Category: Uncategorized
-
North Korean Hackers Target Energy and Aerospace Industries with New MISTPEN Malware [email protected] (The Hacker News)
A North Korea-linked cyber-espionage group has been observed leveraging job-themed phishing lures to target prospective victims in energy and aerospace verticals and infect them with a previously undocumented backdoor dubbed MISTPEN. The activity cluster is being tracked by Google-owned Mandiant under the moniker UNC2970, which it said overlaps with a threat group known as TEMP.Hermit,…
-
Chrome Introduces One-Time Permissions and Enhanced Safety Check for Safer Browsing [email protected] (The Hacker News)
Google has announced that it’s rolling out a new set of features to its Chrome browser that gives users more control over their data when surfing the internet and protects against online threats. “With the newest version of Chrome, you can take advantage of our upgraded Safety Check, opt out of unwanted website notifications more…
-
Orca: AI services, models falling short on security
Post ContentRead More
-
Russian Security Firm Doctor Web Hacked Eduard Kovacs
Antimalware company Doctor Web was recently targeted in a cyberattack that prompted it to disconnect all resources from its networks. The post Russian Security Firm Doctor Web Hacked appeared first on SecurityWeek. Read More
-
GSMA Plans End-to-End Encryption for Cross-Platform RCS Messaging [email protected] (The Hacker News)
The GSM Association, the governing body that oversees the development of the Rich Communications Services (RCS) protocol, on Tuesday, said it’s working towards implementing end-to-end encryption (E2EE) to secure messages sent between the Android and iOS ecosystems. “The next major milestone is for the RCS Universal Profile to add important user protections such as interoperable…
-
Patch Issued for Critical VMware vCenter Flaw Allowing Remote Code Execution [email protected] (The Hacker News)
Broadcom on Tuesday released updates to address a critical security flaw impacting VMware vCenter Server that could pave the way for remote code execution. The vulnerability, tracked as CVE-2024-38812 (CVSS score: 9.8), has been described as a heap-overflow vulnerability in the DCE/RPC protocol. “A malicious actor with network access to vCenter Server may trigger this…
-
Hundreds of Pagers Exploded in Lebanon and Syria in a Deadly Attack. Here’s What We Know. Associated Press
Very small explosive devices may have been built into the pagers prior to their delivery to Hezbollah, and then all remotely triggered simultaneously. The post Hundreds of Pagers Exploded in Lebanon and Syria in a Deadly Attack. Here’s What We Know. appeared first on SecurityWeek. Read More
-
VMware Patches Remote Code Execution Flaw Found in Chinese Hacking Contest Ryan Naraine
VMware warned that an attacker with network access could send a specially crafted packet to execute remote code. CVSS severity score 9.8/10. The post VMware Patches Remote Code Execution Flaw Found in Chinese Hacking Contest appeared first on SecurityWeek. Read More
-
Intezer Raises $33M to Extend AI-Powered SOC Platform Ryan Naraine
Intezer is looking to tap into booming market for AI-powered tooling to address the severe shortage of skilled cybersecurity professionals. The post Intezer Raises $33M to Extend AI-Powered SOC Platform appeared first on SecurityWeek. Read More
-
C/side Raises $6 Million to Secure the Browser Supply Chain Ionut Arghire
C/side has raised $6 million in a seed-stage funding round to help organizations protect against malicious browser third-party scripts. The post C/side Raises $6 Million to Secure the Browser Supply Chain appeared first on SecurityWeek. Read More