Category: Uncategorized
-
Researchers Resurrect Spectre v2 Attack Against Intel CPUs Eduard Kovacs
VUSec researchers resurrect Spectre v2 attack, showing that it works against the Linux kernel on the latest-generation Intel CPUs. The post Researchers Resurrect Spectre v2 Attack Against Intel CPUs appeared first on SecurityWeek. Read More
-

Raspberry Robin Returns: New Malware Campaign Spreading Through WSF Files [email protected] (The Hacker News)
Cybersecurity researchers have discovered a new Raspberry Robin campaign wave that propagates the malware through malicious Windows Script Files (WSFs) since March 2024. “Historically, Raspberry Robin was known to spread through removable media like USB drives, but over time its distributors have experimented with other initial infection vectors,” HP Wolf Security said in a reportRead More
-

Beware: GitHub’s Fake Popularity Scam Tricking Developers into Downloading Malware [email protected] (The Hacker News)
Threat actors are now taking advantage of GitHub’s search functionality to trick unsuspecting users looking for popular repositories into downloading spurious counterparts that serve malware. The latest assault on the open-source software supply chain involves concealing malicious code within Microsoft Visual Code project files that’s designed to download next-stage payloads from a remote URL,Read More
-
Fortinet Patches Critical RCE Vulnerability in FortiClientLinux Ionut Arghire
Fortinet has released patches for a dozen vulnerabilities, including a critical-severity remote code execution flaw in FortiClientLinux. The post Fortinet Patches Critical RCE Vulnerability in FortiClientLinux appeared first on SecurityWeek. Read More
-
Thousands of LG TVs Possibly Exposed to Remote Hacking Eduard Kovacs
Many LG TVs may be vulnerable to remote hacking due to a series of vulnerabilities found by Bitdefender researchers. The post Thousands of LG TVs Possibly Exposed to Remote Hacking appeared first on SecurityWeek. Read More
-
Sprinto Raises $20 Million for Automated Risk and Compliance Platform Ionut Arghire
Risk and compliance solutions provider Sprinto has raised $20 million in a Series B funding round led by Accel. The post Sprinto Raises $20 Million for Automated Risk and Compliance Platform appeared first on SecurityWeek. Read More
-
530k Impacted by Data Breach at Wisconsin Healthcare Organization Ionut Arghire
The personal information of 500,000 people was compromised in a data breach at Group Health Cooperative of South Central Wisconsin. The post 530k Impacted by Data Breach at Wisconsin Healthcare Organization appeared first on SecurityWeek. Read More
-

Hands-on Review: Cynomi AI-powered vCISO Platform [email protected] (The Hacker News)
The need for vCISO services is growing. SMBs and SMEs are dealing with more third-party risks, tightening regulatory demands and stringent cyber insurance requirements than ever before. However, they often lack the resources and expertise to hire an in-house security executive team. By outsourcing security and compliance leadership to a vCISO, these organizations can more…
-
Microsoft Patches Two Zero-Days Exploited for Malware Delivery Eduard Kovacs
Microsoft patches CVE-2024-29988 and CVE-2024-26234, two zero-day vulnerabilities exploited by threat actors to deliver malware. The post Microsoft Patches Two Zero-Days Exploited for Malware Delivery appeared first on SecurityWeek. Read More
-

Researchers Uncover First Native Spectre v2 Exploit Against Linux Kernel [email protected] (The Hacker News)
Cybersecurity researchers have disclosed what they say is the “first native Spectre v2 exploit” against the Linux kernel on Intel systems that could be exploited to read sensitive data from the memory. The exploit, called Native Branch History Injection (BHI), can be used to leak arbitrary kernel memory at 3.5 kB/sec by bypassing existing Spectre…
