Category: Uncategorized
-

Google Warns of Pixel Firmware Security Flaw Exploited as Zero-Day [email protected] (The Hacker News)
Google has warned that a security flaw impacting Pixel Firmware has been exploited in the wild as a zero-day. The high-severity vulnerability, tagged as CVE-2024-32896, has been described as an elevation of privilege issue in Pixel Firmware. The company did not share any additional details related to the nature of attacks exploiting it, but noted…
-

New Cross-Platform Malware ‘Noodle RAT’ Targets Windows and Linux Systems [email protected] (The Hacker News)
A previously undocumented cross-platform malware codenamed Noodle RAT has been put to use by Chinese-speaking threat actors either for espionage or cybercrime for years. While this backdoor was previously categorized as a variant of Gh0st RAT and Rekoobe, Trend Micro security researcher Hara Hiroaki said “this backdoor is not merely a variant of existing malware,…
-
Google Warns of Pixel Firmware Zero-Day Under Limited, Targeted Exploitation Ryan Naraine
The zero-day is tagged as CVE-2024-32896 and described as an elevation of privilege issue in Pixel Firmware. The post Google Warns of Pixel Firmware Zero-Day Under Limited, Targeted Exploitation appeared first on SecurityWeek. Read More
-
AWS touts security culture, AI protections at re:Inforce 2024
Post ContentRead More
-
Black Basta might have exploited Microsoft flaw as zero-day
Post ContentRead More
-

Cryptojacking Campaign Targets Misconfigured Kubernetes Clusters [email protected] (The Hacker News)
Cybersecurity researchers have warned of an ongoing cryptojacking campaign targeting misconfigured Kubernetes clusters to mine Dero cryptocurrency. Cloud security firm Wiz, which shed light on the activity, said it’s an updated variant of a financially motivated operation that was first documented by CrowdStrike in March 2023. “In this incident, the threat actor abused anonymous access…
-
Microsoft Patches Zero-Click Outlook Vulnerability That Could Soon Be Exploited Ionut Arghire
Microsoft’s June 2024 Patch Tuesday updates resolve a zero-click Outlook vulnerability leading to remote code execution. The post Microsoft Patches Zero-Click Outlook Vulnerability That Could Soon Be Exploited appeared first on SecurityWeek. Read More
-
Ransomware Group May Have Exploited Windows Vulnerability as Zero-Day Eduard Kovacs
The Black Basta ransomware gang may have exploited the Windows privilege escalation flaw CVE-2024-26169 before it was patched. The post Ransomware Group May Have Exploited Windows Vulnerability as Zero-Day appeared first on SecurityWeek. Read More
-
Fortinet Patches Code Execution Vulnerability in FortiOS Ionut Arghire
Fortinet has patched multiple vulnerabilities in FortiOS, including a high-severity code execution security flaw. The post Fortinet Patches Code Execution Vulnerability in FortiOS appeared first on SecurityWeek. Read More
-
Data Security Firm Cyberhaven Raises $88 Million at $488 Million Valuation Eduard Kovacs
Data security company Cyberhaven has raised $88 million in a Series C funding round that brings the total to $136 million. The post Data Security Firm Cyberhaven Raises $88 Million at $488 Million Valuation appeared first on SecurityWeek. Read More
