General Security News
-
New Exploit Lets Malware Attackers Bypass Patch for Critical Microsoft MSHTML Flaw
A short-lived phishing campaign has been observed taking advantage of a novel exploit that bypassed a patch put in place by Microsoft to fix a...
-
Active Directory Bugs Could Let hackers Take Over Windows Domain Controllers
Microsoft is urging customers to patch two security vulnerabilities in Active Directory domain controllers that it addressed in November following...
-
Secret Backdoors Found in German-made Auerswald VoIP System
Multiple backdoors have been discovered during a penetration test in the firmware of a widely used voice over Internet Protocol (VoIP) appliance...
-
Critical SSRF Bug in VMware Workspace ONE UEM Console Let Attacker Steal Sensitive Data
A critical SSRF vulnerability has been detected recently in the VMware Workspace ONE UEM console, that could be exploited by the threat actors...
-
What is a Supply Chain Attack & How it Occurs?
When an organization adopts third-party or open-source code, it can unwittingly accept an extraordinary amount of risk originating upstream in...
-
Meta Sues Hackers Behind Facebook, WhatsApp and Instagram Phishing Attacks
Facebook's parent company Meta Platforms on Monday said it has filed a federal lawsuit in the U.S. state of California against bad actors who...
-
Experts Discover Backdoor Deployed on the U.S. Federal Agency's Network
A U.S. federal government commission associated with international rights has been targeted by a backdoor that reportedly compromised its internal...
-
How to Prevent Customer Support Help Desk Fraud Using VPN and Other Tools
It's no secret that the internet isn't a very safe place. And it's not hard to understand why. It's a medium that connects billions of people...
-
Hackers Stole Over 1.8 Million People Credit Card Data From Sports Gear Sites
Four well-renowned affiliated online sports gear websites have recently unveiled and reported a massive cyberattack. In this cyberattack, the...
-
Lenovo Laptop Flaws Let Attackers Gain Admin Privileges
Privilege elevation bugs have been detected recently by the security analysts at NCC Group in the ImControllerService service of Lenovo laptops...
-
Hackers Using Weaponized IIS Module to Stealing Credentials & Enabling RCE
Kaspersky security lab has recently identified a digital threat that installs malicious webserver IIS modules that work with Microsoft Exchange...
-
Over 500,000 Android Users Downloaded a New Joker Malware App from Play Store
A malicious Android app with more than 500,000 downloads from the Google Play app store has been found hosting malware that stealthily exfiltrates...