Phylum security researchers warn of a new software supply chain attack relying on typosquatting to target Python and JavaScript developers. read more
...moreSummary
Total Articles Found: 19
Top sources:
- SecurityWeek 19
Top Keywords:
- NEWS & INDUSTRY: 19
- Virus & Malware: 19
- Malware: 16
- Endpoint Security: 16
- Email Security: 15
Top Authors
- Ryan Naraine: 11
- Ionut Arghire: 6
- Eduard Kovacs: 1
- SecurityWeek News: 1
Top Articles:
- Report: TikTok Harvested MAC Addresses By Exploiting Android Loophole
- Researchers Find Exploitable Bugs in Mercedes-Benz Cars
- North Korean .Gov Hackers Back With Fake Pen-Test Company
- Adobe: Critical Flaws in Reader, Acrobat, Illustrator
- Google Warns of Exploited Zero-Days in Chrome Browser
- Project Zero Flags High-Risk Zoom Security Flaw
- Adobe Patches Gaping Security Holes in Acrobat, Reader, Photoshop
- Software Supply Chain Weakness: Snyk Warns of 'Deliberate Sabotage' of NPM Ecosystem
- Linux Crypto-Miner Uses Kernel-Mode Rootkits for Evasion
- Adobe Releases Emergency Patch for Exploited Commerce Zero-Day
Python, JavaScript Developers Targeted With Fake Packages Delivering Ransomware
Published: 2022-12-12 12:46:57
Popularity: 10
Author: Ionut Arghire
Keywords:
Microsoft Confirms Temporary Rollback of Macro Blocking Feature
Published: 2022-07-11 17:50:26
Popularity: 10
Author: Ionut Arghire
Keywords:
Microsoft has confirmed that the recent rollback of a feature related to the blocking of internet macros in its Office suite is only temporary. read more
...moreReport: L3 Emerges as Suitor for Embattled NSO Group
Published: 2022-06-14 16:18:52
Popularity: 9
Author: Ryan Naraine
Keywords:
🤖: "Spy game 😏"
L3 Technologies, a U.S. government contractor that sells aerospace and defense technology, has emerged as a suitor for Israeli exploit merchant NSO Group. read more
...moreFirmware Flaws Allow Disabling Secure Boot on Lenovo Laptops
Published: 2022-04-19 18:46:07
Popularity: 14
Author: Ionut Arghire
Keywords:
🤖: "Boot fail"
Computer maker Lenovo has started pushing security patches to address three vulnerabilities impacting the UEFI firmware of more than 110 laptop models. read more
...moreAdobe Patches Gaping Security Holes in Acrobat, Reader, Photoshop
Published: 2022-04-12 17:36:50
Popularity: 21
Author: Ryan Naraine
Keywords:
🤖: "security alert"
Adobe's security update engine revved into overdrive this month with the release of patches for at least 78 documented software vulnerabilities, some serious enough to expose corporate customers to remote code execution attacks. read more
...moreSoftware Supply Chain Weakness: Snyk Warns of 'Deliberate Sabotage' of NPM Ecosystem
Published: 2022-03-17 15:58:58
Popularity: 20
Author: Ryan Naraine
Keywords:
Software supply chain security fears escalated again this week with the discovery of what’s being described as "deliberate sabotage" of code in the open-source npm package manager ecosystem. read more
...moreAdobe Releases Emergency Patch for Exploited Commerce Zero-Day
Published: 2022-02-13 18:01:12
Popularity: 15
Author: Eduard Kovacs
Keywords:
Adobe released an emergency advisory on Sunday to inform Commerce and Magento users of a critical zero-day vulnerability that has been exploited in attacks. read more
...moreProject Zero Flags High-Risk Zoom Security Flaw
Published: 2021-11-29 19:03:13
Popularity: 23
Author: Ryan Naraine
Keywords:
Video conferencing software giant Zoom has shipped patches for a pair of security defects that expose Windows, macOS, Linux, iOS and Android users to malicious hacker attacks. read more
...moreGitHub Confirms Another Major NPM Security Defect
Published: 2021-11-16 16:39:16
Popularity: 15
Author: Ryan Naraine
Keywords:
Microsoft-owned GitHub is again flagging major security problems in the npm registry, warning that a pair of newly discovered vulnerabilities continue to expose the soft underbelly of the open-source software supply chain. read more
