE-2023-36025, scored 8.8 on the CVSS...
Headquartered in Cambridge, Massachusetts, the private startup Singular Computing recently accused Google’s Tensor Processing Unit (TPU) design of infringing upon its technological patents. This lawsuit is currently being adjudicated in the Boston Federal Court....
Microsoft recently announced the launch of Copilot Pro, a subscription service priced at $20 per month, granting users access to the latest ChatGPT functionalities and the ability to develop their proprietary Copilot GPT capabilities....
Security specialists at Sucuri have discovered a new campaign by Balada Injector, initiated in mid-December 2023. This campaign has led to the infection of over 6700 WordPress sites using a vulnerable version of the...
Security researchers from Guardio Labs uncovered a significant oversight in Opera’s web browser for Windows and macOS, which allows cybercriminals to launch any file, including malicious ones, on the computer’s base operating system. The...
Nearly three months after a substantial cyberattack on the British Library, its representatives have announced the commencement of restoration efforts for the main online catalog, encompassing 36 million records of books, maps, journals, and...
According to a report by SecurityScorecard’s STRIKE team, hackers from the Volt Typhoon group, linked to the Chinese government, have gained persistent access to Cisco RV320/325 routers, discontinued since 2019. The malefactors exploited two...
Bitdefender has identified a vulnerability in the popular Bosch BCC100 Wi-Fi thermostat model. This flaw permits cybercriminals to remotely manipulate device settings, including temperature, and install malicious software. Internet of Things (IoT) devices, ranging...
A 29-year-old Ukrainian hacker was arrested last weekend for compromising a large number of accounts to create virtual machines and mine $2 million worth of cryptocurrency. According to the European Union’s law enforcement agency...
The Linux Kernel 6.8 has received pivotal updates that markedly enhance the performance of the TCP stack, potentially increasing efficiency in handling multiple parallel TCP connections by up to 40%. This enhancement became feasible...
Popular mobile messaging apps such as WhatsApp, Signal, and Telegram have long been targets for cybercriminals. Scammers create and distribute malicious replicas of these applications, deceiving users with phishing campaigns on social media, email,...
Specialists at VulnCheck have developed a Proof-of-Concept (PoC) code that exploits a recently discovered critical vulnerability in the Apache OFBiz Enterprise Resource Planning (ERP) system to execute malicious code in memory. The vulnerability, designated...
A hacker group called Cyber Toufan, allegedly backed by the Palestinian state, claims to have hacked over 100 Israeli organizations through data deletion and theft operations. This is part of a comprehensive attack campaign...
