2023 - Page 955 of 971 - Cyber Security News

[KIS-2023-01] Tiki Wiki CMS Groupware <= 25.0 Two Cross-Site Request Forgery Vulnerabilities

Posted by Egidio Romano on Jan 09 ------------------------------------------------------------------------------ Tiki Wiki CMS Groupware <= 25.0 Two Cross-Site Request Forgery Vulnerabilities ------------------------------------------------------------------------------ [-] Software Link: https://tiki.org [-]...

January 9, 2023

Advisories

USN-5792-2: Linux kernel vulnerabilities

Mingwei Zhang discovered that the KVM implementation for AMD processors in the Linux kernel did not properly handle cache coherency with Secure Encrypted Virtualization (SEV)....

January 9, 2023

News

Freejacking Campaign By PurpleUrchin Bypasses Captchas

The threat actors also deployed more aggressive techniques for mining CPU resources Read More

January 9, 2023

News

ChatGPT Used to Develop New Malicious Tools

These include infostealers, multi-layer encryption tools and dark web marketplace scripts Read More

January 9, 2023

Advisories

USN-5797-1: WebKitGTK vulnerabilities

Several security issues were discovered in the WebKitGTK Web and JavaScript engines. If a user were tricked into viewing a malicious website, a remote attacker...

January 9, 2023

News

Dark Web Actors Fight For Drug Trafficking and Illegal Pharmacy Supremacy

Following the takedown of the Hydra Marketplace in 2022, 10 darknet markets rose to fill the void Read More

January 9, 2023

News

Does a hybrid model for vulnerability management make sense?

Graham Cluley Security News is sponsored this week by the folks at Edgescan. Thanks to the great team there for their support! Edgescan simplifies Vulnerability...

January 9, 2023

News

The Case for Your Security at CES 2023

As technology weaves itself into our lives in new and unexpected ways, some of it will get quite personal and close to home. That made...

January 9, 2023

News

Identity Thieves Bypassed Experian Security to View Credit Reports

Identity thieves have been exploiting a glaring security weakness in the website of Experian, one of the big three consumer credit reporting bureaus. Normally, Experian...

January 9, 2023

Advisories

USN-5796-1: w3m vulnerability

It was discovered that w3m incorrectly handled certain HTML files. A remote attacker could use this issue to cause w3m to crash, resulting in a...

January 9, 2023

Supply Chain Attack Targets Key Ethereum Development Tools

New PhishWP Plugin Enables Sophisticated Payment Page Scams

Chinese Hackers Double Cyber-Attacks on Taiwan

Privacy of Photos.app’s Enhanced Visual Search

New Infostealer Campaign Uses Discord Videogame Lure

Scammers Drain $500m from Crypto Wallets in a Year

Friday Squid Blogging: Anniversary Post

US Sanctions Chinese Cybersecurity Firm for Global Botnet Attacks

Atos Group Denies Space Bears’ Ransomware Attack Claims

Year: 2023

[KIS-2023-01] Tiki Wiki CMS Groupware <= 25.0 Two Cross-Site Request Forgery Vulnerabilities

USN-5792-2: Linux kernel vulnerabilities

Freejacking Campaign By PurpleUrchin Bypasses Captchas

ChatGPT Used to Develop New Malicious Tools

USN-5797-1: WebKitGTK vulnerabilities

Dark Web Actors Fight For Drug Trafficking and Illegal Pharmacy Supremacy

Does a hybrid model for vulnerability management make sense?

The Case for Your Security at CES 2023

Identity Thieves Bypassed Experian Security to View Credit Reports

USN-5796-1: w3m vulnerability