...moreBlacksmith: Rowhammer Fuzzer Bypasses Existing Protections
Published: 2021-11-16 20:07:55
Popularity: 4
Author: Ionut Arghire
Keywords:
🤖: "Hammer time crashes"
A group of security researchers devised a new attack that completely bypasses the existing mitigations against the Rowhammer vulnerability in dynamic random-access memory (DRAM) chips. read more
...moreAkamai to Acquire Guardicore in $600M Zero Trust Tech Deal
Published: 2021-09-29 17:03:38
Popularity: 5
Author: Ryan Naraine
Keywords:
Edge security and content delivery giant Akamai Technologies on Wednesday announced plans to spend $600 million to acquire Guardicore, an Israeli micro-segmentation technology startup. Akamai said the deal would add new capabilities to help customers thwart ransomware attacks by blocking the spread of malware within an already-compromised enterprise. read more
...moreApple Confirms New Zero-Day Attacks on Older iPhones
Published: 2021-09-23 20:39:09
Popularity: 8
Author: Ryan Naraine
Keywords:
Apple on Thursday confirmed a new zero-day exploit hitting older iPhones and warned that the security vulnerability also affects the macOS Catalina platform. read more
...moreGoogle Warns of Exploited Zero-Days in Chrome Browser
Published: 2021-09-13 21:51:32
Popularity: 29
Author: Ryan Naraine
Keywords:
🤖: "Zero Day Alert"
Google has joined the list of major software providers scrambling to respond to zero-day exploits in the wild. read more
...moreAdobe Plugs Critical Photoshop Security Flaws
Published: 2021-08-17 23:14:52
Popularity: 12
Author: Ryan Naraine
Keywords:
🤖: "Photoshop fail"
Adobe has issued a warning for a pair of major security vulnerabilities affecting its popular Photoshop image manipulation software. The flaws, rated critical, expose both Windows and MacOS users to code execution attacks, Adobe said in an advisory released Tuesday. read more
...moreAdobe: Critical Flaws in Reader, Acrobat, Illustrator
Published: 2021-07-13 15:08:49
Popularity: 40
Author: Ryan Naraine
Keywords:
🤖: "Crashing software"
Adobe has issued multiple security advisories with patches for critical vulnerabilities in a wide range of software products, including the ever-present Adobe Acrobat and Reader application. read more
...moreResearchers Find Exploitable Bugs in Mercedes-Benz Cars
Published: 2021-05-18 20:24:37
Popularity: 93
Author: Ionut Arghire
Keywords:
🤖: "car hack"
Following an eight-month audit of the code in the latest infotainment system in Mercedes-Benz cars, security researchers with Tencent Security Keen Lab identified five vulnerabilities, four of which could be exploited for remote code execution. read more
...moreNorth Korean .Gov Hackers Back With Fake Pen-Test Company
Published: 2021-03-31 20:57:11
Popularity: 78
Author: Ryan Naraine
Keywords:
A North Korean government-backed APT group has been caught using a fake pen-testing company and a range of sock puppet social media accounts in an escalation of a hacking campaign targeting security research professionals. read more
...moreReport: TikTok Harvested MAC Addresses By Exploiting Android Loophole
Published: 2021-01-14 16:21:03
Popularity: 287
Author: SecurityWeek News
Keywords:
The ongoing controversies surrounding TikTok hit a new gear on Thursday with a bombshell report accusing the Chinese company of spying on millions of Android users using a technique banned by Google. read more
...moreLinux Crypto-Miner Uses Kernel-Mode Rootkits for Evasion
Published: 2019-09-17 15:13:17
Popularity: 20
Author: Ionut Arghire
Keywords:
A recently discovered cryptocurrency mining malware targeting Linux machines is employing kernel-mode rootkits in an attempt to make detection more difficult, Trend Micro reveals. read more
...more